Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/b62e59-e2c5-4a76-8b67-55672634cbc1/1/tNdxttBXTBiTceqWIf2Yd2dCvUo.roa
File: tNdxttBXTBiTceqWIf2Yd2dCvUo.roa (raw, json)
Hash identifier: 2+tcAly28pcm8UnLTqlieZLYgz2WMmQ9UXx8tjmG79M=
Subject key identifier: B4:D7:71:B6:D0:57:4C:18:93:71:EA:96:21:FD:98:77:67:42:BD:4A
Certificate issuer: /CN=a3679bf4c627d85fee2ce13a53c44851b9df0563
Certificate serial: 019427B628A8D9EE7D86A6022D4B593ECB64
Authority key identifier: A3:67:9B:F4:C6:27:D8:5F:EE:2C:E1:3A:53:C4:48:51:B9:DF:05:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o2eb9MYn2F_uLOE6U8RIUbnfBWM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/b62e59-e2c5-4a76-8b67-55672634cbc1/1/tNdxttBXTBiTceqWIf2Yd2dCvUo.roa
Signing time: Thu 02 Jan 2025 15:50:36 +0000
ROA not before: Thu 02 Jan 2025 15:50:36 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 60470
IP address blocks: 185.88.156.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b6:28:a8:d9:ee:7d:86:a6:02:2d:4b:59:3e:cb:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3679bf4c627d85fee2ce13a53c44851b9df0563
Validity
Not Before: Jan 2 15:50:36 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b4d771b6d0574c189371ea9621fd98776742bd4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:42:3f:b1:48:0c:8c:38:78:88:9f:f4:29:49:
fa:4e:00:f2:4d:f6:8a:9d:66:27:fe:9c:52:af:d6:
77:a5:a7:1b:86:6f:05:d8:7b:cc:44:a4:da:3d:7f:
f3:fe:bd:a5:4d:5e:e8:b2:28:7c:c2:ad:3a:8f:da:
60:81:54:76:e5:b4:06:ca:46:44:b8:b6:76:6d:2d:
19:f2:66:2b:e8:30:65:0a:84:a4:8f:5f:75:97:2d:
5c:66:f8:6e:30:27:ab:2d:ad:76:71:18:bd:a2:45:
40:13:8c:9e:d1:a8:21:58:46:a6:0a:0d:55:e4:d9:
0a:95:e1:75:63:31:77:92:5d:de:d0:b1:d5:fc:aa:
d4:73:c9:67:f1:e3:8e:b4:4e:39:5c:8b:9b:67:fb:
4d:59:7e:3f:e2:d4:50:58:4b:3a:8e:7b:3a:88:37:
e9:47:3c:03:1a:e1:b0:cc:c8:07:bb:7b:0a:da:ae:
66:02:22:59:ac:25:87:58:f3:76:d9:8e:52:dc:4f:
ca:e4:45:41:64:a8:c3:d4:53:74:88:45:96:f0:37:
52:42:8e:7d:52:20:a7:6e:c8:86:d1:a7:46:26:aa:
f6:2b:09:60:51:12:d3:c3:cf:b6:4a:26:9a:82:92:
97:2f:d1:a7:59:9b:33:bd:76:6b:57:86:84:44:df:
39:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:D7:71:B6:D0:57:4C:18:93:71:EA:96:21:FD:98:77:67:42:BD:4A
X509v3 Authority Key Identifier:
keyid:A3:67:9B:F4:C6:27:D8:5F:EE:2C:E1:3A:53:C4:48:51:B9:DF:05:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o2eb9MYn2F_uLOE6U8RIUbnfBWM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/b62e59-e2c5-4a76-8b67-55672634cbc1/1/tNdxttBXTBiTceqWIf2Yd2dCvUo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/b62e59-e2c5-4a76-8b67-55672634cbc1/1/o2eb9MYn2F_uLOE6U8RIUbnfBWM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.88.156.0/22
Signature Algorithm: sha256WithRSAEncryption
2e:45:db:ba:07:d8:ca:e9:5c:e6:70:36:68:fd:71:20:28:97:
11:44:a9:2c:bc:cd:75:dc:8e:5a:dd:eb:7a:19:81:31:3e:56:
99:92:34:08:b7:15:60:e2:3c:8d:79:46:92:fc:42:c0:1a:28:
24:87:91:49:9e:bf:ca:6f:20:7e:28:71:90:5b:57:ec:cd:2b:
b6:d0:62:23:61:36:74:d2:ab:2a:04:ea:0b:3e:88:4c:e4:c5:
db:2a:92:a5:58:3c:f4:02:ec:ab:03:d9:f4:ff:cd:a6:2c:93:
4f:61:f3:88:c7:89:5b:32:eb:a9:a5:15:ce:5a:61:3c:54:7e:
7d:21:f5:c7:b7:69:f1:19:ef:94:bc:a1:4a:fc:b3:11:a6:8f:
c2:eb:70:b7:c8:84:21:1e:1d:8b:7a:82:8e:8f:5b:66:57:a9:
1d:35:a1:67:7c:7d:94:77:67:76:9b:c4:cf:a1:02:a7:2b:1e:
05:c5:0d:5f:c6:07:62:7b:d6:13:ec:47:99:27:74:41:09:e4:
f6:5a:ee:86:c8:59:2a:48:84:4f:31:50:33:61:8b:78:d5:54:
8b:44:75:ac:a6:b2:ea:4c:26:47:37:3d:4a:2f:58:ac:7d:a8:
b5:92:5f:30:c5:4a:d6:80:5a:d4:20:87:ce:77:ce:76:3d:52:
bf:eb:cf:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:12 2025 by rpki-client on console.sobornost.net