Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/bafc4f-d64c-4404-922b-adafaad27aea/1/YAoUenHihT4DQlafryFUSek-9CM.roa
File: YAoUenHihT4DQlafryFUSek-9CM.roa (raw, json)
Hash identifier: U8ZmX/KGlPOXoWxEXiPpdG5cQfV6PXbF8uCn/cMmNEA=
Subject key identifier: 60:0A:14:7A:71:E2:85:3E:03:42:56:9F:AF:21:54:49:E9:3E:F4:23
Certificate issuer: /CN=a1208242656123c0c90b6168d09b2d8a67617bec
Certificate serial: 019423695CD93745B4E45E919EE1F201DA3C
Authority key identifier: A1:20:82:42:65:61:23:C0:C9:0B:61:68:D0:9B:2D:8A:67:61:7B:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oSCCQmVhI8DJC2Fo0Jstimdhe-w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/bafc4f-d64c-4404-922b-adafaad27aea/1/YAoUenHihT4DQlafryFUSek-9CM.roa
Signing time: Wed 01 Jan 2025 19:48:15 +0000
ROA not before: Wed 01 Jan 2025 19:48:15 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 39825
IP address blocks: 185.223.208.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:69:5c:d9:37:45:b4:e4:5e:91:9e:e1:f2:01:da:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1208242656123c0c90b6168d09b2d8a67617bec
Validity
Not Before: Jan 1 19:48:15 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=600a147a71e2853e0342569faf215449e93ef423
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:79:89:dc:bb:ed:70:36:1d:35:e2:9e:5f:5f:
42:97:53:88:aa:14:6f:77:e7:47:48:af:ad:88:36:
fb:82:73:41:a4:24:44:24:bd:0f:9d:dd:0e:bc:b9:
89:c5:17:b6:3f:f8:0c:3a:03:74:f2:42:dd:05:2c:
f4:07:93:a7:cf:d5:36:07:d5:24:ae:b2:f3:84:4b:
7b:a5:a2:08:78:24:36:17:55:4b:67:11:73:1e:f6:
4e:f7:45:cd:a2:1b:9c:3f:8b:e8:4f:ef:8f:06:78:
51:f5:e7:17:3e:9c:1d:01:a5:f6:58:75:98:4b:48:
bc:fc:41:2d:85:35:71:e7:a0:f4:64:ce:e7:31:d3:
3f:7d:da:bb:55:6f:b9:bc:ef:96:ce:50:68:80:c8:
4b:30:ee:c1:54:cd:5f:3c:b5:15:e5:32:db:ac:bf:
d4:9b:29:a8:db:51:01:7d:77:fe:7f:75:b2:b8:6f:
69:58:42:51:a2:da:1f:41:dc:6a:d8:87:a8:95:8f:
82:dc:ea:88:9e:db:61:49:38:28:3a:13:5c:f5:2e:
27:ec:0d:51:7d:50:0b:91:4d:4e:3c:0a:83:ec:2f:
bf:45:96:09:c5:64:ff:16:74:6d:49:7e:95:f8:e4:
18:44:32:da:87:0e:86:60:9f:07:0e:df:9a:f8:35:
f3:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:0A:14:7A:71:E2:85:3E:03:42:56:9F:AF:21:54:49:E9:3E:F4:23
X509v3 Authority Key Identifier:
keyid:A1:20:82:42:65:61:23:C0:C9:0B:61:68:D0:9B:2D:8A:67:61:7B:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oSCCQmVhI8DJC2Fo0Jstimdhe-w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/bafc4f-d64c-4404-922b-adafaad27aea/1/YAoUenHihT4DQlafryFUSek-9CM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/bafc4f-d64c-4404-922b-adafaad27aea/1/oSCCQmVhI8DJC2Fo0Jstimdhe-w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.223.208.0/22
Signature Algorithm: sha256WithRSAEncryption
10:61:da:c2:7b:33:f3:1c:fb:b4:3d:15:c0:85:e8:c8:7e:0b:
79:19:a7:45:c4:f5:9e:e3:27:30:58:4e:4e:4f:b4:f9:67:64:
e6:36:ea:8d:e5:a4:4e:a4:5b:d8:a9:43:d2:a2:97:2c:bc:99:
98:e5:36:65:9d:12:a9:d1:d9:72:b6:5a:e6:89:8b:f7:15:d1:
42:90:98:5a:c8:e9:61:69:13:38:3e:b7:04:f8:3d:7e:59:32:
81:93:e6:5a:77:30:91:b4:c7:75:e8:a2:f9:29:a6:98:87:a4:
cd:dc:6e:e5:8e:d5:25:65:26:cd:71:97:59:e1:9a:db:cb:cf:
f7:56:f0:06:34:35:06:26:26:c0:dd:2b:d0:0a:e0:a2:c6:b9:
49:ee:ad:c7:da:a7:46:b3:10:d1:f2:75:17:45:e6:8b:58:e9:
fe:f9:44:a6:3b:16:d1:78:35:65:35:f8:6e:34:87:d9:31:37:
05:cb:3c:8a:6c:b9:f9:7f:81:d3:31:e9:3b:ae:5c:95:a9:3a:
3f:74:d9:9a:54:98:aa:f8:e8:fe:71:4e:4a:03:62:c8:45:aa:
11:df:90:1b:a8:71:c8:25:91:41:21:f2:07:0d:f9:90:52:18:
9d:c3:0a:f3:53:97:82:5b:d3:10:2d:c8:fa:e5:60:de:1e:b9:
4e:85:73:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:02 2025 by rpki-client on console.sobornost.net