Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/a50372-da39-482e-9ad4-30becfc1b311/1/LYov3s-RBNegs9sCI5mzwI0B-OM.roa
File: LYov3s-RBNegs9sCI5mzwI0B-OM.roa (raw, json)
Hash identifier: Q5JNZZskubtUF3draKhRYhTL06FaQ8LhpyPNSVMlulo=
Subject key identifier: 2D:8A:2F:DE:CF:91:04:D7:A0:B3:DB:02:23:99:B3:C0:8D:01:F8:E3
Certificate issuer: /CN=097e05516fc8793406868b8109e3c044b702716c
Certificate serial: 01941FFA19B70CBA15A1E80CBB0AD929DA14
Authority key identifier: 09:7E:05:51:6F:C8:79:34:06:86:8B:81:09:E3:C0:44:B7:02:71:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CX4FUW_IeTQGhouBCePARLcCcWw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/a50372-da39-482e-9ad4-30becfc1b311/1/LYov3s-RBNegs9sCI5mzwI0B-OM.roa
Signing time: Wed 01 Jan 2025 03:47:51 +0000
ROA not before: Wed 01 Jan 2025 03:47:51 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48506
IP address blocks: 185.163.192.0/22 maxlen: 32
2a0a:2c00::/29 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:19:b7:0c:ba:15:a1:e8:0c:bb:0a:d9:29:da:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=097e05516fc8793406868b8109e3c044b702716c
Validity
Not Before: Jan 1 03:47:51 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2d8a2fdecf9104d7a0b3db022399b3c08d01f8e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:08:90:4a:db:d4:2b:e1:d1:ad:a0:80:ae:58:
c8:23:0a:aa:22:68:d2:b2:bc:2d:9e:c1:c0:23:04:
27:9c:e2:62:ae:1c:cd:d1:39:3f:7d:f6:d7:ff:c4:
30:39:75:8e:89:0e:46:90:ed:fa:de:f4:9a:ca:9c:
77:40:e7:6a:75:2c:3f:8b:78:59:d9:14:21:a7:5f:
97:05:ca:bb:20:af:f0:fb:59:35:dd:51:7e:30:7c:
ea:8a:61:47:e6:17:12:72:73:a9:df:ee:99:1c:7a:
61:79:65:2d:5e:f1:22:e2:4b:ac:d7:9e:2a:66:fd:
93:5c:71:84:c9:38:48:49:dc:e9:24:c9:09:47:68:
f0:d2:c3:04:cb:f5:d3:12:31:10:3c:aa:13:4d:99:
35:08:50:a1:8d:4e:ab:87:8d:2f:b8:1f:73:36:1b:
4d:3f:7b:a6:c0:d4:38:04:65:0b:76:c1:a2:c3:5d:
4e:30:e4:2d:f1:7e:a6:91:25:a7:74:1d:1c:68:bd:
28:0a:3d:29:87:d4:98:8a:d9:cb:1b:84:ab:fd:ea:
a0:57:8c:66:3d:3a:1e:2d:e5:48:0f:d9:2c:67:d0:
2c:33:c4:9a:41:72:f9:b6:fc:5a:46:b9:8b:54:cf:
b3:03:be:56:45:2e:39:2e:08:6d:a7:68:48:d8:e2:
0b:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:8A:2F:DE:CF:91:04:D7:A0:B3:DB:02:23:99:B3:C0:8D:01:F8:E3
X509v3 Authority Key Identifier:
keyid:09:7E:05:51:6F:C8:79:34:06:86:8B:81:09:E3:C0:44:B7:02:71:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CX4FUW_IeTQGhouBCePARLcCcWw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/a50372-da39-482e-9ad4-30becfc1b311/1/LYov3s-RBNegs9sCI5mzwI0B-OM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/a50372-da39-482e-9ad4-30becfc1b311/1/CX4FUW_IeTQGhouBCePARLcCcWw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.163.192.0/22
IPv6:
2a0a:2c00::/29
Signature Algorithm: sha256WithRSAEncryption
13:91:cd:f0:de:28:36:b2:f4:4b:73:a2:c0:6c:d1:c0:d7:19:
f3:9f:3e:ed:2b:90:3d:4f:a0:f2:c5:18:cc:31:dc:76:7f:32:
40:dd:79:eb:1f:2d:12:b4:59:99:21:b1:dd:8e:57:0f:e0:a3:
0f:28:df:eb:fd:cb:ca:b5:a7:96:a6:a4:28:e9:cf:09:04:ee:
5c:7e:cd:f7:e7:5a:f0:6c:43:e8:e9:0a:7f:ea:00:f4:a7:35:
61:19:14:ae:51:57:d0:d4:f6:83:1c:2b:d9:64:c3:dc:34:7a:
e8:5e:8e:25:77:e6:44:38:ca:2d:50:e6:5e:b6:e7:19:24:49:
ed:78:9c:c2:c6:9f:33:46:4f:a6:fc:2c:d4:21:68:c4:34:b4:
fc:9e:b6:be:6a:1d:ee:3c:ab:ca:f8:04:e7:97:d2:e1:33:0c:
85:e8:3f:7a:f1:0d:59:bb:fe:84:6e:cb:2d:0b:4f:b2:5b:2a:
52:fc:fb:64:55:ac:54:28:20:7b:5b:11:48:e6:52:84:da:e4:
c9:43:4a:e6:12:44:1d:1e:2d:d6:1c:e1:ea:3a:ae:42:3e:2f:
cf:73:99:2d:99:4f:92:bc:6c:b5:da:93:18:4d:5a:ad:8b:ae:
4d:81:81:60:89:2e:24:73:c9:9d:ae:d2:2e:28:a2:9f:fc:9d:
72:ce:c6:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:56 2025 by rpki-client on console.sobornost.net