Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/TthjPRR5wXxsEh-6VCqYJXzgbKE.roa
File: TthjPRR5wXxsEh-6VCqYJXzgbKE.roa (raw, json)
Hash identifier: qNNifR39ahZ3yfEWA6+o5w3ku4jFU0k6pJdFlQXCAdc=
Subject key identifier: 4E:D8:63:3D:14:79:C1:7C:6C:12:1F:BA:54:2A:98:25:7C:E0:6C:A1
Certificate issuer: /CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Certificate serial: 01952D77D4DBE4B4700E4F688191C2A86888
Authority key identifier: 27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/TthjPRR5wXxsEh-6VCqYJXzgbKE.roa
Signing time: Sat 22 Feb 2025 11:43:02 +0000
ROA not before: Sat 22 Feb 2025 11:43:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44244
IP address blocks: 85.185.36.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:2d:77:d4:db:e4:b4:70:0e:4f:68:81:91:c2:a8:68:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Validity
Not Before: Feb 22 11:43:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4ed8633d1479c17c6c121fba542a98257ce06ca1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:15:51:2d:0d:84:08:e8:4e:16:4a:b5:42:2d:
eb:61:51:88:49:ba:a8:c6:be:27:c3:94:67:f6:14:
37:21:da:ea:e1:e1:59:6a:75:27:18:d4:32:86:89:
c0:ab:f5:fc:f0:2f:47:f5:f4:5a:5a:59:28:67:8b:
b5:28:a2:0b:67:e2:93:f1:c5:5d:e1:3d:44:8e:af:
1a:c7:81:1e:97:43:7f:9f:2f:fd:2e:50:49:48:04:
85:09:6e:b5:01:73:6b:06:b9:65:f3:a4:dc:7b:08:
f9:9d:53:a9:5c:e1:db:13:59:65:d0:48:42:28:93:
01:ed:e0:a6:cd:d8:b0:df:bb:4a:31:77:c3:b0:79:
e7:b6:3e:f3:f0:ab:4e:16:55:43:e0:ee:0b:ed:53:
f6:b1:8a:58:00:30:2a:7f:36:50:02:c1:5a:e8:27:
4b:31:b9:0c:16:64:0f:83:a8:cc:16:9f:da:40:c0:
9d:4b:0c:3b:13:fd:32:28:3b:4e:57:26:45:a2:49:
96:d1:42:a0:53:af:c1:91:02:1e:4a:e7:d2:ce:9f:
24:c5:0e:61:77:bb:33:a3:22:15:15:ca:01:bc:90:
e6:89:62:0f:70:0c:fe:33:28:f5:d4:42:b2:01:56:
84:b1:81:b2:61:22:72:6a:60:85:b3:35:f8:dd:72:
ff:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:D8:63:3D:14:79:C1:7C:6C:12:1F:BA:54:2A:98:25:7C:E0:6C:A1
X509v3 Authority Key Identifier:
keyid:27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/TthjPRR5wXxsEh-6VCqYJXzgbKE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/J6OeR5TDRhLn8iVpsaaoFxAmCuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.185.36.0/22
Signature Algorithm: sha256WithRSAEncryption
7b:bc:e4:53:42:9c:3e:b0:71:53:48:44:87:cf:6f:b3:de:9e:
d5:df:8a:7c:cb:3a:04:c0:b3:20:26:3a:2d:7b:5d:62:62:68:
e4:b0:f8:71:ef:1e:0d:b7:a7:28:b2:7e:ad:a6:a8:67:13:4e:
39:c1:db:07:b3:a6:42:b3:c7:b4:3c:60:50:ed:18:bb:be:b0:
a5:c2:fc:f9:8f:5e:6e:8f:4b:cb:24:fb:a4:7b:bc:bc:46:fc:
39:e6:f5:8b:97:92:b7:71:fd:e4:92:c5:42:35:00:78:99:0d:
03:60:cb:77:9b:3d:de:12:24:6e:6b:4f:ad:c2:86:54:81:86:
35:93:9c:64:9e:38:b9:d4:4e:64:a9:84:91:14:16:b0:3e:77:
5f:d2:71:82:86:25:1b:2b:c4:48:0b:b6:d7:cf:5a:39:f3:ec:
4c:9b:bb:a9:e1:e3:72:26:53:03:b6:fd:80:00:95:c0:a1:9f:
97:9c:b0:6f:75:8c:72:dd:1d:72:0f:55:79:dd:d7:b5:da:06:
6a:9f:a8:3d:be:8b:90:73:8c:29:34:e9:ac:98:8e:c6:7a:d7:
cc:aa:6f:b9:ad:d7:65:87:cd:24:98:34:2f:d8:11:46:b0:39:
86:f5:6e:00:8a:94:00:bd:51:9f:50:c2:de:28:00:60:aa:e7:
9d:2c:5d:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:53 2025 by rpki-client on console.sobornost.net