Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/107d3e-fcdc-4767-9cca-e4f2cdc7a411/1/67MB3uIiPBNhFM08ZckoWW6iFi8.roa
File: 67MB3uIiPBNhFM08ZckoWW6iFi8.roa (raw, json)
Hash identifier: JV/MdthgHrxhWbvFQASmk0ngMZHEyExozVaoGSmnqvc=
Subject key identifier: EB:B3:01:DE:E2:22:3C:13:61:14:CD:3C:65:C9:28:59:6E:A2:16:2F
Certificate issuer: /CN=63fa5e2bec0a3ec795f8f19cd47fecc680678b08
Certificate serial: 019489A6538B636BC2B688BDC9885838AE89
Authority key identifier: 63:FA:5E:2B:EC:0A:3E:C7:95:F8:F1:9C:D4:7F:EC:C6:80:67:8B:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y_peK-wKPseV-PGc1H_sxoBniwg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/107d3e-fcdc-4767-9cca-e4f2cdc7a411/1/67MB3uIiPBNhFM08ZckoWW6iFi8.roa
Signing time: Tue 21 Jan 2025 16:16:06 +0000
ROA not before: Tue 21 Jan 2025 16:16:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214260
IP address blocks: 185.227.4.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:89:a6:53:8b:63:6b:c2:b6:88:bd:c9:88:58:38:ae:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63fa5e2bec0a3ec795f8f19cd47fecc680678b08
Validity
Not Before: Jan 21 16:16:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ebb301dee2223c136114cd3c65c928596ea2162f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:76:26:d5:6f:0a:86:c6:fd:c1:0e:16:3a:4b:
3f:f1:aa:03:0f:01:c3:71:52:b8:ec:31:f8:f0:e3:
6b:0c:3a:6f:3f:7e:82:16:6d:20:f4:f3:83:15:7a:
a5:9a:ed:8b:7a:af:20:12:2c:4a:00:7e:a6:ed:90:
ab:68:35:ac:dd:ce:8a:c7:08:90:20:51:0f:27:6f:
13:e3:0c:b6:ef:8e:28:c4:e3:14:43:01:08:9f:ba:
4e:fa:cf:45:c2:ea:96:24:cd:81:ec:b4:be:f7:69:
8a:23:6e:6e:70:24:9c:92:2c:ae:af:f6:73:61:e1:
1f:52:95:6c:ac:30:a5:bb:e3:d4:af:d1:a9:18:9d:
fb:01:c4:a9:d1:08:ac:b6:7d:4b:93:c7:70:58:6a:
1a:67:bd:0c:df:86:9f:e5:4b:a2:c6:43:b1:f7:1a:
10:c4:3e:8b:f6:50:57:69:9c:1a:f2:78:d7:85:43:
9d:1d:4f:42:eb:0a:5e:aa:c6:56:54:e5:82:f2:b0:
7d:e2:11:b0:35:95:8b:f2:74:73:42:00:00:c6:2b:
2b:ac:69:79:23:62:23:73:0b:75:7e:39:e6:c2:6c:
3f:9e:c4:74:74:3b:ac:d9:5b:bc:9b:58:6f:d9:d6:
bc:4c:69:d6:44:8a:4e:ab:3e:ca:da:5c:e3:b1:9b:
5c:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:B3:01:DE:E2:22:3C:13:61:14:CD:3C:65:C9:28:59:6E:A2:16:2F
X509v3 Authority Key Identifier:
keyid:63:FA:5E:2B:EC:0A:3E:C7:95:F8:F1:9C:D4:7F:EC:C6:80:67:8B:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y_peK-wKPseV-PGc1H_sxoBniwg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/107d3e-fcdc-4767-9cca-e4f2cdc7a411/1/67MB3uIiPBNhFM08ZckoWW6iFi8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/107d3e-fcdc-4767-9cca-e4f2cdc7a411/1/Y_peK-wKPseV-PGc1H_sxoBniwg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.227.4.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:f3:04:f2:c5:fd:49:b6:44:21:46:d1:60:b5:11:2c:3b:a1:
a4:30:38:c2:86:ad:fa:34:11:7b:a2:c2:8f:6e:d0:68:88:06:
cd:61:31:83:8b:40:b9:67:94:44:a5:f5:d7:f0:fb:e0:c0:c7:
53:e4:c7:1f:04:ab:c5:bd:e1:e3:2a:74:07:c9:a1:92:3a:11:
79:79:00:be:8d:21:3b:a8:2c:4b:8a:da:3e:d9:e9:6f:bc:ee:
e2:26:a3:70:bf:c6:07:5c:73:22:ba:5f:d6:0c:e1:08:5d:cc:
bb:05:34:a1:6d:3d:c2:3c:93:0e:7f:0c:fc:e8:b1:f9:1d:57:
78:62:56:d9:27:c6:c9:df:3e:d7:03:c2:af:ea:0e:e7:39:cc:
b3:6b:68:4c:a4:f7:7f:a3:e9:cd:c9:2d:73:fa:05:09:6e:c0:
3d:b5:20:13:df:73:e8:60:80:92:d7:86:c3:3f:1f:46:91:06:
6d:80:17:de:ce:64:4c:fe:89:6f:27:aa:ae:e1:e0:e4:4c:dd:
56:31:07:40:0f:e0:82:d5:05:75:15:a0:60:a4:e9:c7:5d:bd:
1f:14:88:4a:3e:00:10:35:29:ba:03:b1:90:9e:0b:84:e0:46:
7c:53:6c:7c:65:1e:b0:b9:63:ac:7a:6f:d0:2c:25:90:5c:02:
da:10:89:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:09 2025 by rpki-client on console.sobornost.net