Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/e6fd0d-a02b-49c2-9a2c-4dc2dd56d57f/1/rWkvauBEMYRnIGnTGjbge3-FesI.roa
File: rWkvauBEMYRnIGnTGjbge3-FesI.roa (raw, json)
Hash identifier: NZqLavHilBq1RJJKbmTkXGJJieLsNjrQomu+4A2D7i0=
Subject key identifier: AD:69:2F:6A:E0:44:31:84:67:20:69:D3:1A:36:E0:7B:7F:85:7A:C2
Certificate issuer: /CN=7b018d2a51fef2d76c62600556c66d57cb7e9270
Certificate serial: 0195C977B74055687E33FC6CEB27B8BE48BA
Authority key identifier: 7B:01:8D:2A:51:FE:F2:D7:6C:62:60:05:56:C6:6D:57:CB:7E:92:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ewGNKlH-8tdsYmAFVsZtV8t-knA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/e6fd0d-a02b-49c2-9a2c-4dc2dd56d57f/1/rWkvauBEMYRnIGnTGjbge3-FesI.roa
Signing time: Mon 24 Mar 2025 18:43:40 +0000
ROA not before: Mon 24 Mar 2025 18:43:40 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 201596
IP address blocks: 141.195.32.0/19 maxlen: 23
185.47.248.0/22 maxlen: 24
185.58.136.0/22 maxlen: 24
2a02:6420::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:c9:77:b7:40:55:68:7e:33:fc:6c:eb:27:b8:be:48:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b018d2a51fef2d76c62600556c66d57cb7e9270
Validity
Not Before: Mar 24 18:43:40 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ad692f6ae0443184672069d31a36e07b7f857ac2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:49:43:d8:3c:20:ee:87:70:df:6e:91:86:f8:
c9:1b:1e:9a:b3:07:cb:d7:7a:67:e9:f2:75:c4:73:
a5:60:7f:00:45:0a:6d:f0:da:18:96:d5:8b:e2:ac:
73:89:c7:17:de:45:67:08:3a:a8:94:03:95:09:e8:
ad:19:82:b1:4d:70:6c:f7:08:28:0b:34:c1:17:98:
75:c1:77:9f:d1:04:cc:bf:74:f3:a4:e3:32:1e:91:
3f:be:c4:8f:a7:95:7c:59:02:f7:05:a4:6f:ea:36:
4e:e4:30:aa:6c:92:a0:b4:78:5c:b0:38:27:10:91:
84:7e:e9:04:27:39:f5:6e:4f:12:da:55:70:63:61:
02:93:99:3a:3a:e3:96:8a:65:fc:17:db:20:6c:58:
f1:3c:84:63:26:9c:1b:1f:22:e1:fe:30:39:a0:07:
04:03:19:3f:19:7f:d0:38:e6:0c:9a:2e:3e:52:f1:
fe:c5:93:e7:49:68:0d:38:89:45:32:b7:b5:3f:cb:
7d:f4:8e:a6:fc:02:75:8d:4f:dd:0a:f2:de:0d:5e:
68:28:04:90:5f:8c:e5:df:b3:1e:ff:54:2b:35:35:
d4:6e:4d:6d:91:58:86:57:b6:62:5d:57:4a:f1:1a:
98:31:b4:6f:3d:5e:b7:05:3a:15:af:6d:fd:50:b8:
ee:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:69:2F:6A:E0:44:31:84:67:20:69:D3:1A:36:E0:7B:7F:85:7A:C2
X509v3 Authority Key Identifier:
keyid:7B:01:8D:2A:51:FE:F2:D7:6C:62:60:05:56:C6:6D:57:CB:7E:92:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ewGNKlH-8tdsYmAFVsZtV8t-knA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/e6fd0d-a02b-49c2-9a2c-4dc2dd56d57f/1/rWkvauBEMYRnIGnTGjbge3-FesI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/e6fd0d-a02b-49c2-9a2c-4dc2dd56d57f/1/ewGNKlH-8tdsYmAFVsZtV8t-knA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.195.32.0/19
185.47.248.0/22
185.58.136.0/22
IPv6:
2a02:6420::/32
Signature Algorithm: sha256WithRSAEncryption
55:73:7d:69:cd:e8:f4:41:b6:a0:e7:3c:fb:88:67:69:79:af:
5e:1c:86:35:45:a9:7d:75:6d:70:71:be:1f:68:92:8f:be:70:
9d:46:ea:70:2d:cf:b7:b2:2f:2c:73:b7:40:b8:de:49:30:ec:
c9:44:91:b2:00:16:91:2f:ab:5b:3b:be:81:64:f9:47:b4:95:
d9:d7:bb:1c:20:72:99:78:27:9a:89:c3:3f:c2:09:8c:fa:ac:
fb:48:65:bc:46:88:5b:a2:98:8e:b2:4d:ac:41:39:02:51:e4:
ea:e4:e0:5e:2f:f4:69:d9:98:f0:0d:df:ba:eb:38:14:17:26:
2e:bb:ef:72:ff:41:5f:77:b7:11:ad:60:a1:29:e8:c3:6d:aa:
b4:52:3d:3d:05:c9:de:06:ad:8f:ab:46:1b:38:1e:d0:55:53:
48:51:fb:87:21:98:26:84:b3:3a:9d:89:c2:5c:72:30:e4:9c:
a6:aa:35:d0:83:3b:75:2d:c2:ff:c2:f8:b8:3d:47:2f:1d:4f:
30:fa:8a:e6:00:ac:62:5f:ac:bd:bc:a8:8e:0a:aa:2e:39:ac:
c8:81:9e:f7:ef:1e:7b:27:9d:eb:ba:5f:21:26:ee:e5:19:7d:
94:f6:83:43:5e:53:67:39:53:11:72:92:71:db:f6:ce:e3:d7:
a2:16:5e:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:10 2025 by rpki-client on console.sobornost.net