Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/a75946-57b4-41eb-b6b5-5295f5b3f19b/1/SyfvPrUk0EqUlUibCeR9AFkwGwg.roa
File: SyfvPrUk0EqUlUibCeR9AFkwGwg.roa (raw, json)
Hash identifier: zvu0Xkf7wJgRiFUAHEOyER7LyU5jW8xnRDY/dZI92fo=
Subject key identifier: 4B:27:EF:3E:B5:24:D0:4A:94:95:48:9B:09:E4:7D:00:59:30:1B:08
Certificate issuer: /CN=bc83c2843c1649b0054c91124fee03114095e163
Certificate serial: 01941F8C451B98FD86D3F878B22816B23295
Authority key identifier: BC:83:C2:84:3C:16:49:B0:05:4C:91:12:4F:EE:03:11:40:95:E1:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vIPChDwWSbAFTJEST-4DEUCV4WM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/a75946-57b4-41eb-b6b5-5295f5b3f19b/1/SyfvPrUk0EqUlUibCeR9AFkwGwg.roa
Signing time: Wed 01 Jan 2025 01:47:53 +0000
ROA not before: Wed 01 Jan 2025 01:47:53 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 394805
IP address blocks: 185.240.186.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:45:1b:98:fd:86:d3:f8:78:b2:28:16:b2:32:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc83c2843c1649b0054c91124fee03114095e163
Validity
Not Before: Jan 1 01:47:53 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4b27ef3eb524d04a9495489b09e47d0059301b08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:c1:41:ef:b0:dc:3d:ce:66:54:c2:5e:ad:3e:
11:c9:69:a6:b8:5d:3c:12:78:97:57:e7:67:98:1f:
17:3b:02:cc:f8:30:61:bd:1b:54:0c:36:f8:ed:43:
b5:97:14:9e:0b:d7:07:03:f4:c1:61:f7:d9:55:7e:
10:f5:4e:1e:eb:6f:3c:85:ef:05:c5:53:1e:42:49:
1d:7c:93:91:c6:07:25:c6:da:2a:9c:49:44:34:49:
8a:34:9a:9c:11:5e:a8:df:83:31:bf:bf:e0:46:7b:
a4:77:96:d0:37:d2:1b:60:8f:f4:83:5b:7b:01:c8:
34:96:64:65:53:93:9c:ac:1c:56:18:70:f6:f7:0d:
be:3a:9a:7c:45:25:97:2b:74:ac:1c:95:19:b3:f3:
66:14:65:ca:bd:57:1c:03:9b:d3:26:2c:58:7c:30:
b0:64:b1:42:bf:52:55:99:3b:ac:67:d8:65:9d:83:
cd:4e:d3:a3:bb:9d:4d:08:fa:a6:0a:49:70:a5:2f:
0f:80:8b:3d:d4:d5:09:99:e3:e4:da:42:ef:bd:ef:
b9:43:8f:b1:3e:ea:7a:0e:cf:6f:e9:45:dd:3f:93:
03:32:92:9b:6a:2b:10:46:06:33:4f:41:29:44:2b:
66:bf:4b:cb:78:af:93:bb:d6:55:dd:c3:0f:1e:c6:
5e:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:27:EF:3E:B5:24:D0:4A:94:95:48:9B:09:E4:7D:00:59:30:1B:08
X509v3 Authority Key Identifier:
keyid:BC:83:C2:84:3C:16:49:B0:05:4C:91:12:4F:EE:03:11:40:95:E1:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vIPChDwWSbAFTJEST-4DEUCV4WM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/a75946-57b4-41eb-b6b5-5295f5b3f19b/1/SyfvPrUk0EqUlUibCeR9AFkwGwg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/a75946-57b4-41eb-b6b5-5295f5b3f19b/1/vIPChDwWSbAFTJEST-4DEUCV4WM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.240.186.0/24
Signature Algorithm: sha256WithRSAEncryption
76:9e:35:fb:16:a6:ad:b0:80:00:f9:4d:6b:b7:c5:f3:ed:05:
bd:ff:58:b7:b9:2d:cd:c3:34:d3:0b:66:d0:09:33:1e:14:6e:
3e:24:0e:91:27:b0:16:67:64:fe:26:1d:38:39:ca:78:42:00:
fc:2f:ff:1a:8e:02:d1:ad:b3:37:5e:49:d8:7d:c4:d3:7a:21:
ec:db:23:79:02:f1:1f:9d:f4:b8:22:b5:8f:5d:5f:cb:9c:7d:
f3:7d:1a:82:e8:27:5e:ea:fd:b2:c2:c8:4d:6c:bf:3e:27:f7:
70:cd:c5:da:d5:cc:59:65:99:87:e1:90:aa:c0:ad:1f:26:84:
f0:67:7b:02:5a:45:12:d0:41:48:d8:d5:0d:51:70:13:ab:dc:
fe:ec:7a:89:4b:f9:49:1a:da:c4:7b:30:b7:53:dd:cd:c6:7d:
fb:b6:df:de:fd:55:8a:c6:70:f3:d8:a0:8a:08:74:9b:c3:1c:
12:d1:fa:d7:69:77:c2:18:1d:a6:31:68:f0:85:9d:af:b9:39:
b8:bd:63:fc:fb:93:4f:26:98:49:bc:0b:a4:62:0b:34:ad:3b:
3f:c3:a1:71:f4:78:e2:ac:20:90:e5:a8:cd:c0:c3:b9:a0:96:
f8:91:53:60:fb:d2:f6:cf:a9:f6:22:3e:81:0a:31:b0:bd:98:
c8:25:82:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:49 2025 by rpki-client on console.sobornost.net