Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/36362a-d91c-4ad4-92c7-1d2513308d21/1/UT4NXn4ZcTkJwvgQgl9dQtMGQHY.roa
File: UT4NXn4ZcTkJwvgQgl9dQtMGQHY.roa (raw, json)
Hash identifier: nylFSQWGan1W87gYguk9ri6Ziw1VxhwDfj3K/sUzuCM=
Subject key identifier: 51:3E:0D:5E:7E:19:71:39:09:C2:F8:10:82:5F:5D:42:D3:06:40:76
Certificate issuer: /CN=fc9be4ed4e54b601e6b6a42d0ba04cfb7ab2c3bf
Certificate serial: 0194206800931FDD866BCF15F07305F40CA2
Authority key identifier: FC:9B:E4:ED:4E:54:B6:01:E6:B6:A4:2D:0B:A0:4C:FB:7A:B2:C3:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_Jvk7U5UtgHmtqQtC6BM-3qyw78.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/36362a-d91c-4ad4-92c7-1d2513308d21/1/UT4NXn4ZcTkJwvgQgl9dQtMGQHY.roa
Signing time: Wed 01 Jan 2025 05:47:54 +0000
ROA not before: Wed 01 Jan 2025 05:47:54 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 202319
IP address blocks: 185.166.104.0/24 maxlen: 24
185.166.106.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:68:00:93:1f:dd:86:6b:cf:15:f0:73:05:f4:0c:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc9be4ed4e54b601e6b6a42d0ba04cfb7ab2c3bf
Validity
Not Before: Jan 1 05:47:54 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=513e0d5e7e19713909c2f810825f5d42d3064076
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:7c:8f:6d:f7:bb:e7:6b:e4:26:da:e0:18:53:
b4:82:9e:f1:05:4b:11:31:79:95:c9:13:2b:e9:cf:
53:62:20:fd:82:1b:b4:20:6d:8a:1d:54:eb:f2:ae:
77:6e:b9:5d:c4:bf:a8:71:09:be:46:e7:3a:8e:47:
ba:03:45:b8:6b:f5:ff:bc:fc:50:9b:56:b5:74:a3:
8c:6a:88:18:1c:6f:a5:8a:d8:a8:d6:87:1a:88:99:
3d:83:6e:62:e5:0b:f9:f6:3d:f7:cc:75:49:5e:da:
ba:6c:eb:e5:f7:b2:2b:52:8c:19:5f:f6:0e:ee:5f:
8f:74:9d:fb:3f:14:e1:50:f2:50:74:64:5e:b5:64:
1e:e9:4f:ad:cc:c5:3e:51:b3:05:83:06:a4:e0:a6:
c9:a0:c1:d5:68:61:f9:8a:b8:24:e3:23:28:5c:a6:
5f:35:07:37:72:ba:eb:bb:c8:1f:9d:0f:97:27:e9:
2e:f9:cb:7e:c6:55:61:0d:5a:d1:50:81:1e:06:64:
35:9b:3b:7f:21:c7:67:ca:98:f8:62:05:3a:41:61:
42:80:a1:51:e6:56:9f:5e:25:2d:36:7f:c3:a4:08:
27:33:ff:39:0f:d6:f5:82:c3:82:49:53:d9:31:8a:
98:64:70:91:e7:c8:e8:02:db:21:26:6a:ba:4a:4e:
31:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:3E:0D:5E:7E:19:71:39:09:C2:F8:10:82:5F:5D:42:D3:06:40:76
X509v3 Authority Key Identifier:
keyid:FC:9B:E4:ED:4E:54:B6:01:E6:B6:A4:2D:0B:A0:4C:FB:7A:B2:C3:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_Jvk7U5UtgHmtqQtC6BM-3qyw78.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/36362a-d91c-4ad4-92c7-1d2513308d21/1/UT4NXn4ZcTkJwvgQgl9dQtMGQHY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/36362a-d91c-4ad4-92c7-1d2513308d21/1/_Jvk7U5UtgHmtqQtC6BM-3qyw78.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.166.104.0/24
185.166.106.0/24
Signature Algorithm: sha256WithRSAEncryption
03:41:73:f9:24:a8:82:e6:ab:c8:22:a2:ba:85:a3:43:82:da:
28:9a:17:7f:a9:ec:a1:a2:d8:f4:ee:88:53:90:51:db:05:27:
26:07:29:b3:a0:15:4e:c7:e5:78:ed:0b:61:af:ac:0c:42:a5:
62:6b:33:d1:64:59:52:f8:19:f6:c4:08:8f:34:72:38:3b:3f:
fa:d1:f8:2d:16:ea:fe:62:7a:c3:8b:78:04:7e:f2:d6:06:55:
9e:e7:1c:ca:c8:7e:7f:ac:de:85:37:df:a7:48:fd:35:0f:50:
b1:7f:ca:c4:16:ff:27:6f:75:27:cd:0e:30:04:c2:3d:97:e8:
b8:7f:22:b9:45:71:cb:b2:dd:a7:07:df:68:d0:73:ba:ba:11:
68:8c:ea:db:b0:0d:9c:3c:4c:c7:16:f1:c4:e8:34:8d:5c:ac:
7d:7a:04:33:0f:4a:58:40:c8:86:a4:9a:d4:d1:70:42:19:29:
3b:9c:70:4b:b8:51:df:cd:75:e0:11:9c:b8:53:7a:10:14:57:
43:82:d6:4f:8a:98:b9:39:4a:a8:94:4d:70:a8:84:49:74:32:
fd:dd:16:02:cf:1f:67:98:85:92:38:e9:f4:00:d5:72:02:7d:
76:cf:70:3c:3e:0d:65:a0:a2:ff:65:27:e9:70:3e:32:c5:6a:
29:a6:99:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:54 2025 by rpki-client on console.sobornost.net