Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/706c03-7d35-4913-8a18-6e8784a7ad09/1/FGloAOGdHctONwf864BFw9r6804.roa
File: FGloAOGdHctONwf864BFw9r6804.roa (raw, json)
Hash identifier: idNgzg92xFKVGDg8Q8+8kqcQjJU43tGKLwcMZ1BO8+8=
Subject key identifier: 14:69:68:00:E1:9D:1D:CB:4E:37:07:FC:EB:80:45:C3:DA:FA:F3:4E
Certificate issuer: /CN=70847f8221897d6e952e86ea2c339abaacc131f5
Certificate serial: 019427480FFE0ABBA3841D20A93D18845CB1
Authority key identifier: 70:84:7F:82:21:89:7D:6E:95:2E:86:EA:2C:33:9A:BA:AC:C1:31:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cIR_giGJfW6VLobqLDOauqzBMfU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/706c03-7d35-4913-8a18-6e8784a7ad09/1/FGloAOGdHctONwf864BFw9r6804.roa
Signing time: Thu 02 Jan 2025 13:50:21 +0000
ROA not before: Thu 02 Jan 2025 13:50:21 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 39010
IP address blocks: 185.38.28.0/22 maxlen: 24
185.95.252.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:0f:fe:0a:bb:a3:84:1d:20:a9:3d:18:84:5c:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70847f8221897d6e952e86ea2c339abaacc131f5
Validity
Not Before: Jan 2 13:50:21 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=14696800e19d1dcb4e3707fceb8045c3dafaf34e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:57:fb:ee:83:e4:48:39:e7:72:94:a9:7b:9b:
50:4f:2c:42:45:4b:39:19:da:20:56:5b:66:4d:84:
f6:78:67:ca:63:0c:50:8d:b3:4a:39:65:f2:01:44:
00:85:88:10:ee:96:67:0b:ff:f4:4e:64:05:a0:9a:
de:f3:7f:85:9a:78:ec:65:18:2d:ec:c7:57:57:80:
bd:21:61:1c:65:6c:8e:ab:ef:8d:cb:18:da:05:f3:
cb:66:8a:53:da:1a:49:cd:24:e3:e5:ea:46:84:63:
b8:84:2e:33:ae:99:c0:43:c1:c1:c3:54:8f:5d:d4:
c6:aa:3c:3e:22:af:e5:6f:70:03:a6:04:ee:f0:d8:
3d:b3:ac:f9:26:00:5a:fc:75:bd:d2:3f:34:e8:e1:
88:53:80:6d:19:36:71:69:53:d3:2b:2d:a4:7e:5c:
55:96:cc:40:70:17:89:0a:a5:85:fa:22:1a:8c:ec:
9b:dc:0c:96:dc:29:48:8c:c8:85:bf:43:b6:37:a6:
93:bf:2a:b5:02:52:2c:ee:bd:ae:13:5f:cf:d9:14:
e9:25:25:89:3e:2a:42:8a:5b:db:2a:79:6e:3a:f4:
f7:93:ca:a2:63:60:ed:f8:b6:4c:8a:cd:50:0b:2e:
b1:61:b4:7d:42:07:23:12:63:ce:b7:3f:48:1a:bd:
91:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:69:68:00:E1:9D:1D:CB:4E:37:07:FC:EB:80:45:C3:DA:FA:F3:4E
X509v3 Authority Key Identifier:
keyid:70:84:7F:82:21:89:7D:6E:95:2E:86:EA:2C:33:9A:BA:AC:C1:31:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cIR_giGJfW6VLobqLDOauqzBMfU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/706c03-7d35-4913-8a18-6e8784a7ad09/1/FGloAOGdHctONwf864BFw9r6804.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/706c03-7d35-4913-8a18-6e8784a7ad09/1/cIR_giGJfW6VLobqLDOauqzBMfU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.38.28.0/22
185.95.252.0/22
Signature Algorithm: sha256WithRSAEncryption
66:60:bf:f6:d8:ee:d0:ef:ee:33:ff:be:ac:8c:ed:ca:fa:1a:
fc:bb:ba:26:12:5e:e5:68:6b:f8:a1:71:72:4f:8c:38:ba:d0:
8e:43:61:4c:a8:ec:29:b0:0e:92:15:2e:6e:7e:45:ed:dd:b3:
2d:a9:cb:fd:88:f8:b8:52:09:7b:44:04:20:bc:57:5c:4a:05:
7c:d8:aa:23:01:ef:5a:d1:e3:46:eb:8c:40:52:75:94:52:b4:
16:88:f2:48:29:33:66:75:cc:97:a5:e0:57:24:ea:21:c6:df:
91:fa:3c:8e:c6:e5:0e:9e:21:a7:6a:04:0c:59:1e:9f:71:04:
0f:14:d8:18:1a:04:22:25:28:76:2e:b8:e9:dc:dc:b2:24:df:
88:de:71:ac:42:10:20:88:85:be:dd:be:08:46:52:4f:5e:2a:
be:40:7b:9e:b9:26:4d:5b:ec:ee:1a:a9:18:17:ae:67:3d:31:
ca:38:cc:97:a7:a8:3b:23:f6:29:40:00:2f:38:45:6b:1a:fa:
8e:14:53:20:c4:4d:b8:f5:06:5b:6e:a0:5d:88:fa:e0:a5:f3:
34:35:b0:85:ec:9a:33:76:0b:ac:84:46:83:ea:b7:c7:31:cf:
35:62:68:07:70:a2:3a:fb:9b:2f:cc:b3:00:25:aa:a4:d5:98:
c9:d8:90:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:25 2025 by rpki-client on console.sobornost.net