Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/2cf88f-2c6a-4b48-a25e-4a8b6b4082b1/1/kLgY3X5leR0VtUr8VPTZGFKR1kc.roa
File: kLgY3X5leR0VtUr8VPTZGFKR1kc.roa (raw, json)
Hash identifier: LBSLrR+c9iEdXN69yxUzikKKOnVtulDFWy14eJ7VP9g=
Subject key identifier: 90:B8:18:DD:7E:65:79:1D:15:B5:4A:FC:54:F4:D9:18:52:91:D6:47
Certificate issuer: /CN=039b01353e51a3a87e835963bd8833ed81853d77
Certificate serial: 019424B3F589930C058C0D2BA7D3F3023939
Authority key identifier: 03:9B:01:35:3E:51:A3:A8:7E:83:59:63:BD:88:33:ED:81:85:3D:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A5sBNT5Ro6h-g1ljvYgz7YGFPXc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/2cf88f-2c6a-4b48-a25e-4a8b6b4082b1/1/kLgY3X5leR0VtUr8VPTZGFKR1kc.roa
Signing time: Thu 02 Jan 2025 01:49:21 +0000
ROA not before: Thu 02 Jan 2025 01:49:21 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 24586
IP address blocks: 185.138.80.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:f5:89:93:0c:05:8c:0d:2b:a7:d3:f3:02:39:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=039b01353e51a3a87e835963bd8833ed81853d77
Validity
Not Before: Jan 2 01:49:21 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=90b818dd7e65791d15b54afc54f4d9185291d647
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:27:ac:8c:22:f0:80:a8:d6:1f:42:11:f4:d8:
60:93:c2:43:a2:d2:77:cf:4f:7f:f1:62:43:98:d2:
d8:2a:fb:e0:f6:52:a4:38:2b:14:46:51:d7:b4:12:
89:99:15:cf:a0:b9:a8:15:fc:2e:31:54:18:6b:d6:
e4:44:15:2f:a0:00:13:a9:d0:3f:d1:21:2e:a8:08:
b8:17:97:75:ca:20:8d:ea:b3:9b:5c:4e:ff:ce:d9:
a2:55:31:8f:da:f6:06:16:06:b0:e3:10:4e:b5:f5:
ce:4c:4c:93:f2:31:39:e3:08:61:fa:06:34:57:df:
21:8c:7a:f2:29:f1:9b:50:3b:ca:ae:ef:90:8d:ad:
e8:23:96:6e:61:5f:08:f4:4a:3c:f9:31:43:de:26:
7e:cb:9d:21:02:f1:ec:4f:b8:12:74:8c:9c:45:56:
a5:25:a7:5e:e5:00:53:e6:60:cc:6d:cb:dc:3d:1e:
03:2e:da:ac:14:0b:16:60:77:13:02:57:38:c8:98:
fa:84:47:97:1b:07:23:28:3b:76:ab:8d:1b:95:10:
90:25:2e:13:6a:96:5b:41:ba:b0:d8:69:5c:5d:e2:
af:d5:81:9d:16:c2:d4:d4:b7:46:54:c2:1c:99:2a:
ed:cc:c5:4c:32:cc:65:ae:05:77:6a:7f:94:9d:61:
0f:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:B8:18:DD:7E:65:79:1D:15:B5:4A:FC:54:F4:D9:18:52:91:D6:47
X509v3 Authority Key Identifier:
keyid:03:9B:01:35:3E:51:A3:A8:7E:83:59:63:BD:88:33:ED:81:85:3D:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A5sBNT5Ro6h-g1ljvYgz7YGFPXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/2cf88f-2c6a-4b48-a25e-4a8b6b4082b1/1/kLgY3X5leR0VtUr8VPTZGFKR1kc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/2cf88f-2c6a-4b48-a25e-4a8b6b4082b1/1/A5sBNT5Ro6h-g1ljvYgz7YGFPXc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.138.80.0/22
Signature Algorithm: sha256WithRSAEncryption
24:7e:01:6d:85:c9:b6:b6:0c:f9:b5:61:a2:ad:c0:cc:c6:f8:
a2:c3:e5:e9:8e:ae:69:32:aa:9f:5f:f2:82:7e:28:3f:29:8f:
85:b4:77:dc:1f:73:da:95:47:b3:c6:19:ee:db:21:82:7f:6b:
4b:77:f4:e2:5f:ed:2f:62:3d:ee:96:50:aa:ae:af:20:42:31:
75:ba:8f:92:c8:04:03:d8:06:5f:3f:9d:63:fe:9d:7f:46:20:
c2:58:3d:c5:89:93:aa:1d:9c:11:53:a4:92:6e:67:66:68:3c:
55:c8:37:65:dd:07:9d:32:56:2f:45:49:e0:fa:60:a2:7a:05:
d9:8c:b3:05:2c:ac:3d:fb:72:28:6b:b5:ef:73:9c:6f:02:e3:
de:52:28:3d:a3:fd:90:af:03:25:eb:87:74:4e:5b:8c:b2:eb:
a6:40:37:e0:6e:ba:5c:d1:31:3f:e8:bf:09:77:b7:ac:f4:80:
35:b5:53:54:34:e2:28:3f:33:bd:1d:f2:a5:95:aa:60:57:aa:
77:4c:c4:ea:08:60:9c:b5:35:0e:07:4b:41:58:e5:35:34:2d:
ae:72:f9:7e:1d:1f:bc:9e:c0:d0:a1:26:60:62:aa:0f:31:4f:
a9:65:d2:da:ad:c3:64:0d:7e:65:9c:ae:88:8a:40:cf:3b:ed:
50:03:fa:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:54 2025 by rpki-client on console.sobornost.net