Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/84a85e-ad49-4c63-ab59-ab7b0aa1c3d4/1/NJKcRgijhXh37gGjWUXBc4kdFrM.roa
File: NJKcRgijhXh37gGjWUXBc4kdFrM.roa (raw, json)
Hash identifier: VgH49H33jw2zh7xceu9DxV5517h/9Lf09S+uqXMzIIo=
Subject key identifier: 34:92:9C:46:08:A3:85:78:77:EE:01:A3:59:45:C1:73:89:1D:16:B3
Certificate issuer: /CN=31e6591d1a04d6afe1ed5f4ed01d394ae5148589
Certificate serial: 01955BC482A2111A04B1E260B070B6C155E8
Authority key identifier: 31:E6:59:1D:1A:04:D6:AF:E1:ED:5F:4E:D0:1D:39:4A:E5:14:85:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MeZZHRoE1q_h7V9O0B05SuUUhYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/84a85e-ad49-4c63-ab59-ab7b0aa1c3d4/1/NJKcRgijhXh37gGjWUXBc4kdFrM.roa
Signing time: Mon 03 Mar 2025 11:29:19 +0000
ROA not before: Mon 03 Mar 2025 11:29:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211020
IP address blocks: 185.222.212.0/24 maxlen: 24
212.23.207.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:5b:c4:82:a2:11:1a:04:b1:e2:60:b0:70:b6:c1:55:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31e6591d1a04d6afe1ed5f4ed01d394ae5148589
Validity
Not Before: Mar 3 11:29:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=34929c4608a3857877ee01a35945c173891d16b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:86:5c:bd:f7:df:23:bf:bd:4f:08:e8:60:aa:
be:33:60:da:74:3d:c8:43:ae:1f:38:70:7d:47:06:
b3:c5:0d:72:11:d4:99:26:9a:53:e9:b1:ff:76:20:
bc:00:b4:4c:e8:8d:db:cd:50:c2:5f:09:1d:0d:8d:
cf:3b:3d:66:49:c4:0b:16:0b:ca:46:34:90:5c:32:
14:9a:53:10:cb:f1:71:9e:76:7b:96:44:26:61:46:
6c:ac:48:6b:67:57:4a:74:25:f8:3e:c8:d6:a7:ce:
10:d4:3f:f9:1b:cb:dc:0b:6f:e9:ec:e3:d8:58:eb:
4c:01:4f:52:dd:6c:6f:a5:9c:0f:4f:9a:c1:51:a8:
1c:8c:44:d1:4a:69:a3:49:eb:af:73:e9:b0:b8:85:
1e:4b:e8:51:a0:6e:b9:f5:30:93:02:fb:8f:b7:20:
63:67:65:ff:16:80:56:ed:f6:62:60:57:d4:8e:96:
fb:ed:35:b5:fa:c4:56:dc:3d:6c:94:f0:f5:9e:c8:
b2:77:e9:55:0b:14:9c:c7:e9:1a:09:35:9e:39:35:
2e:12:bb:7c:d4:bc:6a:95:83:0f:ff:1b:17:e1:96:
78:ad:34:c2:aa:47:28:e8:33:b2:7f:a3:94:ea:e8:
be:5d:02:8e:ae:40:31:30:61:56:46:f2:ff:60:1d:
57:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:92:9C:46:08:A3:85:78:77:EE:01:A3:59:45:C1:73:89:1D:16:B3
X509v3 Authority Key Identifier:
keyid:31:E6:59:1D:1A:04:D6:AF:E1:ED:5F:4E:D0:1D:39:4A:E5:14:85:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MeZZHRoE1q_h7V9O0B05SuUUhYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/84a85e-ad49-4c63-ab59-ab7b0aa1c3d4/1/NJKcRgijhXh37gGjWUXBc4kdFrM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/84a85e-ad49-4c63-ab59-ab7b0aa1c3d4/1/MeZZHRoE1q_h7V9O0B05SuUUhYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.222.212.0/24
212.23.207.0/24
Signature Algorithm: sha256WithRSAEncryption
58:b2:4b:e0:c0:5b:92:74:1f:ef:21:7f:a9:f5:df:08:f7:f6:
4b:b5:c7:e9:06:33:26:db:7d:59:4c:3f:a8:ae:49:d4:9d:19:
f3:25:e9:b5:d3:c2:f4:88:d4:b6:ca:29:f0:4d:93:53:64:45:
31:49:e7:ba:44:58:3f:ae:63:e1:53:a1:de:93:a7:c8:4c:3d:
99:18:17:e0:95:5a:1b:e1:6c:51:42:17:b7:e8:f9:52:53:a8:
40:4e:07:b4:5c:1f:8e:ce:b3:45:f1:d9:9b:00:7b:8d:1c:02:
97:fd:79:a5:66:a8:eb:3c:15:6a:0e:f9:58:81:66:2d:7f:34:
44:5e:c5:14:6b:e3:1e:6a:91:2a:a9:81:2d:bd:dd:3d:9b:e4:
c2:a6:bf:ee:88:ae:67:c4:83:09:d7:7b:a9:0e:3b:1f:69:c8:
37:e1:2e:ff:bb:6b:4e:c0:0f:50:09:f5:95:fb:3e:64:40:90:
34:df:74:f3:40:d3:61:c5:c4:17:b7:8d:1d:46:df:a0:db:b6:
75:3d:d9:ca:7b:16:45:b0:5c:00:fa:24:f1:58:73:41:ba:24:
2e:d5:e4:60:77:c4:9d:aa:73:bf:b3:eb:59:56:78:61:6c:01:
a9:c3:ae:db:fc:67:3a:75:36:89:af:a1:7a:96:a9:19:e1:4e:
07:83:10:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:26 2025 by rpki-client on console.sobornost.net