Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/45a539-4a1e-494b-be94-1ee56c5cfbf5/1/2jDUXaVY2J9zU8vKhzB_PzOO_6U.roa
File: 2jDUXaVY2J9zU8vKhzB_PzOO_6U.roa (raw, json)
Hash identifier: uI6QS/R6IbgUMuCYc5sOFyWJ4AyLIYf/PSbRWwbYsP0=
Subject key identifier: DA:30:D4:5D:A5:58:D8:9F:73:53:CB:CA:87:30:7F:3F:33:8E:FF:A5
Certificate issuer: /CN=34603406cf0e1d7dc4a8784a188a6238e3c13abe
Certificate serial: 019427481D1BE77033521705D23998272B42
Authority key identifier: 34:60:34:06:CF:0E:1D:7D:C4:A8:78:4A:18:8A:62:38:E3:C1:3A:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NGA0Bs8OHX3EqHhKGIpiOOPBOr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/45a539-4a1e-494b-be94-1ee56c5cfbf5/1/2jDUXaVY2J9zU8vKhzB_PzOO_6U.roa
Signing time: Thu 02 Jan 2025 13:50:24 +0000
ROA not before: Thu 02 Jan 2025 13:50:24 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 25400
IP address blocks: 185.53.116.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:1d:1b:e7:70:33:52:17:05:d2:39:98:27:2b:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34603406cf0e1d7dc4a8784a188a6238e3c13abe
Validity
Not Before: Jan 2 13:50:24 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=da30d45da558d89f7353cbca87307f3f338effa5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:ae:09:f8:a0:ba:0f:5c:e4:9a:6b:ef:54:7f:
76:f0:3e:41:f7:1a:ce:94:32:62:c0:a6:e7:bd:82:
4c:b4:35:d8:73:06:bb:04:60:f3:83:27:4e:5d:29:
d7:4e:95:73:f7:a8:03:f6:8a:b1:72:dc:79:f5:c2:
d5:2a:d3:5f:b8:14:2c:ce:93:12:ae:9a:42:e6:fc:
dd:77:a5:4c:83:a3:b0:f9:96:5c:f0:02:66:77:36:
1a:f1:43:fb:9f:18:89:eb:a2:ed:22:05:de:ab:9a:
ff:0a:c8:19:bc:04:46:8f:26:dc:f7:e5:2c:1a:f2:
16:17:88:7f:0b:b1:c0:50:e6:9e:2b:38:e7:19:a7:
4f:98:ec:ec:56:fb:b7:f9:35:6e:6c:06:02:41:6a:
f8:ec:87:27:cd:eb:89:21:f5:98:b1:7d:0b:3c:62:
79:66:e1:68:41:ca:f5:e6:21:6f:da:0c:ff:69:1c:
c4:3e:ae:6c:0f:f6:a3:67:c4:12:ff:65:d7:33:42:
dc:15:c8:66:37:69:1e:e1:36:56:0f:cb:eb:ae:b3:
20:db:7d:d7:6c:4e:55:d1:97:f0:13:61:0b:0e:29:
fd:27:35:e1:39:c3:ea:5f:e2:6c:5c:01:ea:f9:3e:
ef:82:06:d4:71:f1:7e:49:f5:1f:f3:04:be:87:35:
09:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:30:D4:5D:A5:58:D8:9F:73:53:CB:CA:87:30:7F:3F:33:8E:FF:A5
X509v3 Authority Key Identifier:
keyid:34:60:34:06:CF:0E:1D:7D:C4:A8:78:4A:18:8A:62:38:E3:C1:3A:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NGA0Bs8OHX3EqHhKGIpiOOPBOr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/45a539-4a1e-494b-be94-1ee56c5cfbf5/1/2jDUXaVY2J9zU8vKhzB_PzOO_6U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/45a539-4a1e-494b-be94-1ee56c5cfbf5/1/NGA0Bs8OHX3EqHhKGIpiOOPBOr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.53.116.0/22
Signature Algorithm: sha256WithRSAEncryption
58:5f:c1:98:35:ee:ca:17:71:0a:e1:8c:91:23:0b:f8:6f:e2:
1d:28:d8:27:a3:6e:49:62:07:85:1b:d3:da:88:a2:42:96:92:
6c:98:9a:3f:e3:0b:e8:b6:3e:05:d0:23:4d:77:e5:98:6c:c2:
1e:8b:04:37:6c:ac:35:e3:bf:3b:bd:d4:f3:75:f6:90:21:98:
9a:88:80:78:fe:ba:db:02:34:e8:7d:73:6a:31:52:c3:7b:6f:
b7:a3:b5:8a:2d:f5:5c:8d:d0:99:dd:e4:c9:45:2b:c7:25:de:
b4:a0:ef:16:73:f6:7d:d0:92:96:fd:aa:39:b8:35:3e:75:15:
7a:24:39:75:42:3d:86:f1:43:d3:64:f5:5d:5b:50:23:be:9f:
14:88:c7:f9:2c:b4:1d:f8:e4:d1:2b:32:5b:11:e4:6a:ef:5b:
24:10:36:dc:66:3b:eb:25:f0:48:05:72:9a:b7:59:b0:1e:31:
66:7d:2a:ab:e0:f6:57:76:ed:52:f9:0e:5e:a6:fd:a1:a4:db:
12:37:e1:be:eb:aa:33:e0:c7:6d:b9:7a:83:8e:75:22:03:7c:
60:67:46:13:4d:4b:5e:c6:bb:5b:46:f8:ff:4b:1e:95:bd:52:
e8:cb:a9:8a:c9:42:f1:42:7a:01:4a:53:2e:61:3f:94:f4:23:
ce:75:02:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:29 2025 by rpki-client on console.sobornost.net