Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/cf8f99-e581-4f5f-875f-df4e8c7364fe/1/a9vur_G-Sv_-WDNvoaN6FO-mp_Q.roa
File: a9vur_G-Sv_-WDNvoaN6FO-mp_Q.roa (raw, json)
Hash identifier: 5mLv65w3uElW3I7UtSlBFzQFnR6wfzkGH2z+n02Go3s=
Subject key identifier: 6B:DB:EE:AF:F1:BE:4A:FF:FE:58:33:6F:A1:A3:7A:14:EF:A6:A7:F4
Certificate issuer: /CN=3096d7afbb8a5e315a5c489acea7dcb75aa65d04
Certificate serial: 01942747FA606D8E3158E40C24D0D2BCBCB5
Authority key identifier: 30:96:D7:AF:BB:8A:5E:31:5A:5C:48:9A:CE:A7:DC:B7:5A:A6:5D:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MJbXr7uKXjFaXEiazqfct1qmXQQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/cf8f99-e581-4f5f-875f-df4e8c7364fe/1/a9vur_G-Sv_-WDNvoaN6FO-mp_Q.roa
Signing time: Thu 02 Jan 2025 13:50:16 +0000
ROA not before: Thu 02 Jan 2025 13:50:16 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43817
IP address blocks: 185.167.20.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:47:fa:60:6d:8e:31:58:e4:0c:24:d0:d2:bc:bc:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3096d7afbb8a5e315a5c489acea7dcb75aa65d04
Validity
Not Before: Jan 2 13:50:16 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6bdbeeaff1be4afffe58336fa1a37a14efa6a7f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:29:fd:61:c1:01:11:00:f8:0b:55:58:10:24:
46:d6:94:70:82:35:04:8b:99:9c:15:9c:f8:1f:bd:
b5:7f:62:b3:45:aa:43:a0:1a:bd:27:e1:71:18:cc:
fd:97:c5:96:ad:7e:7e:09:12:bf:09:ea:f1:ca:d3:
1c:10:f5:19:d8:f9:6b:4b:1e:c6:25:9b:aa:1e:18:
e9:96:54:e5:8f:b7:98:1f:78:62:a2:a9:39:61:d4:
ab:13:b8:b8:86:31:5b:ae:5b:3b:df:dd:41:20:6c:
a6:6e:d3:94:77:a5:c5:df:69:19:c6:f4:b4:31:6f:
a3:ff:45:f6:c0:82:19:83:f1:bc:0e:c1:1a:fa:8d:
79:6b:6f:69:a0:e0:96:8f:2a:e5:2f:2d:f7:65:d4:
e9:de:1d:41:4b:a1:cb:bb:ef:59:2e:1e:37:0a:af:
5f:84:56:43:e1:ad:c3:99:d0:64:79:82:5e:80:3e:
23:66:ce:df:5c:3a:02:cf:b1:98:54:64:0b:c8:d0:
35:f4:f2:e2:da:1b:4b:e6:22:69:c3:99:33:39:c8:
d3:f3:66:a7:93:32:66:ee:3b:6f:b9:9d:c0:95:c6:
cc:3d:61:b8:21:76:4a:e0:68:67:3c:48:15:c5:80:
56:3d:de:e9:43:5a:6c:be:9e:36:7f:80:d4:51:6e:
1c:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:DB:EE:AF:F1:BE:4A:FF:FE:58:33:6F:A1:A3:7A:14:EF:A6:A7:F4
X509v3 Authority Key Identifier:
keyid:30:96:D7:AF:BB:8A:5E:31:5A:5C:48:9A:CE:A7:DC:B7:5A:A6:5D:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MJbXr7uKXjFaXEiazqfct1qmXQQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/cf8f99-e581-4f5f-875f-df4e8c7364fe/1/a9vur_G-Sv_-WDNvoaN6FO-mp_Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/cf8f99-e581-4f5f-875f-df4e8c7364fe/1/MJbXr7uKXjFaXEiazqfct1qmXQQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.167.20.0/22
Signature Algorithm: sha256WithRSAEncryption
4b:8d:0c:db:4e:78:fb:29:d0:cc:87:57:1b:41:03:1e:d3:85:
75:c8:6a:27:45:5c:69:34:6e:c6:6f:01:64:a9:5c:a6:50:3b:
60:87:57:7e:01:b5:cb:04:b5:26:1c:4a:a1:37:ac:d1:fd:4b:
67:b9:dc:8c:50:de:e5:ff:14:d7:79:4b:7e:c6:dc:96:ef:ca:
ec:4a:6a:ac:d9:d6:a8:a8:78:5f:48:81:f8:88:c4:c9:78:a0:
38:b9:80:a2:b7:66:7e:09:29:15:28:59:e0:94:12:21:29:8b:
00:be:13:67:12:da:55:57:af:b1:cf:f9:93:36:38:bf:14:ba:
09:80:8a:0f:58:85:bf:0e:c1:a6:37:01:04:d6:ca:f1:c4:66:
87:12:36:d4:d2:b6:f7:cf:42:09:80:cc:c1:15:4b:b1:4c:ec:
a9:9f:54:4b:69:23:cc:42:db:99:f4:de:8a:1f:33:54:6d:15:
1b:55:23:af:b5:e3:b5:70:03:ba:2b:0b:20:be:be:cd:7f:c8:
50:3e:7d:9e:0b:82:31:83:fa:c7:a3:7c:bb:e0:17:74:0b:78:
83:4c:f2:04:2e:9a:ea:7d:5c:68:c1:b3:f7:67:06:d6:ce:64:
04:8d:e0:65:1c:14:a4:21:f7:3a:fc:83:dd:a1:0c:6f:c6:e8:
0c:0e:63:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:56 2025 by rpki-client on console.sobornost.net