Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/ae324f-54f5-41da-bebf-03077e37c61a/1/1-pC8r9w9eHPboI6UQ9SPxm6C-JI.roa
File: 1-pC8r9w9eHPboI6UQ9SPxm6C-JI.roa (raw, json)
Hash identifier: 4/hN4BZtPakrI9kWgmVlEfI4CA36mWdfywhv2fUv0zc=
Subject key identifier: FA:90:BC:AF:DC:3D:78:73:DB:A0:8E:94:43:D4:8F:C6:6E:82:F8:92
Certificate issuer: /CN=f1808f1abef8e6b59cd4359a6b4481fc7c9631d1
Certificate serial: 0194266C25566FD8CBE6EBA4A0F01124A7AF
Authority key identifier: F1:80:8F:1A:BE:F8:E6:B5:9C:D4:35:9A:6B:44:81:FC:7C:96:31:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8YCPGr745rWc1DWaa0SB_HyWMdE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/ae324f-54f5-41da-bebf-03077e37c61a/1/1-pC8r9w9eHPboI6UQ9SPxm6C-JI.roa
Signing time: Thu 02 Jan 2025 09:50:09 +0000
ROA not before: Thu 02 Jan 2025 09:50:09 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 34966
IP address blocks: 153.92.184.0/23 maxlen: 24
153.92.186.0/24 maxlen: 24
185.237.32.0/24 maxlen: 24
185.237.33.0/24 maxlen: 24
185.237.35.0/24 maxlen: 24
194.30.174.0/24 maxlen: 24
195.238.224.0/24 maxlen: 24
2a0c:280::/30 maxlen: 30
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6c:25:56:6f:d8:cb:e6:eb:a4:a0:f0:11:24:a7:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1808f1abef8e6b59cd4359a6b4481fc7c9631d1
Validity
Not Before: Jan 2 09:50:09 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=fa90bcafdc3d7873dba08e9443d48fc66e82f892
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:22:66:4c:e1:68:bf:ac:92:ba:34:29:c5:0e:
1f:ba:ac:85:64:bb:f2:ee:b6:be:fc:6b:66:b9:fe:
29:ee:02:f4:b3:26:ce:12:c1:3a:ff:6d:1d:fd:25:
fa:0f:6a:1f:68:8b:cc:45:77:6a:8e:86:72:ff:1b:
1a:54:9a:15:96:ae:91:00:d0:92:66:c1:3a:78:77:
3d:eb:13:a7:6c:fa:36:8a:a1:aa:31:dc:0d:98:26:
26:c9:4b:f7:bd:15:35:54:b6:a8:5e:56:cc:a6:0a:
a5:b1:64:07:96:71:14:b2:10:ba:22:2b:05:78:bf:
7c:44:49:fc:85:2e:e3:aa:94:73:29:e0:5e:14:29:
a1:44:fd:a8:5c:8e:2d:54:a2:e9:b5:70:d5:89:ee:
65:df:64:3d:84:03:97:13:82:2b:04:d4:4a:5d:9e:
2a:5a:18:a8:9b:53:57:f0:39:9f:d9:d0:85:d0:50:
1c:11:5a:48:e1:65:f1:77:b9:c4:8a:a3:0d:c1:5a:
19:0b:14:c5:1c:73:88:51:b3:42:99:b1:db:26:9b:
b3:ad:98:49:de:ba:d5:56:7c:e5:57:a2:f4:aa:3c:
81:c2:d4:5d:df:b4:62:ef:91:11:5e:e4:b1:10:3f:
6d:fc:98:92:eb:00:94:32:53:b7:68:0e:24:83:15:
34:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:90:BC:AF:DC:3D:78:73:DB:A0:8E:94:43:D4:8F:C6:6E:82:F8:92
X509v3 Authority Key Identifier:
keyid:F1:80:8F:1A:BE:F8:E6:B5:9C:D4:35:9A:6B:44:81:FC:7C:96:31:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8YCPGr745rWc1DWaa0SB_HyWMdE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/ae324f-54f5-41da-bebf-03077e37c61a/1/1-pC8r9w9eHPboI6UQ9SPxm6C-JI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/ae324f-54f5-41da-bebf-03077e37c61a/1/8YCPGr745rWc1DWaa0SB_HyWMdE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
153.92.184.0-153.92.186.255
185.237.32.0/23
185.237.35.0/24
194.30.174.0/24
195.238.224.0/24
IPv6:
2a0c:280::/30
Signature Algorithm: sha256WithRSAEncryption
69:29:71:3c:e0:2c:f6:55:7d:26:fd:f9:0c:5f:70:be:8b:76:
20:d5:c3:21:73:64:a6:3d:46:11:98:2c:6e:fa:ed:41:b8:8e:
c3:ad:6f:5a:2f:0f:11:c8:d4:fb:88:d8:2f:07:3d:d2:55:a0:
ee:50:a0:c8:6f:7e:fa:93:42:cc:0b:51:fc:3d:d5:7c:31:04:
2e:62:39:74:57:72:58:84:35:00:48:b9:d9:3b:8c:62:9e:08:
f1:ee:8c:6c:9d:7d:b8:79:93:12:f6:8e:27:48:0a:8d:ac:70:
ae:16:22:29:86:8f:df:be:6e:62:59:85:53:18:3d:a5:39:13:
f1:c1:2d:47:58:21:04:d7:f7:15:73:b7:ca:cb:db:57:ce:89:
06:e7:a5:99:0b:b2:b1:42:68:d6:94:82:a3:d7:0a:4b:b8:2c:
bc:ae:6c:6f:a8:84:f7:0a:2c:d0:87:f1:81:54:d3:d5:58:d3:
44:2d:2a:f2:ed:3b:2c:af:a2:7e:87:cf:cd:63:c0:13:2c:80:
fe:34:69:a1:4a:ef:91:42:83:10:8f:ea:83:f5:13:0c:76:46:
b9:22:d1:1a:18:b5:25:bd:43:ab:23:7f:b3:e2:ef:e0:7b:72:
5f:25:75:2d:c3:83:ba:24:74:54:30:11:d2:2e:bd:1c:ea:1d:
4f:a7:8d:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:29 2025 by rpki-client on console.sobornost.net