Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/ba459f-846f-47a9-a625-671158a63c23/1/gP1adqpN3jFkt9OdAVoyA-6IhBE.roa
File: gP1adqpN3jFkt9OdAVoyA-6IhBE.roa (raw, json)
Hash identifier: LIhJSQT5pr5zAf/JFHVd3amDAMZCN7LCkj2NZQ4RFrE=
Subject key identifier: 80:FD:5A:76:AA:4D:DE:31:64:B7:D3:9D:01:5A:32:03:EE:88:84:11
Certificate issuer: /CN=0edda2c6074c56241f5c7e060caccb657f64e91c
Certificate serial: 019424B26CDF1EF20BABC79EB80A60F3DBF7
Authority key identifier: 0E:DD:A2:C6:07:4C:56:24:1F:5C:7E:06:0C:AC:CB:65:7F:64:E9:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dt2ixgdMViQfXH4GDKzLZX9k6Rw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/ba459f-846f-47a9-a625-671158a63c23/1/gP1adqpN3jFkt9OdAVoyA-6IhBE.roa
Signing time: Thu 02 Jan 2025 01:47:40 +0000
ROA not before: Thu 02 Jan 2025 01:47:40 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 204737
IP address blocks: 185.242.52.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b2:6c:df:1e:f2:0b:ab:c7:9e:b8:0a:60:f3:db:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0edda2c6074c56241f5c7e060caccb657f64e91c
Validity
Not Before: Jan 2 01:47:40 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=80fd5a76aa4dde3164b7d39d015a3203ee888411
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:b2:ec:e6:29:d9:2b:42:c4:e2:6d:33:37:ae:
53:f9:b3:2f:73:91:f5:b1:a2:db:71:23:a5:ae:f9:
7e:48:cc:9a:f7:83:2e:66:82:90:31:ff:fe:25:66:
f2:fd:70:eb:15:2f:95:10:35:43:49:18:91:4c:82:
78:bf:2a:34:0f:0f:05:f5:26:6b:10:95:52:7d:7a:
90:bc:af:0d:4b:68:21:d9:32:46:a7:7f:6a:f4:aa:
60:1e:21:9e:b0:5f:d8:b8:0d:af:b4:f4:13:ff:ce:
dc:36:2c:5a:29:51:7e:12:b6:1f:63:2c:14:af:2a:
6e:68:f7:a2:67:53:7f:ce:11:be:28:81:0f:50:c4:
e9:0a:ce:32:e4:56:20:a9:d2:17:73:e9:55:53:43:
49:a9:07:21:f4:58:ff:5b:1b:ff:fd:3d:dc:4b:c9:
d0:8a:8d:02:e4:31:1f:f0:98:db:29:c8:c4:ca:55:
e5:6f:cd:5c:fb:b7:c3:3b:a6:eb:82:5c:8c:23:a9:
32:80:30:ea:6c:54:88:f8:23:b1:4b:d6:94:57:b2:
69:2c:8e:e2:73:1d:b5:7f:7f:41:68:71:b7:6f:b0:
d0:a5:35:2b:f3:8b:6e:0f:94:7a:22:fc:e5:97:29:
e7:bf:ad:aa:0d:82:c2:9b:c5:4d:a3:b5:52:67:5f:
ab:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:FD:5A:76:AA:4D:DE:31:64:B7:D3:9D:01:5A:32:03:EE:88:84:11
X509v3 Authority Key Identifier:
keyid:0E:DD:A2:C6:07:4C:56:24:1F:5C:7E:06:0C:AC:CB:65:7F:64:E9:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dt2ixgdMViQfXH4GDKzLZX9k6Rw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/ba459f-846f-47a9-a625-671158a63c23/1/gP1adqpN3jFkt9OdAVoyA-6IhBE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/ba459f-846f-47a9-a625-671158a63c23/1/Dt2ixgdMViQfXH4GDKzLZX9k6Rw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.242.52.0/22
Signature Algorithm: sha256WithRSAEncryption
a0:11:45:8a:ec:a1:e5:ce:82:fc:eb:ca:52:e0:ea:db:cb:68:
02:bb:52:01:6d:f1:09:4a:27:bc:3c:65:b6:17:0c:f8:1f:50:
6c:e5:8e:63:7d:ef:e2:ea:41:8a:2f:57:c3:17:c8:6b:d9:ae:
aa:58:59:d7:53:69:a2:9c:9e:92:87:9f:79:ed:09:9e:49:44:
e2:72:1a:c2:1d:06:b1:14:f1:a9:e7:ae:0b:a6:ad:c9:7e:2b:
ad:a8:0b:bb:26:2d:47:45:92:38:64:7b:dc:0d:8f:51:dc:1c:
c3:83:1d:c3:cf:a3:32:d0:82:77:27:fe:59:9c:d7:b5:42:3c:
4c:e2:ec:e8:19:ad:47:e8:46:c6:a7:1c:35:c9:06:1f:44:3b:
f6:80:66:76:6c:86:10:4c:9f:09:6e:dc:2d:01:bf:f7:5f:e2:
e9:62:ca:62:8e:61:60:45:a9:64:26:9b:6f:4d:c5:a2:f3:69:
e7:5b:3a:a0:60:7e:aa:fb:f4:f5:e9:a5:ab:f1:14:dc:8c:7e:
8c:75:a3:62:c8:10:cc:c9:0a:ef:a2:98:ee:1c:fd:85:fd:6e:
3d:fb:6e:f8:db:b7:e9:85:ce:22:d8:be:30:5d:e9:c5:98:29:
3d:74:bf:be:4a:ac:75:46:01:95:72:cd:6f:12:ce:ef:ed:cc:
06:fd:9a:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:03 2025 by rpki-client on console.sobornost.net