Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/Sgy1MxUt_tT6Euaa0DAPFhK6Uio.roa
File: Sgy1MxUt_tT6Euaa0DAPFhK6Uio.roa (raw, json)
Hash identifier: 3wTIwtgu2osEnib4dpQqHRIfaGZ87Pp0t7rHdDrro9o=
Subject key identifier: 4A:0C:B5:33:15:2D:FE:D4:FA:12:E6:9A:D0:30:0F:16:12:BA:52:2A
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 01942747F8E41016E9ECF2F25B4C3B868B95
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/Sgy1MxUt_tT6Euaa0DAPFhK6Uio.roa
Signing time: Thu 02 Jan 2025 13:50:15 +0000
ROA not before: Thu 02 Jan 2025 13:50:15 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 198280
IP address blocks: 213.91.231.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:47:f8:e4:10:16:e9:ec:f2:f2:5b:4c:3b:86:8b:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 2 13:50:15 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4a0cb533152dfed4fa12e69ad0300f1612ba522a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:e4:6e:84:51:24:02:de:b3:7f:10:ed:75:e3:
76:2d:9f:d6:e6:bd:5f:2f:a6:26:fc:5a:7e:02:8c:
03:80:17:2a:4f:76:c2:fb:1d:a9:6e:82:18:b2:2e:
cc:b9:7e:37:e1:31:cf:27:5f:82:7b:c0:38:55:b3:
5e:8a:bc:60:c9:ac:27:01:b3:c4:97:82:0c:c0:11:
30:17:33:16:21:79:03:b5:09:3a:9e:03:97:07:ee:
44:40:ba:64:0d:d8:ea:e2:c6:29:0f:19:60:74:8d:
7e:ac:7b:86:40:30:7e:49:f8:59:df:54:9c:b4:30:
62:68:a5:33:56:fc:65:72:ce:55:ba:76:29:7a:6b:
35:ed:b1:3c:75:0e:33:48:cc:ed:3e:2d:ab:da:f7:
5b:49:92:cc:83:7e:db:c6:22:fc:57:8e:85:4b:c9:
13:46:43:5d:81:dd:c3:2b:a6:2a:f4:08:aa:e9:10:
d0:60:1e:a6:d1:78:57:76:9a:ab:bd:31:bc:cc:de:
b0:38:09:20:12:92:45:d3:88:cd:e9:0c:e4:fb:2d:
cc:33:ac:42:76:5d:38:ef:65:61:ea:e1:2f:89:8f:
61:dd:0f:2c:93:26:18:52:00:9f:88:79:ea:77:8d:
77:2a:42:86:0d:7a:72:ca:d3:c8:eb:23:e2:d0:d5:
3c:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:0C:B5:33:15:2D:FE:D4:FA:12:E6:9A:D0:30:0F:16:12:BA:52:2A
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/Sgy1MxUt_tT6Euaa0DAPFhK6Uio.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.91.231.0/24
Signature Algorithm: sha256WithRSAEncryption
05:db:bc:d8:d0:82:bd:72:c2:c4:ea:d9:99:3f:cf:9c:d5:ef:
6b:7c:30:f2:8f:9c:31:8f:b8:80:80:e2:b5:48:25:26:ba:da:
55:eb:09:f0:b6:a9:f4:51:a9:8c:c3:69:92:ae:92:e7:39:60:
2c:61:11:2b:24:1e:bd:63:c5:6d:03:e0:d6:40:5a:95:1c:ac:
97:d6:59:00:e2:60:e8:07:61:a3:8c:a3:ba:62:ca:25:85:7c:
0e:41:37:82:d7:b9:ec:29:ad:ef:fc:d0:d6:e1:64:9c:27:3c:
42:a6:e2:c9:5b:59:49:62:4d:c0:0b:54:67:b8:2b:a8:6b:6d:
7e:ed:09:b5:29:d6:8d:3d:7e:1c:1d:03:be:58:2b:30:41:b3:
51:d4:c8:6e:69:fe:a2:81:7f:0f:da:4c:4b:97:fd:78:54:17:
f5:a1:24:9a:88:8d:b5:07:a9:b8:03:9c:5b:71:13:23:f4:c8:
09:aa:99:3d:20:55:ea:a6:75:2a:d1:27:21:78:d7:5f:cc:69:
78:65:85:b6:c7:d9:4d:31:c9:14:bb:ff:8e:8a:89:9b:16:27:
80:11:17:bc:8a:c6:6f:94:1a:05:d0:2c:b9:f6:28:d7:aa:77:
5e:30:00:bb:77:6c:0a:ef:e7:2f:44:19:d4:9d:01:34:82:d6:
05:b1:6b:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:38 2025 by rpki-client on console.sobornost.net