Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/55e529-b839-444f-872d-1bfd10a8845a/1/dY-Dye7h41u-2hfRoP7W4pxXIJg.roa
File: dY-Dye7h41u-2hfRoP7W4pxXIJg.roa (raw, json)
Hash identifier: UwiKyU3cKOo3zfN7zb9sCFXqqeVuVkYYi2igBoealCQ=
Subject key identifier: 75:8F:83:C9:EE:E1:E3:5B:BE:DA:17:D1:A0:FE:D6:E2:9C:57:20:98
Certificate issuer: /CN=935c42857e302feb14017301e43c39fe45e7f629
Certificate serial: 01942143CEBD18048674F229AB13C95CE5B7
Authority key identifier: 93:5C:42:85:7E:30:2F:EB:14:01:73:01:E4:3C:39:FE:45:E7:F6:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k1xChX4wL-sUAXMB5Dw5_kXn9ik.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/55e529-b839-444f-872d-1bfd10a8845a/1/dY-Dye7h41u-2hfRoP7W4pxXIJg.roa
Signing time: Wed 01 Jan 2025 09:47:59 +0000
ROA not before: Wed 01 Jan 2025 09:47:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44612
IP address blocks: 185.214.27.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:43:ce:bd:18:04:86:74:f2:29:ab:13:c9:5c:e5:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=935c42857e302feb14017301e43c39fe45e7f629
Validity
Not Before: Jan 1 09:47:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=758f83c9eee1e35bbeda17d1a0fed6e29c572098
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:20:0e:f4:13:a4:2b:16:90:1a:0b:c4:e7:c7:
bd:0a:56:c5:59:dd:75:9e:4c:7b:e4:73:67:b2:30:
fc:9e:af:8a:a6:98:ef:7c:4a:33:43:5e:60:eb:83:
66:c9:c2:2f:5e:fd:fc:5d:92:d0:84:cb:f4:0f:89:
48:8a:c2:82:13:af:fc:1a:c5:ba:f7:e5:9a:9e:4c:
4f:b9:17:4c:ad:6f:bd:61:f2:a0:c7:62:fc:c8:08:
b5:66:87:0a:22:ab:93:19:de:b9:18:d1:a1:61:8d:
70:71:49:bc:c9:11:5e:43:a9:2f:de:cd:5e:fe:cd:
a0:59:7d:69:8e:10:c7:9b:f0:31:f6:20:6f:12:c8:
47:ac:9b:3e:17:27:6b:19:c1:6e:1a:33:e0:29:58:
34:89:1f:96:25:1e:ee:f1:18:ac:25:8b:5f:7e:b7:
dc:81:7a:1d:df:3d:e9:7b:bf:b6:80:ce:95:5a:6e:
24:b6:c6:f9:f8:91:fa:ff:7b:2d:16:e0:55:52:e2:
f8:cc:e4:a7:1e:38:1e:b5:c1:b1:3f:be:84:91:86:
b6:7c:02:17:db:0f:2e:02:05:06:64:01:da:6d:b9:
48:cf:7f:9e:75:62:d7:07:35:f3:5d:04:c4:86:45:
14:08:86:6b:aa:db:a9:2d:45:1a:2a:c7:ee:65:10:
0f:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:8F:83:C9:EE:E1:E3:5B:BE:DA:17:D1:A0:FE:D6:E2:9C:57:20:98
X509v3 Authority Key Identifier:
keyid:93:5C:42:85:7E:30:2F:EB:14:01:73:01:E4:3C:39:FE:45:E7:F6:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k1xChX4wL-sUAXMB5Dw5_kXn9ik.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/55e529-b839-444f-872d-1bfd10a8845a/1/dY-Dye7h41u-2hfRoP7W4pxXIJg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/55e529-b839-444f-872d-1bfd10a8845a/1/k1xChX4wL-sUAXMB5Dw5_kXn9ik.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.214.27.0/24
Signature Algorithm: sha256WithRSAEncryption
29:dd:bf:2c:a2:27:23:77:38:1a:52:13:9e:dd:9e:e4:f0:bf:
5c:02:4f:4f:68:90:9b:5e:81:58:0c:0a:73:d0:87:9c:bb:7a:
ff:3c:13:21:40:54:67:b7:2a:46:2e:ba:fb:ec:37:12:89:f1:
d6:69:22:7e:7b:1d:7e:d3:e0:1a:05:17:8e:e8:b7:0d:38:8b:
52:17:ca:01:ca:cd:a2:0b:12:7d:5d:f6:7c:19:0d:92:cc:da:
22:ef:c9:69:08:f8:c8:ca:27:12:7c:c0:c2:3b:1a:3a:0c:9c:
dc:42:f3:72:41:6f:41:96:73:d7:6b:7b:ac:67:d6:ac:15:d4:
c8:76:20:c0:6e:52:e4:13:7a:1a:d7:41:d3:f1:98:f5:76:88:
83:a8:eb:ea:02:45:5a:76:88:f0:16:68:10:ea:b5:88:94:1b:
5a:b4:03:de:a2:00:79:a9:bc:de:29:e8:f8:ed:6f:fd:73:f4:
80:2a:a4:7e:99:c9:4c:dd:0b:60:43:fa:43:58:57:99:f1:96:
ba:06:e8:6b:33:ff:55:df:f6:fd:8f:3d:62:76:f8:65:92:62:
aa:95:0c:90:0b:59:90:5d:15:cd:a8:a7:fa:0b:61:36:23:cb:
be:e3:3e:40:eb:26:c2:35:1c:00:3f:46:2e:50:8d:6a:ca:60:
05:fc:c8:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:52 2025 by rpki-client on console.sobornost.net