Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/dcdae6-d695-4266-ba9b-93b3a3696d96/1/TH1GQt5phoccIVru2X6WLJ52OMs.roa
File: TH1GQt5phoccIVru2X6WLJ52OMs.roa (raw, json)
Hash identifier: lBAEWmb8yHalrh5kruZJueiLdM1gxTgfao1k6b840VY=
Subject key identifier: 4C:7D:46:42:DE:69:86:87:1C:21:5A:EE:D9:7E:96:2C:9E:76:38:CB
Certificate issuer: /CN=e631b080d4ea6fd0616a6e701c7c815d6ff87c00
Certificate serial: 0194266BFC3AB990F7564670F84743C3D0D1
Authority key identifier: E6:31:B0:80:D4:EA:6F:D0:61:6A:6E:70:1C:7C:81:5D:6F:F8:7C:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5jGwgNTqb9Bham5wHHyBXW_4fAA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/dcdae6-d695-4266-ba9b-93b3a3696d96/1/TH1GQt5phoccIVru2X6WLJ52OMs.roa
Signing time: Thu 02 Jan 2025 09:49:58 +0000
ROA not before: Thu 02 Jan 2025 09:49:58 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 39686
IP address blocks: 185.144.196.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:fc:3a:b9:90:f7:56:46:70:f8:47:43:c3:d0:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e631b080d4ea6fd0616a6e701c7c815d6ff87c00
Validity
Not Before: Jan 2 09:49:58 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4c7d4642de6986871c215aeed97e962c9e7638cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:f6:81:78:b4:a1:7c:5d:19:ab:a8:19:99:a2:
f9:68:18:09:ae:d3:5c:8d:c4:89:38:ef:7e:4e:5f:
8c:64:6e:f5:ae:0e:ba:a5:ba:71:cb:f5:10:a2:c3:
d7:48:30:df:33:27:91:52:83:29:a7:2c:ff:98:9e:
74:e9:9d:b7:b8:a6:9a:15:88:19:93:78:39:74:44:
3b:f5:48:76:6d:b9:98:d0:02:a5:83:b5:d0:86:55:
f8:49:ae:d5:1c:4e:22:0a:10:13:97:40:29:df:48:
28:4e:69:7f:4b:ca:08:20:51:03:26:2d:01:03:2c:
5f:fc:2d:eb:ff:03:f2:fb:2e:36:fe:44:32:bf:43:
7b:7a:8a:c5:a1:a7:c1:b6:22:f7:b4:57:00:a0:02:
e9:e0:fd:e8:b7:c8:ce:56:61:33:f6:77:f1:87:89:
3b:eb:5c:08:0e:68:0a:06:a9:b8:ae:fa:2d:48:ee:
29:6b:3a:e1:b9:35:64:5e:4d:2a:d2:08:94:58:c2:
0a:03:d4:a9:37:df:af:77:31:cc:9b:0a:4d:28:33:
80:44:e1:94:ca:26:84:25:44:17:75:52:12:e8:c2:
3b:ea:55:e1:a9:d5:86:29:93:c2:e3:21:a9:a3:1e:
5d:96:14:dc:16:60:59:e2:46:6b:2f:a0:2e:c4:cb:
ae:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:7D:46:42:DE:69:86:87:1C:21:5A:EE:D9:7E:96:2C:9E:76:38:CB
X509v3 Authority Key Identifier:
keyid:E6:31:B0:80:D4:EA:6F:D0:61:6A:6E:70:1C:7C:81:5D:6F:F8:7C:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5jGwgNTqb9Bham5wHHyBXW_4fAA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/dcdae6-d695-4266-ba9b-93b3a3696d96/1/TH1GQt5phoccIVru2X6WLJ52OMs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/dcdae6-d695-4266-ba9b-93b3a3696d96/1/5jGwgNTqb9Bham5wHHyBXW_4fAA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.144.196.0/22
Signature Algorithm: sha256WithRSAEncryption
66:c4:b0:7b:1e:41:e4:7c:09:7b:cc:5f:e9:4d:38:f0:2d:1b:
7a:75:3a:ba:98:6d:63:15:e0:49:fd:2b:55:25:28:de:e5:70:
3f:95:e4:18:07:77:ac:11:f2:dd:f1:04:a7:d5:2a:96:e3:7c:
70:45:25:bf:f9:c5:db:23:1d:e5:b0:54:b0:18:e7:f4:09:0a:
2a:2a:c9:c0:5a:1e:8a:7a:96:8d:7a:52:6d:bc:a9:83:77:71:
4c:4e:33:3c:71:54:b8:47:7b:ba:20:68:3e:62:a3:66:f5:ad:
d4:8e:c2:24:cf:55:c1:00:6b:57:fd:62:99:35:07:99:ae:5b:
ca:5a:66:73:cf:71:71:4a:78:b4:f6:60:bb:eb:b3:54:1c:20:
5b:44:5f:84:a7:5e:75:b9:a2:41:86:ad:e0:0f:99:8d:79:58:
48:9f:05:cd:e3:01:8e:7d:43:69:e1:e3:d4:3a:fb:5d:12:d5:
18:55:d4:f4:12:aa:04:d4:8d:15:05:01:03:af:e9:43:c0:ee:
c5:d9:2f:fd:20:ad:a9:5d:df:c4:f6:9b:52:65:7a:7a:68:b3:
c5:bd:bb:ec:0e:e5:3f:6d:c6:d5:cf:9b:ca:31:89:1b:07:c7:
e6:4a:7d:f1:db:b5:10:c2:0d:ef:55:fa:00:44:4b:d7:ef:b3:
5e:70:91:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:26 2025 by rpki-client on console.sobornost.net