Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/ac3276-50ad-4ebc-a2a6-9808545933c9/1/ucZk7RPUTaIeSxLkQGWFeSNWVec.roa
File: ucZk7RPUTaIeSxLkQGWFeSNWVec.roa (raw, json)
Hash identifier: 5rWJbfTjArOhmwmwJF8k3Fgre3TIPFtEAx1ngBb1v5c=
Subject key identifier: B9:C6:64:ED:13:D4:4D:A2:1E:4B:12:E4:40:65:85:79:23:56:55:E7
Certificate issuer: /CN=603831a61bc8a8f4cb85887022fb6f86397345dc
Certificate serial: 0194258F1DAE589138FA75CF560612DD51D7
Authority key identifier: 60:38:31:A6:1B:C8:A8:F4:CB:85:88:70:22:FB:6F:86:39:73:45:DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YDgxphvIqPTLhYhwIvtvhjlzRdw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/ac3276-50ad-4ebc-a2a6-9808545933c9/1/ucZk7RPUTaIeSxLkQGWFeSNWVec.roa
Signing time: Thu 02 Jan 2025 05:48:43 +0000
ROA not before: Thu 02 Jan 2025 05:48:43 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 198949
IP address blocks: 185.34.224.0/24 maxlen: 24
185.34.225.0/24 maxlen: 24
185.34.226.0/24 maxlen: 24
185.34.227.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:1d:ae:58:91:38:fa:75:cf:56:06:12:dd:51:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=603831a61bc8a8f4cb85887022fb6f86397345dc
Validity
Not Before: Jan 2 05:48:43 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b9c664ed13d44da21e4b12e440658579235655e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:80:b8:96:36:b2:8e:99:3d:c5:d6:8c:f4:a7:
5e:75:f5:10:2f:98:2b:92:ed:e9:bc:4c:fd:7e:d0:
ae:7a:79:12:72:1e:6b:6f:92:73:42:0f:ba:f6:ac:
61:70:e8:32:bd:50:d1:d9:10:13:8f:e7:9d:17:c2:
f9:5d:4f:86:40:f0:63:1f:41:2f:4a:35:f6:91:27:
61:f4:09:68:d3:f7:62:af:28:56:8b:b2:16:9a:a9:
8e:c9:e0:78:06:65:08:2f:41:16:25:24:04:8a:0e:
ca:83:27:3e:22:c6:a1:32:4d:28:39:06:4c:99:9a:
a4:fb:91:44:48:4d:01:1a:7c:ca:d6:d5:8a:08:0b:
8e:18:42:4d:32:5a:a9:86:1d:68:ed:fd:72:2f:44:
5e:20:01:8e:cf:37:53:5c:27:c1:93:cd:dd:02:8d:
85:e6:6f:c7:bc:32:c7:71:f3:dc:30:f8:c6:7a:ae:
68:c6:49:91:eb:b0:40:8a:97:d3:15:2c:07:37:e7:
7c:e2:da:c6:bd:f4:1d:89:0f:98:50:45:5b:27:b8:
b4:40:ef:f8:17:4b:67:9b:fd:54:03:f9:f8:d3:db:
1a:4f:3b:da:bb:6e:ca:0b:cf:61:18:2d:8c:c5:9c:
5e:56:10:4d:c8:6d:3a:4e:2f:b2:92:0f:0d:e0:bf:
fe:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:C6:64:ED:13:D4:4D:A2:1E:4B:12:E4:40:65:85:79:23:56:55:E7
X509v3 Authority Key Identifier:
keyid:60:38:31:A6:1B:C8:A8:F4:CB:85:88:70:22:FB:6F:86:39:73:45:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YDgxphvIqPTLhYhwIvtvhjlzRdw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/ac3276-50ad-4ebc-a2a6-9808545933c9/1/ucZk7RPUTaIeSxLkQGWFeSNWVec.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/ac3276-50ad-4ebc-a2a6-9808545933c9/1/YDgxphvIqPTLhYhwIvtvhjlzRdw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.34.224.0/22
Signature Algorithm: sha256WithRSAEncryption
7f:17:35:36:05:5e:4f:88:6a:f3:00:75:d9:a4:f6:de:5c:6a:
cb:b9:5b:df:d8:e8:97:6a:2e:93:cd:27:64:37:40:0a:3b:34:
cb:16:0a:4b:c5:02:f7:ed:b2:8b:01:81:38:d1:73:09:28:42:
2e:41:f1:a2:8a:e0:f0:64:b1:da:aa:a3:a0:c9:c0:76:b1:02:
31:57:62:87:15:12:02:63:56:e3:02:10:0c:3d:b7:4a:b9:92:
03:ac:38:2d:52:f8:03:3d:34:4b:74:fe:cb:12:30:71:54:eb:
90:29:f4:fb:8b:83:4a:f0:e1:49:10:4f:2e:3b:ab:bd:48:91:
ad:f1:2d:53:35:04:92:68:2d:17:04:f7:8e:a3:8c:f4:ea:b1:
07:c1:06:3e:ef:89:10:6f:b2:18:b3:81:9c:2e:00:c6:80:88:
f1:1b:bf:4b:09:f2:3b:54:c7:9c:6a:22:eb:85:eb:3d:13:66:
52:c0:b6:6f:c1:16:69:4e:2e:1c:c0:46:be:77:65:4a:dd:b5:
64:89:af:71:07:ee:18:af:6f:7f:3a:14:18:3d:40:e0:82:42:
b0:83:54:e9:91:6d:0d:81:b6:29:b1:ca:7d:76:43:a6:aa:5a:
18:e7:65:77:5e:62:7f:6b:c0:f9:a8:c4:32:3c:f7:d0:cc:40:
0c:df:7b:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:40 2025 by rpki-client on console.sobornost.net