Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/00c3ab-4a7f-4f74-b556-a488bd42024f/1/qFlx1w2bk_8ZzG6kySrbr5Cw93c.roa
File: qFlx1w2bk_8ZzG6kySrbr5Cw93c.roa (raw, json)
Hash identifier: Qx9Q5kDChlIU2guBfz5UZaBHybIZXsMnUw//pyzX4sI=
Subject key identifier: A8:59:71:D7:0D:9B:93:FF:19:CC:6E:A4:C9:2A:DB:AF:90:B0:F7:77
Certificate issuer: /CN=9588d8b4c7aa45a9b2cd737c614871eb7181babe
Certificate serial: 019421440C3436E708EAE2FB45B20FF74123
Authority key identifier: 95:88:D8:B4:C7:AA:45:A9:B2:CD:73:7C:61:48:71:EB:71:81:BA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lYjYtMeqRamyzXN8YUhx63GBur4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/00c3ab-4a7f-4f74-b556-a488bd42024f/1/qFlx1w2bk_8ZzG6kySrbr5Cw93c.roa
Signing time: Wed 01 Jan 2025 09:48:15 +0000
ROA not before: Wed 01 Jan 2025 09:48:15 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 34412
IP address blocks: 185.187.51.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:44:0c:34:36:e7:08:ea:e2:fb:45:b2:0f:f7:41:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9588d8b4c7aa45a9b2cd737c614871eb7181babe
Validity
Not Before: Jan 1 09:48:15 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a85971d70d9b93ff19cc6ea4c92adbaf90b0f777
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:e5:2a:e0:96:58:40:fd:60:19:0b:91:87:46:
52:f9:86:70:65:18:ba:68:a3:de:ac:9a:52:b0:27:
de:f9:17:d2:68:b9:e1:81:82:6f:1e:44:ae:0e:bf:
70:95:e9:58:5e:7e:66:c0:1a:04:07:3f:ae:73:c6:
db:25:43:73:1f:9f:5e:50:9d:ad:e1:44:4f:f2:0c:
00:82:80:3b:6b:a7:98:8c:cc:90:de:41:e0:4f:10:
f4:14:11:03:b0:e3:9a:71:08:36:2d:3e:0b:af:3c:
f9:b5:3a:85:26:5f:4f:23:30:8c:0e:86:1e:08:82:
ac:7f:48:12:c8:99:fd:d8:ff:43:91:06:49:b1:46:
3a:60:50:65:ee:e1:be:0e:dd:73:be:2c:ca:46:c1:
a6:09:f4:a1:1a:42:39:4b:0c:2d:c5:1e:67:8e:f1:
15:c4:12:23:87:5e:da:1d:9c:8c:8c:31:93:c2:f9:
89:d7:a0:25:6f:ad:88:6b:9d:52:38:e1:c3:a9:d2:
d5:09:c7:a7:01:fd:8c:77:f1:01:dc:20:c6:9e:85:
9f:92:3c:b1:df:99:8a:80:c2:01:16:ae:3b:59:65:
97:cd:3c:6f:89:9c:9e:80:41:b7:7c:74:44:65:c7:
5a:de:72:d6:8b:ef:19:03:05:34:8f:2d:a7:05:df:
06:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:59:71:D7:0D:9B:93:FF:19:CC:6E:A4:C9:2A:DB:AF:90:B0:F7:77
X509v3 Authority Key Identifier:
keyid:95:88:D8:B4:C7:AA:45:A9:B2:CD:73:7C:61:48:71:EB:71:81:BA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lYjYtMeqRamyzXN8YUhx63GBur4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/00c3ab-4a7f-4f74-b556-a488bd42024f/1/qFlx1w2bk_8ZzG6kySrbr5Cw93c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/00c3ab-4a7f-4f74-b556-a488bd42024f/1/lYjYtMeqRamyzXN8YUhx63GBur4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.187.51.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:2c:3f:5b:89:3b:84:d8:3c:de:c6:ca:65:d5:5f:1f:15:7d:
b1:d1:a5:a4:f6:d1:e8:4c:7b:49:b6:0c:44:40:51:18:80:06:
9a:ef:4a:4b:96:7d:0b:ad:33:e4:cb:d4:63:84:03:0e:5b:ff:
58:b4:78:71:44:d7:55:7d:42:42:24:ae:5d:b6:93:cb:99:4d:
58:1e:2e:8a:76:64:2d:47:a7:2b:df:20:b5:2a:5d:6a:ba:06:
92:db:eb:6d:b7:7f:54:5a:8e:49:e5:e5:94:91:81:a4:97:cd:
8b:7b:b3:18:40:e2:8b:4a:f1:6f:ed:14:ef:23:05:24:43:13:
ef:11:74:43:3d:61:3c:11:bd:d3:45:1d:c1:f8:e5:8e:d2:61:
5c:f1:f9:2e:b9:7a:89:d6:64:2a:db:0c:90:bf:b7:9f:ef:6b:
3c:d3:b2:9e:52:2c:1c:2f:ff:43:34:da:07:7c:21:d6:86:ec:
60:f9:dc:2c:11:e7:2f:59:34:33:78:0b:4c:e1:2e:32:ec:f9:
de:e5:fc:bb:bc:66:e3:22:05:43:c0:99:4b:37:0f:4a:27:ab:
7c:a9:7a:66:f4:51:2f:5e:58:1f:46:42:7c:7a:69:eb:aa:39:
ee:89:5a:2a:9d:10:e0:33:a6:78:06:08:2f:27:ba:15:2a:68:
1f:b0:ef:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:56 2025 by rpki-client on console.sobornost.net