Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/698efb-c6b4-4d2c-9368-7cec2d5345b4/1/i-DPtzOhX1UrAwvJvp6e_VFBpfU.roa
File: i-DPtzOhX1UrAwvJvp6e_VFBpfU.roa (raw, json)
Hash identifier: b0DJ4Ik9RBvNDvd/V/+wWQQR6BcIK0SHDpRuzhlzJ6o=
Subject key identifier: 8B:E0:CF:B7:33:A1:5F:55:2B:03:0B:C9:BE:9E:9E:FD:51:41:A5:F5
Certificate issuer: /CN=b2d7f999838aa163bf344fc69917bb60d12fdfc3
Certificate serial: 0194258F546EBBAB64D16182FBB5AA702FC5
Authority key identifier: B2:D7:F9:99:83:8A:A1:63:BF:34:4F:C6:99:17:BB:60:D1:2F:DF:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/stf5mYOKoWO_NE_GmRe7YNEv38M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/698efb-c6b4-4d2c-9368-7cec2d5345b4/1/i-DPtzOhX1UrAwvJvp6e_VFBpfU.roa
Signing time: Thu 02 Jan 2025 05:48:57 +0000
ROA not before: Thu 02 Jan 2025 05:48:57 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206343
IP address blocks: 185.137.158.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:54:6e:bb:ab:64:d1:61:82:fb:b5:aa:70:2f:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2d7f999838aa163bf344fc69917bb60d12fdfc3
Validity
Not Before: Jan 2 05:48:57 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8be0cfb733a15f552b030bc9be9e9efd5141a5f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:ef:ff:bb:09:6d:7e:1e:dd:bc:9b:46:dd:f1:
81:2b:10:12:d0:40:db:24:b6:84:5a:e0:fa:8a:e2:
f2:2d:1b:fe:25:b5:63:37:66:32:0d:58:de:d6:9f:
c6:4a:4d:e7:73:51:65:68:2d:d5:a9:e6:95:54:5b:
fb:db:26:65:c9:27:d2:1d:a5:89:74:11:86:63:94:
0f:20:7f:07:85:0b:c0:74:53:12:7b:4d:ff:3a:10:
7f:8a:6f:2b:79:a9:78:a7:5c:fb:65:a7:12:bb:b2:
48:87:c2:1f:95:72:11:fd:81:5d:b9:5b:d3:d3:c5:
b3:2c:cd:de:06:ec:6d:42:d6:85:47:f0:98:3b:d3:
01:8e:f3:a2:a8:ad:95:de:c1:7b:79:eb:15:5f:3e:
0c:52:65:3c:ca:d7:82:d9:3d:50:d6:4c:f5:a5:44:
92:24:63:39:e5:25:2a:89:d7:c5:b8:06:9d:03:fa:
61:87:f7:99:67:13:44:ec:5f:08:8c:38:62:7c:d2:
da:3f:16:6a:96:38:a5:cc:30:87:c5:c4:db:ac:0e:
a8:5c:53:b6:a1:1c:eb:0e:fe:64:bb:7c:6e:ac:b0:
65:d2:fa:1a:33:40:45:6f:76:37:bc:09:50:46:5b:
e2:77:53:a8:d8:ee:a5:00:15:65:c5:e4:23:d4:67:
1b:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:E0:CF:B7:33:A1:5F:55:2B:03:0B:C9:BE:9E:9E:FD:51:41:A5:F5
X509v3 Authority Key Identifier:
keyid:B2:D7:F9:99:83:8A:A1:63:BF:34:4F:C6:99:17:BB:60:D1:2F:DF:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/stf5mYOKoWO_NE_GmRe7YNEv38M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/698efb-c6b4-4d2c-9368-7cec2d5345b4/1/i-DPtzOhX1UrAwvJvp6e_VFBpfU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/698efb-c6b4-4d2c-9368-7cec2d5345b4/1/stf5mYOKoWO_NE_GmRe7YNEv38M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.137.158.0/24
Signature Algorithm: sha256WithRSAEncryption
57:0c:01:2f:c6:36:20:06:87:8a:d6:50:00:79:03:8e:90:e6:
67:59:7e:ac:4c:59:27:06:9e:fb:20:b3:2f:a9:4d:16:9f:16:
3b:e6:e3:6f:92:23:e1:fc:7c:99:c2:2e:85:8f:b2:41:96:07:
db:9a:21:58:26:ed:f3:37:a7:e4:a9:88:0f:6c:50:c3:a8:92:
b4:40:5e:89:69:ba:11:b6:ab:92:f5:80:79:9d:ae:69:f4:95:
a0:8f:c2:94:69:37:84:17:3b:17:7c:41:15:87:b0:ea:fd:98:
6a:65:16:ed:56:eb:b4:8b:cc:3d:15:7c:30:67:5c:2e:2c:65:
50:e9:a2:06:2b:53:b4:4d:fa:af:27:93:ca:b7:e0:55:2a:6a:
c3:86:74:ae:06:ca:97:04:dd:32:d8:15:ca:dd:73:c1:9f:3a:
6e:cf:15:78:02:6e:70:82:7b:50:de:47:a2:31:1e:08:5a:36:
4d:dd:98:23:1d:c2:85:36:b2:c1:81:25:65:2a:c3:72:cf:c9:
30:58:c2:9a:3b:32:e4:75:4d:b7:cc:8e:fd:cd:83:cf:87:e4:
26:cc:86:6e:c6:a3:fc:ba:2e:09:52:5d:20:76:d8:5b:1a:5c:
1c:8b:e1:aa:9d:78:06:ae:0f:83:8f:ca:41:87:18:c6:e0:8d:
13:a8:b2:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:11 2025 by rpki-client on console.sobornost.net