Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/85f02e-f1ac-44fb-92eb-f05aa229d638/1/ThdvCVcdBiAo4xc9KrZRGtoVTn4.roa
File: ThdvCVcdBiAo4xc9KrZRGtoVTn4.roa (raw, json)
Hash identifier: 5enzMSWHLd+Sp661pUbYfrfG5akCg6FvCWgHesqa67Q=
Subject key identifier: 4E:17:6F:09:57:1D:06:20:28:E3:17:3D:2A:B6:51:1A:DA:15:4E:7E
Certificate issuer: /CN=d2622fdec8fadfca58e7575c29f10e73ae775715
Certificate serial: 019427B60A12B5470D4986CACCC0B3D0CD1B
Authority key identifier: D2:62:2F:DE:C8:FA:DF:CA:58:E7:57:5C:29:F1:0E:73:AE:77:57:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0mIv3sj638pY51dcKfEOc653VxU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/85f02e-f1ac-44fb-92eb-f05aa229d638/1/ThdvCVcdBiAo4xc9KrZRGtoVTn4.roa
Signing time: Thu 02 Jan 2025 15:50:28 +0000
ROA not before: Thu 02 Jan 2025 15:50:28 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48233
IP address blocks: 85.187.192.0/21 maxlen: 24
151.237.84.0/22 maxlen: 24
194.69.201.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b6:0a:12:b5:47:0d:49:86:ca:cc:c0:b3:d0:cd:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2622fdec8fadfca58e7575c29f10e73ae775715
Validity
Not Before: Jan 2 15:50:28 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4e176f09571d062028e3173d2ab6511ada154e7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:b7:ee:ec:04:53:5f:6a:0d:5a:30:a0:59:91:
49:c2:b5:30:d0:4d:28:5c:19:7f:86:c8:2f:60:6a:
dd:20:82:09:e9:db:ec:76:7f:68:56:97:f5:80:49:
ac:89:30:17:bf:a0:02:e0:5e:d5:86:08:84:89:c9:
e0:4f:3d:85:76:ab:f6:9e:05:bc:90:bd:16:00:05:
85:56:5c:0c:cf:49:2f:d2:31:aa:1f:51:44:0e:53:
f6:18:4e:43:5d:16:b2:7c:a4:84:1d:52:45:c3:db:
f7:82:65:6d:67:ed:1b:76:ce:a3:33:fa:1d:a9:cb:
c9:97:c9:07:a6:e9:1a:2a:d3:f4:29:f2:67:27:89:
2d:91:ce:5e:81:f4:39:de:6f:30:81:f3:d8:94:97:
7d:da:40:53:93:54:32:c7:2c:c1:4d:eb:c5:9f:29:
48:3e:06:83:e4:cb:9c:9d:83:67:c4:b0:f5:9f:71:
85:b4:10:77:23:6a:25:02:66:0d:a1:58:7c:31:69:
e6:6b:49:31:7f:a0:8d:87:72:69:57:8b:e8:3d:7e:
dd:ac:d1:00:42:ce:06:89:f9:01:df:e1:15:7c:c2:
07:2f:77:50:00:c2:b9:67:67:6f:39:e9:dc:3e:29:
97:81:0e:a4:f5:3f:ae:32:81:9c:d1:03:9f:eb:e3:
5a:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:17:6F:09:57:1D:06:20:28:E3:17:3D:2A:B6:51:1A:DA:15:4E:7E
X509v3 Authority Key Identifier:
keyid:D2:62:2F:DE:C8:FA:DF:CA:58:E7:57:5C:29:F1:0E:73:AE:77:57:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0mIv3sj638pY51dcKfEOc653VxU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/85f02e-f1ac-44fb-92eb-f05aa229d638/1/ThdvCVcdBiAo4xc9KrZRGtoVTn4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/85f02e-f1ac-44fb-92eb-f05aa229d638/1/0mIv3sj638pY51dcKfEOc653VxU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.187.192.0/21
151.237.84.0/22
194.69.201.0/24
Signature Algorithm: sha256WithRSAEncryption
55:17:13:a5:71:7b:52:c5:92:99:77:58:ef:d1:bf:40:ab:32:
de:8a:39:7b:4c:35:01:0a:4f:3b:f6:5b:8b:01:b1:53:54:c7:
99:60:49:07:fa:83:4f:0a:89:17:a9:65:10:59:34:3d:47:3d:
66:82:4b:c2:72:dc:7d:98:9e:01:f3:dd:3f:a5:6b:ff:12:c6:
f4:56:ae:f5:65:21:48:9a:e5:17:0a:5f:da:b0:26:83:42:23:
7e:8e:e2:d7:9e:a4:f8:f1:26:84:d9:91:c8:4f:2e:1b:18:ed:
96:96:c8:15:7b:b1:5e:8f:fe:59:37:c0:d4:4b:ef:20:d5:ef:
b8:42:7b:6d:60:33:c7:2b:99:1a:ad:ac:a6:ac:2a:82:ba:8c:
54:d3:4d:d2:a5:9e:82:f9:5b:89:64:51:1b:6a:a3:22:3f:72:
82:ba:25:b9:76:08:13:e8:23:db:bb:47:df:94:74:33:15:bf:
bf:d8:77:92:88:1b:a4:f7:5b:7f:cf:08:e0:14:fe:2a:ed:48:
38:36:b7:78:7b:4c:8b:d9:ba:8d:2e:e1:c6:5f:f0:69:5f:d2:
87:35:1d:67:cf:08:e6:5d:80:24:aa:10:fe:9a:27:a1:4a:71:
0d:1c:ee:b3:59:0a:f7:0b:23:12:32:41:05:b8:d2:ab:9c:81:
a6:e5:ad:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:27 2025 by rpki-client on console.sobornost.net