Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/04fef8-d2df-4f7a-92b4-7f970a3af9cd/1/ewUitY15BVRTKh0SmutPUcBQMXQ.roa
File: ewUitY15BVRTKh0SmutPUcBQMXQ.roa (raw, json)
Hash identifier: B5ro7AbVa+pZeZWKqhB5vQ8tCOIi1/1KiBGVk/ZJiIg=
Subject key identifier: 7B:05:22:B5:8D:79:05:54:53:2A:1D:12:9A:EB:4F:51:C0:50:31:74
Certificate issuer: /CN=2c96946c501ddf48696da2cf110fdceb286fac98
Certificate serial: 01942067DA7DF8A60F3AB191D65527EEC347
Authority key identifier: 2C:96:94:6C:50:1D:DF:48:69:6D:A2:CF:11:0F:DC:EB:28:6F:AC:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LJaUbFAd30hpbaLPEQ_c6yhvrJg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/04fef8-d2df-4f7a-92b4-7f970a3af9cd/1/ewUitY15BVRTKh0SmutPUcBQMXQ.roa
Signing time: Wed 01 Jan 2025 05:47:44 +0000
ROA not before: Wed 01 Jan 2025 05:47:44 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 198730
IP address blocks: 185.223.84.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:67:da:7d:f8:a6:0f:3a:b1:91:d6:55:27:ee:c3:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2c96946c501ddf48696da2cf110fdceb286fac98
Validity
Not Before: Jan 1 05:47:44 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7b0522b58d790554532a1d129aeb4f51c0503174
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:e1:8e:51:ec:3a:39:d9:f4:a4:6c:bc:7a:97:
7c:b7:11:dd:19:67:4b:06:01:71:09:83:6b:ef:84:
d1:c1:46:ab:c1:6c:a6:e6:44:d8:4f:95:ca:be:b7:
3a:20:52:a1:4c:c8:24:10:d9:a3:8b:dd:ad:33:c0:
b4:4b:36:ca:6e:6c:a3:37:e2:69:fc:8a:15:21:2d:
d2:db:13:fe:9e:bc:a6:36:fa:8a:f9:38:95:7f:42:
42:2c:f9:27:d5:96:b0:91:07:21:90:13:58:0f:1a:
3a:dc:0b:14:7a:79:e6:d5:2c:f7:8a:a2:c2:d8:28:
a1:0f:66:96:2e:77:ff:92:0f:41:3d:1b:11:61:89:
2d:c9:c0:70:07:91:1d:91:82:ff:3c:45:65:a2:3e:
21:cd:6f:ff:7c:df:f5:eb:c0:fb:7b:eb:77:d1:b3:
0a:76:8f:49:7b:87:b0:94:43:e3:2a:d6:37:13:d1:
6f:be:c4:ce:ec:79:a9:fb:1d:a8:e9:1d:50:74:ba:
9f:18:f4:c8:51:0d:42:b5:af:07:d7:56:29:39:41:
66:3d:c4:db:16:c8:3a:c6:85:54:06:08:7e:b3:03:
6a:e6:a9:9c:1f:d6:a0:4d:b7:4a:62:4e:f4:3c:81:
95:5e:61:51:8e:41:fb:b5:0e:bf:f1:83:e5:87:1e:
82:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:05:22:B5:8D:79:05:54:53:2A:1D:12:9A:EB:4F:51:C0:50:31:74
X509v3 Authority Key Identifier:
keyid:2C:96:94:6C:50:1D:DF:48:69:6D:A2:CF:11:0F:DC:EB:28:6F:AC:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LJaUbFAd30hpbaLPEQ_c6yhvrJg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/04fef8-d2df-4f7a-92b4-7f970a3af9cd/1/ewUitY15BVRTKh0SmutPUcBQMXQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/04fef8-d2df-4f7a-92b4-7f970a3af9cd/1/LJaUbFAd30hpbaLPEQ_c6yhvrJg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.223.84.0/24
Signature Algorithm: sha256WithRSAEncryption
63:53:a8:1d:71:05:47:3b:ac:08:73:ad:b6:e6:c8:6d:01:19:
c0:51:b5:69:03:97:3b:2c:48:56:c4:ed:c8:e1:a9:9c:cc:d0:
2c:3e:5e:36:53:ea:df:51:c1:0c:0f:31:20:13:4f:55:4a:1c:
6e:b8:24:59:a8:a3:2b:4a:f1:4c:ad:f1:72:0e:49:d8:3a:ad:
a5:a1:63:2a:e2:d8:89:70:12:cd:df:e7:f6:0f:2e:ae:79:39:
55:5b:79:4a:36:20:d1:a9:df:c0:80:62:7c:1a:1c:97:96:f5:
a3:d2:18:98:b9:63:09:ce:15:a0:81:4c:d8:a7:a4:8c:d4:f4:
1d:1c:ee:ac:65:ec:31:d4:48:25:20:53:30:8e:1a:86:6b:d9:
c8:d0:a4:b0:86:44:29:0a:79:24:80:2b:0d:21:c8:b3:b1:42:
d3:f1:95:c4:d3:9b:17:a9:4a:ef:81:b7:a0:15:1b:e7:02:fb:
7d:04:b3:7e:ad:78:58:ff:78:21:78:fc:75:89:6b:4b:0c:c2:
06:8b:cb:a1:2d:1c:fb:d6:63:90:98:e5:60:9b:1e:d5:20:c3:
f2:d5:1c:4e:47:a4:fa:ec:ac:b7:bf:91:79:f1:1b:a7:24:0b:
fd:84:16:d9:57:15:06:53:ba:e2:ab:c5:fa:78:88:f5:c1:e2:
a8:57:7b:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:24 2025 by rpki-client on console.sobornost.net