Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/2e82cb-4a6e-408f-af20-843154a80b72/1/yB2qv2hArqh8Rg0DZ4yGfxQJ57I.roa
File: yB2qv2hArqh8Rg0DZ4yGfxQJ57I.roa (raw, json)
Hash identifier: b+3wO516colETH6Q8Hnf3dC3oM2heED/4qOLBklRlP8=
Subject key identifier: C8:1D:AA:BF:68:40:AE:A8:7C:46:0D:03:67:8C:86:7F:14:09:E7:B2
Certificate issuer: /CN=e22a93ceb82b675a84b0d78e79ae4a797ca98231
Certificate serial: 019425215EEB4E6E2F920AF439BEAE4C17D4
Authority key identifier: E2:2A:93:CE:B8:2B:67:5A:84:B0:D7:8E:79:AE:4A:79:7C:A9:82:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4iqTzrgrZ1qEsNeOea5KeXypgjE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/2e82cb-4a6e-408f-af20-843154a80b72/1/yB2qv2hArqh8Rg0DZ4yGfxQJ57I.roa
Signing time: Thu 02 Jan 2025 03:48:51 +0000
ROA not before: Thu 02 Jan 2025 03:48:51 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 47176
IP address blocks: 185.159.204.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:5e:eb:4e:6e:2f:92:0a:f4:39:be:ae:4c:17:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e22a93ceb82b675a84b0d78e79ae4a797ca98231
Validity
Not Before: Jan 2 03:48:51 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c81daabf6840aea87c460d03678c867f1409e7b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:20:80:e7:13:8e:72:5f:3c:91:56:62:99:6e:
f7:43:00:fa:8e:27:15:d9:09:d3:21:e6:ed:0f:6e:
95:6d:71:e7:fa:c0:17:ad:be:7d:77:da:bb:d5:45:
eb:05:4f:ce:2d:34:f1:95:a4:27:7a:0b:17:97:70:
a8:9c:5b:b7:0e:d2:4a:65:52:be:d8:af:5b:fa:56:
3a:09:e9:90:54:01:b9:a5:95:61:31:27:8d:35:37:
6f:4a:27:87:3b:1a:7d:a3:6c:f0:bb:13:9b:e7:aa:
a4:53:35:75:9c:e7:3f:1b:ee:67:f1:47:07:44:eb:
56:19:f8:24:f8:a0:78:17:1f:00:88:af:fa:aa:73:
51:1a:bf:01:5e:c2:d8:82:aa:3b:d7:b8:c8:2e:2e:
f9:72:c3:5f:2a:1e:20:8c:0b:e6:2e:f7:10:04:b9:
fb:83:32:0a:1b:27:02:a4:ce:94:00:57:cc:25:5e:
1b:8f:9a:82:a9:af:f7:42:a7:b8:b8:48:c7:4f:55:
8c:af:e2:50:93:bf:69:7a:45:36:68:fb:60:0d:ec:
b7:1b:60:5b:6d:93:2c:b9:50:8e:af:b1:3c:8e:40:
b2:a7:34:c5:25:75:b9:37:3f:96:03:a8:2a:0c:67:
49:8c:f6:ab:c2:a6:f5:bd:0f:2f:8b:da:f5:d8:2f:
32:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:1D:AA:BF:68:40:AE:A8:7C:46:0D:03:67:8C:86:7F:14:09:E7:B2
X509v3 Authority Key Identifier:
keyid:E2:2A:93:CE:B8:2B:67:5A:84:B0:D7:8E:79:AE:4A:79:7C:A9:82:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4iqTzrgrZ1qEsNeOea5KeXypgjE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/2e82cb-4a6e-408f-af20-843154a80b72/1/yB2qv2hArqh8Rg0DZ4yGfxQJ57I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/2e82cb-4a6e-408f-af20-843154a80b72/1/4iqTzrgrZ1qEsNeOea5KeXypgjE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.159.204.0/22
Signature Algorithm: sha256WithRSAEncryption
7b:3a:d2:c8:d3:6f:e4:3e:cd:5c:bc:2d:f1:3a:48:c8:95:41:
6c:f3:50:50:88:4d:5b:af:90:af:90:7f:e9:9d:c3:a2:c9:7d:
de:e0:fa:5f:fb:f4:76:56:b7:4f:0a:85:7b:20:54:ba:ac:96:
35:89:42:d0:f0:19:e6:49:76:05:e9:17:04:5e:9f:66:66:90:
98:8e:e4:1c:9a:f4:40:91:1a:64:88:a9:ef:0b:20:4e:97:ef:
c6:6b:34:2c:18:82:14:81:8b:42:c1:6e:d2:ef:cd:8a:90:b5:
22:10:5c:04:d1:f6:4b:96:1b:32:f4:1f:29:7e:09:83:ce:b8:
4f:bc:64:03:18:f2:23:86:5a:67:49:5d:fb:e2:54:21:c1:8e:
90:e5:53:f7:7c:ab:23:f7:4d:e5:19:ac:7f:9b:91:e7:46:2a:
a5:5d:96:3a:5f:e4:0e:66:ab:84:8c:9c:8a:c2:52:3c:95:68:
9d:8c:db:d3:d7:c8:a0:7c:30:ce:22:ca:63:ee:bb:6f:d4:13:
c0:3b:89:1c:60:ad:a6:6d:41:ab:77:e7:30:0d:37:5c:d9:f3:
30:0f:85:e6:37:ad:fc:e5:12:10:39:3f:df:03:73:54:ef:55:
ef:55:1b:75:58:65:e6:36:1b:8f:db:09:6b:80:b0:21:5f:96:
2e:c2:73:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:34 2025 by rpki-client on console.sobornost.net