Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/5c4b13-86cd-4c53-8a95-34a3aa0b6aa0/1/erOw8yxwzHZjyqOqz7yXVVIUAFU.roa
File: erOw8yxwzHZjyqOqz7yXVVIUAFU.roa (raw, json)
Hash identifier: rvkd4LoifdpTzpO7iE/LNVpMhF4v0Ao+04p8plQuFX4=
Subject key identifier: 7A:B3:B0:F3:2C:70:CC:76:63:CA:A3:AA:CF:BC:97:55:52:14:00:55
Certificate issuer: /CN=78d32c121735449f1538ff0036f4abd0600a825f
Certificate serial: 01951E67A0C4A82B266AB2926B5A46E4E62C
Authority key identifier: 78:D3:2C:12:17:35:44:9F:15:38:FF:00:36:F4:AB:D0:60:0A:82:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eNMsEhc1RJ8VOP8ANvSr0GAKgl8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/5c4b13-86cd-4c53-8a95-34a3aa0b6aa0/1/erOw8yxwzHZjyqOqz7yXVVIUAFU.roa
Signing time: Wed 19 Feb 2025 13:31:02 +0000
ROA not before: Wed 19 Feb 2025 13:31:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 205803
IP address blocks: 185.201.156.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:1e:67:a0:c4:a8:2b:26:6a:b2:92:6b:5a:46:e4:e6:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=78d32c121735449f1538ff0036f4abd0600a825f
Validity
Not Before: Feb 19 13:31:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7ab3b0f32c70cc7663caa3aacfbc975552140055
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:d6:be:31:1d:6f:43:f5:aa:7f:65:3e:7a:dc:
b4:7e:6b:13:fb:32:91:df:58:ce:0b:15:cc:fd:f8:
61:38:9d:23:e4:f9:13:68:f7:06:65:33:1d:47:78:
40:0d:1c:4c:99:ba:2f:74:4d:cb:24:df:9e:57:99:
94:01:71:02:a1:ef:49:7d:6e:f6:79:b6:18:20:fb:
73:64:39:a1:ba:d4:43:23:ea:d5:66:67:8f:40:05:
ca:bb:dc:3d:d9:2d:d1:29:bd:cb:8c:3f:6a:10:a6:
47:38:d1:b3:91:dd:6a:d9:99:85:b6:a4:bb:78:2f:
88:1f:80:6f:aa:98:48:87:76:c9:45:30:dd:ac:53:
01:d1:43:3d:56:61:d8:d1:f4:11:38:52:6e:68:fe:
98:bc:e5:fd:1a:f0:da:77:5c:2a:bf:d5:6a:10:43:
1a:ac:d0:fd:f7:66:f8:0a:7b:d2:d3:93:62:31:a3:
25:4d:91:4d:18:ce:6a:79:39:d6:ce:a5:6e:aa:a3:
cf:52:d2:c5:1f:92:31:6e:2d:16:0c:89:41:53:e7:
2f:09:27:9d:d9:84:39:b0:7f:91:60:e8:70:b3:6d:
2d:2f:bc:9d:ca:8c:9e:57:80:ea:51:99:91:4a:a1:
bd:e3:dd:f7:f2:77:c4:30:70:68:dc:b9:2b:83:c1:
a7:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:B3:B0:F3:2C:70:CC:76:63:CA:A3:AA:CF:BC:97:55:52:14:00:55
X509v3 Authority Key Identifier:
keyid:78:D3:2C:12:17:35:44:9F:15:38:FF:00:36:F4:AB:D0:60:0A:82:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eNMsEhc1RJ8VOP8ANvSr0GAKgl8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/5c4b13-86cd-4c53-8a95-34a3aa0b6aa0/1/erOw8yxwzHZjyqOqz7yXVVIUAFU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/5c4b13-86cd-4c53-8a95-34a3aa0b6aa0/1/eNMsEhc1RJ8VOP8ANvSr0GAKgl8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.201.156.0/22
Signature Algorithm: sha256WithRSAEncryption
70:5b:2c:3a:14:5f:d3:a8:e6:e6:6f:24:57:da:92:e8:c9:08:
aa:b5:0b:cc:82:bd:57:b6:31:43:cc:08:8c:e9:b7:d7:e5:6a:
9d:e9:5e:6c:02:9f:2c:32:04:9d:f9:dd:65:fb:d3:fb:41:30:
18:51:d8:dd:f1:45:e7:3e:20:1b:95:83:0d:58:ee:e7:5e:6c:
0a:32:57:83:a8:d6:0b:87:fc:90:ca:81:59:1c:04:23:7b:54:
5c:d8:fa:b2:fe:7a:92:97:83:b4:74:93:35:bf:e8:b4:12:98:
16:ed:00:e5:7f:35:26:a9:68:56:6b:af:0c:d8:63:15:bf:d5:
ca:d1:6d:d3:e9:60:92:a8:dc:d5:19:0c:ad:61:3b:53:25:6b:
bb:e7:3e:d7:d0:97:1a:0a:00:0d:78:95:91:5f:65:4f:8e:ee:
74:34:5f:5e:74:b0:9d:ab:ea:0b:e2:07:78:96:ac:60:f3:a7:
40:6c:33:30:79:11:8e:a4:e7:45:74:e2:85:9f:81:b3:e4:36:
23:c3:f0:c0:21:b0:56:71:42:8f:5a:59:57:cc:e1:03:2a:1b:
71:98:89:fb:71:ea:db:23:28:8c:af:fa:eb:11:f2:32:7c:dc:
a1:1d:9d:e6:4f:cc:5c:78:e7:92:0a:ee:63:d9:c7:7d:44:88:
19:f5:81:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:05 2025 by rpki-client on console.sobornost.net