Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/56c934-cf14-4a4f-ae7c-3bd1978bf2f6/1/K3O0AE3ipMAixLfcc54vqisf9Lk.roa
File: K3O0AE3ipMAixLfcc54vqisf9Lk.roa (raw, json)
Hash identifier: 39lhfBxsDOQl4+NOlD/26yVUVPea0hcXtUuz/K2/lnU=
Subject key identifier: 2B:73:B4:00:4D:E2:A4:C0:22:C4:B7:DC:73:9E:2F:AA:2B:1F:F4:B9
Certificate issuer: /CN=edb926f8c603aab79cb46a883bf632564a3faabf
Certificate serial: 0195B8CAE3741FC7FD2FB2343F7D1D7D0F2F
Authority key identifier: ED:B9:26:F8:C6:03:AA:B7:9C:B4:6A:88:3B:F6:32:56:4A:3F:AA:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7bkm-MYDqrectGqIO_YyVko_qr8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/56c934-cf14-4a4f-ae7c-3bd1978bf2f6/1/K3O0AE3ipMAixLfcc54vqisf9Lk.roa
Signing time: Fri 21 Mar 2025 13:00:59 +0000
ROA not before: Fri 21 Mar 2025 13:00:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 209252
IP address blocks: 185.62.206.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:b8:ca:e3:74:1f:c7:fd:2f:b2:34:3f:7d:1d:7d:0f:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=edb926f8c603aab79cb46a883bf632564a3faabf
Validity
Not Before: Mar 21 13:00:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2b73b4004de2a4c022c4b7dc739e2faa2b1ff4b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:e5:44:2b:e1:35:96:51:e7:21:0f:d8:0e:fb:
f8:5b:25:af:8a:71:5d:fc:3c:34:c6:67:8e:12:e8:
16:bc:6e:db:a0:2a:9a:20:26:2a:c6:bd:d4:fd:23:
b7:71:47:6e:22:5b:d7:5a:ed:97:9d:4f:d8:df:03:
ee:2c:26:e5:7e:f0:72:90:8f:ef:24:59:d8:44:ae:
83:fb:a5:e6:d5:ba:86:65:8e:2a:51:ef:37:dd:56:
58:34:b8:03:f1:47:db:ef:89:a9:c2:35:16:3c:1a:
97:d5:80:ea:f3:66:0b:4f:81:ab:f2:78:92:3f:45:
d4:86:c0:e7:85:90:ec:7e:4b:a5:54:73:84:5a:55:
d8:f3:11:18:f2:83:c9:f9:46:bf:c9:2a:0d:9b:e1:
06:71:f8:96:cc:72:c9:6d:25:a3:21:45:a9:52:e0:
8e:5b:59:96:b8:7e:58:c6:23:f8:a9:69:ed:42:a7:
db:83:25:b0:ac:93:4c:5c:ed:bc:bd:58:e9:0e:70:
82:1d:7a:a8:48:ef:8c:20:c1:6b:a5:95:85:f0:e0:
2f:25:36:56:39:f4:cf:2f:fa:fb:7f:77:25:e6:b3:
56:f1:72:27:44:85:94:0e:f7:96:a9:c6:28:c5:3e:
88:35:9d:8b:50:67:4b:10:ba:2d:d6:5f:20:bd:b8:
21:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:73:B4:00:4D:E2:A4:C0:22:C4:B7:DC:73:9E:2F:AA:2B:1F:F4:B9
X509v3 Authority Key Identifier:
keyid:ED:B9:26:F8:C6:03:AA:B7:9C:B4:6A:88:3B:F6:32:56:4A:3F:AA:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7bkm-MYDqrectGqIO_YyVko_qr8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/56c934-cf14-4a4f-ae7c-3bd1978bf2f6/1/K3O0AE3ipMAixLfcc54vqisf9Lk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/56c934-cf14-4a4f-ae7c-3bd1978bf2f6/1/7bkm-MYDqrectGqIO_YyVko_qr8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.62.206.0/24
Signature Algorithm: sha256WithRSAEncryption
14:9f:7c:c4:59:99:b0:29:c1:13:0a:4f:51:0d:dc:2f:52:2b:
58:c7:05:60:8a:51:9b:73:1b:28:7d:c3:28:a2:08:76:de:6b:
31:55:15:eb:86:d7:0d:5b:56:d5:2f:e5:eb:fc:ef:fc:1e:04:
b0:46:b9:1a:5c:78:ae:66:2b:48:a5:75:d9:2c:c3:c2:68:3d:
21:d4:6e:8a:43:7b:51:6c:74:83:cc:b0:d9:2b:a6:08:24:8c:
a9:f8:f3:1d:b7:a9:b5:07:05:8a:eb:a7:e6:d5:88:85:b0:47:
6a:1a:9e:2f:5e:5b:61:8d:d5:82:f9:5b:b5:29:cd:91:c0:f6:
d7:8c:36:97:33:61:7c:54:99:18:ec:ab:7d:90:78:ff:0c:d3:
41:d0:aa:89:b1:28:d1:da:da:8d:73:f9:c1:b2:27:a6:f0:8b:
57:e9:31:d3:24:40:8b:4b:e6:89:0e:30:bd:dd:89:2e:be:dd:
e1:88:28:b2:72:db:86:1e:ee:70:17:45:35:c8:48:b9:7b:61:
06:79:5a:98:dc:1a:b8:03:10:fc:15:8c:e9:3e:7c:65:91:2c:
43:3f:fc:0b:21:5f:8f:d8:8c:4c:54:24:41:7e:5d:de:e5:79:
b4:c0:f1:50:c9:84:a0:e2:c4:02:87:42:e4:bc:73:5d:62:f5:
7f:e3:cd:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:05 2025 by rpki-client on console.sobornost.net