Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/87d43c-e0ed-48b3-b4e3-05ed86735306/1/95UilOURLat0lc9QoS7Ws8cK2EA.roa
File: 95UilOURLat0lc9QoS7Ws8cK2EA.roa (raw, json)
Hash identifier: IqAjP92yfLol/XET3CMcHwom9MrBLP/CZ4kPceWSYnk=
Subject key identifier: F7:95:22:94:E5:11:2D:AB:74:95:CF:50:A1:2E:D6:B3:C7:0A:D8:40
Certificate issuer: /CN=ff37d6c1f6a5c4a92bbffd85c4142127fa3e1a30
Certificate serial: 019427487374CF292B90C88E4C24A50B70F3
Authority key identifier: FF:37:D6:C1:F6:A5:C4:A9:2B:BF:FD:85:C4:14:21:27:FA:3E:1A:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_zfWwfalxKkrv_2FxBQhJ_o-GjA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/87d43c-e0ed-48b3-b4e3-05ed86735306/1/95UilOURLat0lc9QoS7Ws8cK2EA.roa
Signing time: Thu 02 Jan 2025 13:50:47 +0000
ROA not before: Thu 02 Jan 2025 13:50:47 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 204756
IP address blocks: 185.240.36.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:73:74:cf:29:2b:90:c8:8e:4c:24:a5:0b:70:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff37d6c1f6a5c4a92bbffd85c4142127fa3e1a30
Validity
Not Before: Jan 2 13:50:47 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f7952294e5112dab7495cf50a12ed6b3c70ad840
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:5a:a3:59:75:af:aa:cd:17:ad:2e:e4:d2:e0:
97:ca:5c:47:ae:53:c8:c2:d5:83:04:81:0c:a8:ab:
db:ca:b0:7f:f1:50:b7:29:a6:bc:7e:89:d6:ee:75:
58:50:18:ed:93:b0:b4:69:b1:f8:e3:eb:84:9b:f9:
26:9f:02:7f:50:48:2f:50:b8:76:e0:02:33:67:f9:
35:40:52:d7:4e:d4:30:37:a3:64:f6:b5:75:06:06:
54:4a:a7:01:33:71:4b:73:86:7b:4d:3e:a0:82:d9:
ce:99:85:23:a4:3c:ac:6f:ba:5a:6c:c6:35:8a:19:
38:cb:31:cc:58:81:c5:c8:90:a1:ee:95:ee:7a:10:
dd:40:d5:c1:23:4d:92:9c:96:37:6c:a9:9b:29:49:
71:e3:e2:62:cc:ee:3a:f3:f0:c3:f8:a0:d6:a2:31:
1a:99:38:1c:62:fb:a4:fb:98:8d:26:be:0b:ce:c3:
b7:4c:45:8f:ea:5a:09:d4:a1:bc:cf:53:4e:14:d7:
74:8c:b1:44:52:40:3e:3c:c6:b5:20:a1:5a:1a:80:
05:bd:b6:46:f6:6a:14:c3:e2:00:03:99:32:8b:3e:
96:2e:ef:bf:fc:c4:fc:8c:f0:a6:b5:25:ea:41:8d:
d4:4a:dd:fe:a1:25:9a:0e:fa:f1:75:56:9e:eb:65:
6e:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:95:22:94:E5:11:2D:AB:74:95:CF:50:A1:2E:D6:B3:C7:0A:D8:40
X509v3 Authority Key Identifier:
keyid:FF:37:D6:C1:F6:A5:C4:A9:2B:BF:FD:85:C4:14:21:27:FA:3E:1A:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_zfWwfalxKkrv_2FxBQhJ_o-GjA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/87d43c-e0ed-48b3-b4e3-05ed86735306/1/95UilOURLat0lc9QoS7Ws8cK2EA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/87d43c-e0ed-48b3-b4e3-05ed86735306/1/_zfWwfalxKkrv_2FxBQhJ_o-GjA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.240.36.0/22
Signature Algorithm: sha256WithRSAEncryption
3b:24:da:7c:a0:2c:a1:d7:e1:4e:d4:40:20:98:00:5f:6f:d5:
6c:a9:04:c4:d7:c4:b1:47:fc:1e:3f:81:08:d7:04:7d:83:7a:
92:3a:7b:3a:3f:4d:88:ea:5b:dc:e5:1b:d1:ca:f9:4e:a4:f4:
15:00:19:3e:cc:78:48:7f:2d:15:fb:e4:83:73:bf:6b:cb:15:
f8:e7:4a:33:d9:e3:a5:97:a8:15:bb:e0:bb:26:4f:a2:b3:b5:
92:35:1b:9a:77:cc:49:ed:f9:36:bf:95:df:5a:3c:ea:e4:c2:
e3:7f:bc:57:88:4c:b6:9c:7d:bb:dd:44:db:b2:ca:ed:bb:1f:
f4:15:03:d0:9c:6b:31:bc:8a:4b:33:bb:62:c8:7e:48:18:48:
0d:3c:56:6e:e1:dd:cf:7f:63:32:ac:71:e3:35:e6:c2:42:46:
f2:f0:ff:02:2e:09:52:8b:75:8f:be:f5:5e:7f:44:30:e2:47:
66:d3:8a:8e:f2:e5:d9:3c:77:af:ca:d8:d6:d0:ac:81:69:21:
97:74:c5:83:72:42:b6:de:f6:25:04:53:35:47:47:a7:d2:00:
a9:83:c2:2e:09:ea:c2:07:db:32:27:3b:9a:86:bf:bf:96:6d:
67:28:2f:ba:79:d0:6d:e2:cb:da:1f:ac:17:44:ab:85:fa:79:
62:95:79:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:46 2025 by rpki-client on console.sobornost.net