Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/5360e7-f02a-4737-99c7-febb64b5e164/1/btDz2u-l_wj6W8KIfCMAlnW0P24.roa
File: btDz2u-l_wj6W8KIfCMAlnW0P24.roa (raw, json)
Hash identifier: sfK0ptsNBV2+LnneQNYSIHQ7XVoVHUaME+qXGkJagVw=
Subject key identifier: 6E:D0:F3:DA:EF:A5:FF:08:FA:5B:C2:88:7C:23:00:96:75:B4:3F:6E
Certificate issuer: /CN=22f344a63dcb70e89057deb8e2761dc45165881a
Certificate serial: 01942747DDF78059632C10F5459F7AABD863
Authority key identifier: 22:F3:44:A6:3D:CB:70:E8:90:57:DE:B8:E2:76:1D:C4:51:65:88:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IvNEpj3LcOiQV9644nYdxFFliBo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/5360e7-f02a-4737-99c7-febb64b5e164/1/btDz2u-l_wj6W8KIfCMAlnW0P24.roa
Signing time: Thu 02 Jan 2025 13:50:08 +0000
ROA not before: Thu 02 Jan 2025 13:50:08 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 174
IP address blocks: 85.28.52.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:47:dd:f7:80:59:63:2c:10:f5:45:9f:7a:ab:d8:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22f344a63dcb70e89057deb8e2761dc45165881a
Validity
Not Before: Jan 2 13:50:08 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6ed0f3daefa5ff08fa5bc2887c23009675b43f6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:f6:34:16:35:a7:91:79:71:5a:a2:fa:db:5f:
d9:27:64:66:85:55:63:0a:89:bd:95:80:c5:60:09:
12:7f:bc:34:13:60:7a:cc:aa:ee:64:d0:e1:c9:4d:
5a:2c:55:06:9b:26:dc:21:50:7f:99:9d:b4:27:61:
8e:1f:86:a4:18:29:58:2b:82:5f:e6:1e:74:61:0c:
cf:d4:51:80:08:8c:7f:8e:d3:17:6c:b3:be:fa:86:
8d:3e:2c:f6:20:50:66:f8:88:cb:0a:b5:a4:d9:eb:
33:ba:d0:3a:ce:cd:51:83:72:cd:0e:00:00:26:21:
de:16:f6:66:cc:6b:ae:18:f0:fc:82:d2:97:0d:13:
86:84:34:db:79:b6:a1:7d:d0:78:2f:6e:3e:9e:ab:
c0:15:b3:01:65:a3:a2:f4:fc:8f:7c:ab:1e:0b:5a:
37:ab:fd:7a:cc:b8:31:21:bc:ff:a7:70:b7:08:9f:
40:63:e9:cd:05:e5:ee:35:b0:d5:ab:41:81:fc:a3:
e9:51:ba:5e:44:fb:76:7e:9a:ea:0b:87:ae:24:b3:
20:63:4a:a0:79:6c:74:48:ef:a6:f5:bc:79:ed:dd:
2b:f5:38:83:1f:0a:b1:8f:20:f6:e8:7e:f2:b7:59:
df:4b:2d:63:37:4e:f5:ca:78:91:bb:99:7c:50:03:
b6:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:D0:F3:DA:EF:A5:FF:08:FA:5B:C2:88:7C:23:00:96:75:B4:3F:6E
X509v3 Authority Key Identifier:
keyid:22:F3:44:A6:3D:CB:70:E8:90:57:DE:B8:E2:76:1D:C4:51:65:88:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IvNEpj3LcOiQV9644nYdxFFliBo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5360e7-f02a-4737-99c7-febb64b5e164/1/btDz2u-l_wj6W8KIfCMAlnW0P24.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5360e7-f02a-4737-99c7-febb64b5e164/1/IvNEpj3LcOiQV9644nYdxFFliBo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.28.52.0/23
Signature Algorithm: sha256WithRSAEncryption
99:3b:52:d9:7c:f0:26:6b:ac:9b:8a:2e:3d:f7:3c:33:4b:26:
d6:dc:d8:86:11:80:2f:ab:5d:23:06:eb:da:cd:11:9c:ea:52:
84:79:49:40:56:7e:70:6e:2c:dd:53:ac:28:73:9d:22:79:28:
d5:f9:85:56:f8:e8:b6:a3:a3:3e:6f:59:75:15:e7:17:b7:a7:
7b:69:4e:05:86:e9:f3:67:6a:4c:91:c4:78:fc:d6:62:71:cb:
2b:6d:40:b4:c5:90:a7:2b:64:dd:61:10:e7:f3:2c:13:6a:e0:
f1:a9:76:fd:55:02:60:59:8d:f9:f9:b8:99:10:c2:ad:e8:cb:
21:2e:38:ab:f4:05:a6:a4:02:02:a9:c5:43:c5:1f:dd:3b:4f:
df:c1:33:93:26:d6:1b:0d:12:7c:0e:a4:51:79:4f:c6:a7:a6:
da:91:74:a2:4c:72:3b:7e:1c:2a:12:6e:e6:65:c9:48:26:19:
cb:e1:38:68:5a:45:11:08:82:96:10:10:a8:26:36:55:c1:6f:
6e:bf:53:33:69:e6:47:8f:ae:6b:9b:41:f3:67:b7:a9:24:5f:
13:cc:e7:99:51:ba:2d:b7:31:42:7e:ab:3a:33:eb:ba:1b:5e:
aa:23:cc:36:49:ae:ac:ee:f8:53:c6:d8:0a:0d:ec:30:a4:6c:
59:c2:6f:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:42 2025 by rpki-client on console.sobornost.net