Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/375f04-3eb2-4d9b-90fd-249bb461ba5b/1/is7DkK81PMh7JZG7-MMXvu0KAJc.roa
File: is7DkK81PMh7JZG7-MMXvu0KAJc.roa (raw, json)
Hash identifier: 5AryV0mRq30AxQOgSKEEzO83i7o3Dx9gPE05wVnrsnk=
Subject key identifier: 8A:CE:C3:90:AF:35:3C:C8:7B:25:91:BB:F8:C3:17:BE:ED:0A:00:97
Certificate issuer: /CN=86c62c6962ea33029b480260989e1851c3252171
Certificate serial: 01954710C87B87BE077EDDEF575847E25349
Authority key identifier: 86:C6:2C:69:62:EA:33:02:9B:48:02:60:98:9E:18:51:C3:25:21:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hsYsaWLqMwKbSAJgmJ4YUcMlIXE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/375f04-3eb2-4d9b-90fd-249bb461ba5b/1/is7DkK81PMh7JZG7-MMXvu0KAJc.roa
Signing time: Thu 27 Feb 2025 11:00:37 +0000
ROA not before: Thu 27 Feb 2025 11:00:37 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 199848
IP address blocks: 185.43.140.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:47:10:c8:7b:87:be:07:7e:dd:ef:57:58:47:e2:53:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86c62c6962ea33029b480260989e1851c3252171
Validity
Not Before: Feb 27 11:00:37 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8acec390af353cc87b2591bbf8c317beed0a0097
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:dc:c3:50:76:7a:09:94:d7:52:d1:01:bd:a0:
4a:60:ed:59:12:fc:b2:31:19:2a:08:a5:37:24:5c:
69:2c:ad:c3:15:17:78:53:7e:0f:60:11:cd:cf:8b:
0c:65:19:85:0b:18:25:9e:ca:0b:53:ce:65:d1:0b:
ae:1f:9c:56:b9:58:14:9e:86:69:29:11:a3:c5:de:
fa:29:7f:c2:b5:fa:35:fe:14:17:9d:a4:40:71:8c:
71:1a:04:15:d8:4b:de:9b:b4:5b:78:a0:91:45:09:
53:11:53:76:e4:b9:39:79:d4:5c:e5:d3:76:39:29:
fb:19:20:fa:30:79:81:12:9b:64:a6:7d:04:78:25:
f7:ae:ec:a1:c9:e1:4f:40:8f:af:bc:b0:f0:92:05:
ed:4d:be:73:ec:2c:64:62:46:82:67:a0:fc:63:2f:
e0:38:ed:d5:e0:7f:d3:d8:65:72:f7:2c:ca:21:3c:
6b:32:ce:e7:c3:6e:51:ed:c6:da:9e:78:a6:f1:f2:
85:67:1f:4a:f9:f4:ab:ca:f5:99:79:fd:8e:d9:03:
49:0f:17:2f:23:60:59:10:24:0b:ae:5b:82:c9:3f:
1f:2d:cb:d5:b0:0b:64:f8:98:11:26:a0:f7:cc:d3:
51:0c:17:79:24:35:db:41:36:fb:6a:83:92:58:56:
4a:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:CE:C3:90:AF:35:3C:C8:7B:25:91:BB:F8:C3:17:BE:ED:0A:00:97
X509v3 Authority Key Identifier:
keyid:86:C6:2C:69:62:EA:33:02:9B:48:02:60:98:9E:18:51:C3:25:21:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hsYsaWLqMwKbSAJgmJ4YUcMlIXE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/375f04-3eb2-4d9b-90fd-249bb461ba5b/1/is7DkK81PMh7JZG7-MMXvu0KAJc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/375f04-3eb2-4d9b-90fd-249bb461ba5b/1/hsYsaWLqMwKbSAJgmJ4YUcMlIXE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.43.140.0/23
Signature Algorithm: sha256WithRSAEncryption
61:93:fa:e7:63:dd:9f:7d:53:7a:cc:05:04:05:41:16:28:c3:
1c:74:bf:a9:d2:96:c8:e6:8d:27:24:ae:12:e1:8d:a4:14:24:
2c:57:c1:cc:53:98:e3:8c:6d:63:fe:a8:9f:c5:d4:15:19:88:
c7:c2:97:ad:3e:74:4f:8d:6c:04:8b:e6:be:7b:ed:f4:9a:64:
4c:49:39:e3:14:0b:4e:dd:63:ec:3f:07:74:0b:be:35:dd:ea:
59:2b:bf:eb:1d:c6:8b:3b:51:df:a7:c6:88:1a:e8:d7:ae:55:
f8:c8:fe:75:85:db:6c:a9:ed:67:59:36:33:76:08:40:57:9e:
bb:83:6d:a2:e5:ec:5e:c0:44:1a:ae:29:8f:89:18:bf:45:b4:
4c:36:af:78:7e:12:e0:48:e2:b3:3b:48:11:0d:a2:05:98:8a:
a1:de:8b:fd:3f:d5:ca:fb:2c:32:b6:9f:eb:eb:84:96:a7:09:
31:53:99:a3:4e:26:ad:92:98:93:1e:9d:f6:5d:87:c6:b5:5c:
aa:3e:e9:1f:2b:15:5b:df:4f:25:fd:3b:a8:3b:c9:7b:7a:0e:
09:09:fb:fb:79:9a:6f:94:93:31:3b:2f:39:f6:56:2a:83:e3:
8b:74:cf:3f:0d:f2:6b:ea:d8:1e:07:1d:35:55:47:2e:6a:43:
32:8f:04:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:16 2025 by rpki-client on console.sobornost.net