Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/918a33-6766-4795-8573-aee698af68b7/1/WqkjigZnCXf1cGoouiwLBsYhyDg.roa
File: WqkjigZnCXf1cGoouiwLBsYhyDg.roa (raw, json)
Hash identifier: JS3h2BtVCeMAnMIYV0aIQuTD6sVEzA9KQapJj6DBbJg=
Subject key identifier: 5A:A9:23:8A:06:67:09:77:F5:70:6A:28:BA:2C:0B:06:C6:21:C8:38
Certificate issuer: /CN=8ec1f7d0530682e1b68e3bfe5a8744ee51ad335d
Certificate serial: 019422FBF63197FB6BD8850FABAF4537A4E5
Authority key identifier: 8E:C1:F7:D0:53:06:82:E1:B6:8E:3B:FE:5A:87:44:EE:51:AD:33:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jsH30FMGguG2jjv-WodE7lGtM10.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/918a33-6766-4795-8573-aee698af68b7/1/WqkjigZnCXf1cGoouiwLBsYhyDg.roa
Signing time: Wed 01 Jan 2025 17:48:44 +0000
ROA not before: Wed 01 Jan 2025 17:48:44 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 61956
IP address blocks: 185.47.120.0/22 maxlen: 22
185.47.122.0/23 maxlen: 23
2a01:8be0::/29 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fb:f6:31:97:fb:6b:d8:85:0f:ab:af:45:37:a4:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ec1f7d0530682e1b68e3bfe5a8744ee51ad335d
Validity
Not Before: Jan 1 17:48:44 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5aa9238a06670977f5706a28ba2c0b06c621c838
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:02:bf:fb:6b:16:7e:35:69:4a:7d:c9:5f:fc:
c8:35:46:36:75:31:95:a0:e6:03:4f:66:85:1f:87:
08:e3:ac:c4:fb:2b:7c:44:85:4a:e0:f8:91:db:5d:
e9:b9:42:9a:d8:36:bd:39:23:04:8a:52:08:6c:ac:
6d:d6:93:ab:3e:c9:4b:87:2e:72:f2:e2:a0:d4:7e:
50:3f:e2:4f:6f:0e:24:78:d7:e6:67:52:b7:75:56:
16:cd:0d:d0:62:c8:14:15:98:44:dc:9a:f0:21:6c:
2b:ec:23:e0:84:e9:e2:f7:db:3d:7c:c8:9b:ed:ec:
df:02:1a:81:2b:07:b9:1a:81:84:8d:d8:3b:eb:b9:
cf:45:af:1d:a9:05:7e:be:21:ff:6e:14:60:47:6e:
6e:77:54:51:64:15:cd:b1:1f:08:3b:1e:05:a5:91:
ec:5e:2b:59:1c:cf:61:89:fe:00:90:74:d6:a5:98:
1a:e9:dc:8d:1d:d8:9c:cc:73:85:c1:d4:07:6c:59:
fc:a0:d9:bd:e0:2b:63:85:5c:59:87:c2:fa:8e:56:
2d:6c:31:29:59:f3:e8:ea:5c:9e:3b:83:6e:aa:ad:
59:f4:b3:98:f4:c7:29:29:1c:02:9d:92:7c:70:14:
70:19:f7:e1:8b:ec:c4:de:2a:d3:e3:bd:73:82:f8:
1f:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:A9:23:8A:06:67:09:77:F5:70:6A:28:BA:2C:0B:06:C6:21:C8:38
X509v3 Authority Key Identifier:
keyid:8E:C1:F7:D0:53:06:82:E1:B6:8E:3B:FE:5A:87:44:EE:51:AD:33:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jsH30FMGguG2jjv-WodE7lGtM10.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/918a33-6766-4795-8573-aee698af68b7/1/WqkjigZnCXf1cGoouiwLBsYhyDg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/918a33-6766-4795-8573-aee698af68b7/1/jsH30FMGguG2jjv-WodE7lGtM10.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.47.120.0/22
IPv6:
2a01:8be0::/29
Signature Algorithm: sha256WithRSAEncryption
38:06:d0:8f:80:19:97:3a:aa:cf:7d:f0:2e:0e:6f:9c:0d:0a:
a2:b8:36:58:22:fd:50:e8:cb:c5:4c:1e:21:ee:c4:6d:e7:f5:
30:39:bf:92:63:73:99:82:81:07:9a:32:3a:09:8e:7d:d7:00:
9b:bb:ce:63:b2:d4:8c:60:b4:f8:2a:5b:2c:27:db:d8:04:f3:
50:16:6c:12:98:55:c2:2d:1a:dc:09:d4:ce:4b:de:b9:87:68:
fa:98:94:0f:9b:ea:2d:b4:09:35:53:cd:d1:3e:49:e8:15:0b:
5d:99:a4:ef:40:44:5a:68:fb:9a:b0:e3:bb:77:fb:0c:3c:de:
a8:6e:a9:30:2d:c7:9c:1f:6e:fd:7e:6a:36:e3:a8:36:11:7f:
22:d8:a6:ba:d4:f8:7c:2b:11:1c:df:32:75:b6:f2:36:37:b2:
b7:e8:44:2b:ad:9f:54:9b:b1:29:c2:c2:f9:c5:b0:4c:e8:a5:
f0:26:4c:cc:fe:8f:48:13:17:17:1a:a3:7c:24:4b:e0:ce:53:
3f:c1:5e:88:5a:6d:35:b6:58:8e:2c:b5:e5:02:f6:61:f9:2a:
b9:4b:f9:ff:e5:1a:ea:3f:68:a5:01:1d:10:d8:5a:07:42:22:
58:0f:c5:ee:2a:ca:e8:24:7d:6e:38:f7:23:f7:d7:52:74:39:
28:35:6e:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:47 2025 by rpki-client on console.sobornost.net