Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/oxL_IFbrM6mz0m9aIFRfMqrCT6w.roa
File: oxL_IFbrM6mz0m9aIFRfMqrCT6w.roa (raw, json)
Hash identifier: NXHU7sEwINGkL2J1XfrQuCQ6rExfJTOfXcqE64zJiN8=
Subject key identifier: A3:12:FF:20:56:EB:33:A9:B3:D2:6F:5A:20:54:5F:32:AA:C2:4F:AC
Certificate issuer: /CN=6b233d75508b4e85cccf44349a7cb703198d1d26
Certificate serial: 0195F5270498638D6516FA91CC7D0B16D976
Authority key identifier: 6B:23:3D:75:50:8B:4E:85:CC:CF:44:34:9A:7C:B7:03:19:8D:1D:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ayM9dVCLToXMz0Q0mny3AxmNHSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/oxL_IFbrM6mz0m9aIFRfMqrCT6w.roa
Signing time: Wed 02 Apr 2025 06:18:49 +0000
ROA not before: Wed 02 Apr 2025 06:18:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206150
IP address blocks: 185.76.61.0/24 maxlen: 24
185.76.63.0/24 maxlen: 24
188.74.129.0/24 maxlen: 24
188.119.180.0/24 maxlen: 24
188.119.182.0/23 maxlen: 24
188.119.182.0/24 maxlen: 24
188.119.183.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:f5:27:04:98:63:8d:65:16:fa:91:cc:7d:0b:16:d9:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b233d75508b4e85cccf44349a7cb703198d1d26
Validity
Not Before: Apr 2 06:18:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a312ff2056eb33a9b3d26f5a20545f32aac24fac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:a8:88:e5:61:f0:58:8e:66:4c:fd:de:fc:47:
a8:ac:15:88:2f:1b:2b:00:c2:b8:31:eb:a2:a9:2a:
ef:8e:98:7e:90:7c:6b:20:41:d3:91:b6:e9:20:ab:
a0:17:0b:ee:39:79:ca:86:10:63:c4:52:bc:e5:47:
14:74:95:45:b1:89:49:04:61:aa:e6:d8:77:9e:59:
5b:cb:bb:cd:27:da:55:da:1d:bc:64:de:2d:d9:5f:
2b:b5:ea:88:7f:0a:df:4f:52:82:86:5a:63:2b:26:
63:8e:26:c9:1f:12:8d:f6:d5:be:e2:99:32:c9:51:
70:be:b2:9a:7e:15:24:4e:a9:f1:9e:de:db:30:4b:
30:7f:0a:7e:ef:3c:e4:b0:45:4f:d4:0e:b5:74:e5:
4f:0f:95:e7:12:61:3c:5e:7d:e5:4b:be:df:c5:48:
93:6f:f4:cc:1b:ea:cb:58:89:3d:a1:55:1c:b7:16:
28:81:09:84:ac:4d:47:f4:32:7a:98:ba:05:3e:c3:
88:92:91:19:22:63:d0:ec:b3:ed:5a:d8:2c:8a:9e:
46:e2:28:86:f6:c9:4d:f5:38:8f:dc:f8:98:34:98:
11:60:98:61:0f:f1:79:09:6f:99:28:bd:f1:82:6c:
12:fd:5f:b9:6d:f1:f1:3a:2e:19:2f:bd:bb:d6:0d:
3c:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:12:FF:20:56:EB:33:A9:B3:D2:6F:5A:20:54:5F:32:AA:C2:4F:AC
X509v3 Authority Key Identifier:
keyid:6B:23:3D:75:50:8B:4E:85:CC:CF:44:34:9A:7C:B7:03:19:8D:1D:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ayM9dVCLToXMz0Q0mny3AxmNHSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/oxL_IFbrM6mz0m9aIFRfMqrCT6w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/ayM9dVCLToXMz0Q0mny3AxmNHSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.76.61.0/24
185.76.63.0/24
188.74.129.0/24
188.119.180.0/24
188.119.182.0/23
Signature Algorithm: sha256WithRSAEncryption
20:da:90:39:23:1f:ff:fd:83:b7:2c:0e:d8:34:e4:1c:0c:6e:
c0:be:ca:a4:e6:02:a4:40:af:ce:bc:ce:7c:03:0a:da:f5:b3:
ab:e2:2c:8a:3a:52:7a:1f:1a:ad:cd:c6:43:ac:c2:23:17:48:
d8:5a:b6:ed:53:ec:33:06:e0:a6:1d:f7:c9:f1:db:3c:6f:99:
49:e3:61:ea:10:d2:0d:1a:7e:3d:a8:cb:f8:0a:d5:4b:b5:73:
da:89:20:cb:db:69:79:59:16:44:28:30:d5:d3:94:48:49:d2:
85:69:69:50:c5:77:fc:b8:38:3c:d3:b0:14:d4:bd:f8:4a:89:
05:47:d8:61:af:10:67:3b:51:26:06:bd:ad:df:8c:8d:e9:dd:
21:40:99:0d:c1:d5:2d:d6:fa:78:b9:3f:c4:2f:35:c1:3b:46:
b2:a8:a9:8c:72:ec:12:a7:3f:ca:17:67:98:ac:e6:a2:63:e6:
91:ed:a9:db:8f:7f:f2:63:f9:41:64:ff:4b:a2:20:1b:2d:0e:
9f:96:93:b6:0f:e7:96:62:0f:e9:6c:3e:30:14:17:ab:35:b3:
d7:cc:6c:e9:f6:a0:32:12:a2:f8:4c:91:a3:42:38:b1:be:41:
d8:34:3c:0d:c7:89:8a:a4:4d:f2:6f:eb:e7:79:2c:36:aa:25:
35:6f:c4:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:25 2025 by rpki-client on console.sobornost.net