Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/e23969-ffb0-4e57-a36a-760f6b6aabc1/1/TPDLRQuqICQP26Z5DLtwUuRH6jc.roa
File: TPDLRQuqICQP26Z5DLtwUuRH6jc.roa (raw, json)
Hash identifier: XySQwbc/9iXTVwgfkcqQbJH2XphS+YuGBqB7m8X+7eE=
Subject key identifier: 4C:F0:CB:45:0B:AA:20:24:0F:DB:A6:79:0C:BB:70:52:E4:47:EA:37
Certificate issuer: /CN=1d10e38ed55e3185aed6f079f8bb9bf12d4448db
Certificate serial: 0194258F2647C5D8B4421ABBB466A398B1CB
Authority key identifier: 1D:10:E3:8E:D5:5E:31:85:AE:D6:F0:79:F8:BB:9B:F1:2D:44:48:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HRDjjtVeMYWu1vB5-Lub8S1ESNs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/e23969-ffb0-4e57-a36a-760f6b6aabc1/1/TPDLRQuqICQP26Z5DLtwUuRH6jc.roa
Signing time: Thu 02 Jan 2025 05:48:45 +0000
ROA not before: Thu 02 Jan 2025 05:48:45 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 57256
IP address blocks: 185.164.104.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:26:47:c5:d8:b4:42:1a:bb:b4:66:a3:98:b1:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d10e38ed55e3185aed6f079f8bb9bf12d4448db
Validity
Not Before: Jan 2 05:48:45 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4cf0cb450baa20240fdba6790cbb7052e447ea37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:8d:7c:3c:51:67:ef:74:f5:0d:ec:9e:e9:08:
74:8b:81:c7:2f:ed:c2:d9:be:55:78:06:e9:15:be:
cc:13:3a:bb:90:75:bf:4e:31:00:dd:84:55:bd:d9:
6b:39:f4:5b:0d:7d:2f:16:6f:8a:a2:72:af:e1:cb:
c3:16:2f:62:23:7d:89:c7:d8:5c:aa:3c:9a:d8:ca:
e9:ae:0d:98:33:d8:99:ef:90:ed:4b:64:93:92:a5:
b5:9f:b2:0f:fd:4b:36:8a:29:11:ce:df:5e:86:48:
2b:74:3c:29:b1:53:2f:0e:de:e1:f1:5d:b7:23:ac:
f6:ec:0d:55:2d:95:e5:6d:9c:91:07:24:e5:cf:fd:
2f:3f:57:14:bb:5f:c4:31:96:06:15:3a:50:0f:0a:
94:f1:53:bd:3f:d5:a1:0b:9a:9d:8e:b6:36:40:ea:
09:7d:25:2e:1e:c1:2e:fd:8e:76:da:d6:d1:95:59:
0d:f4:c7:81:15:2f:e4:50:2a:20:e5:10:1c:26:c4:
9e:1d:80:c8:07:cf:86:ad:15:94:b8:ab:ca:dd:3e:
3e:1b:2c:f6:7d:15:a8:55:f9:0a:a9:1a:bf:0c:16:
7a:ff:34:14:26:11:3f:92:5e:5a:a1:f9:32:95:5f:
be:c6:a6:68:fa:71:77:81:a7:1b:d9:b3:5b:b9:58:
80:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:F0:CB:45:0B:AA:20:24:0F:DB:A6:79:0C:BB:70:52:E4:47:EA:37
X509v3 Authority Key Identifier:
keyid:1D:10:E3:8E:D5:5E:31:85:AE:D6:F0:79:F8:BB:9B:F1:2D:44:48:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HRDjjtVeMYWu1vB5-Lub8S1ESNs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/e23969-ffb0-4e57-a36a-760f6b6aabc1/1/TPDLRQuqICQP26Z5DLtwUuRH6jc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/e23969-ffb0-4e57-a36a-760f6b6aabc1/1/HRDjjtVeMYWu1vB5-Lub8S1ESNs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.164.104.0/24
Signature Algorithm: sha256WithRSAEncryption
69:99:05:83:30:1c:a1:f8:fd:fa:61:93:62:d5:d0:37:16:99:
16:e7:ad:eb:05:a6:03:a2:6d:7d:0a:d4:a0:b7:8b:84:ef:86:
08:71:23:3d:19:d9:4f:bf:66:a0:a9:a4:ae:e1:0b:f5:6d:9a:
e5:0d:79:3b:79:a2:ea:eb:45:4c:35:27:76:12:ad:2d:c8:50:
fa:6e:69:c4:26:49:ed:9d:46:64:fb:fc:0a:65:0f:c6:09:ff:
20:de:30:63:36:b6:d6:d4:d5:20:84:ee:40:41:35:a0:00:23:
cc:ab:63:37:b5:9c:95:da:af:f3:d0:6a:4e:6f:f3:f0:a5:d8:
2c:bf:c9:d2:ce:64:fb:58:30:2b:29:ad:55:52:5a:f4:be:1a:
d8:dd:b8:e2:33:87:75:4e:7d:4c:f0:4c:bf:e3:91:f8:fc:3f:
7b:89:9e:e6:5e:47:54:24:92:a9:6b:3f:0c:73:64:54:1a:33:
2d:4c:57:30:3c:17:c1:a7:c6:50:fa:7b:52:82:bf:ee:cd:43:
e5:d9:5d:aa:39:68:82:99:c0:b9:b9:dd:62:c2:04:9e:54:e7:
45:eb:2a:c0:d6:9f:b5:b5:71:0d:d2:72:70:07:b8:c9:f5:e8:
14:18:c4:bd:82:29:21:5a:60:e1:94:1e:d0:05:da:f5:bf:81:
94:1c:d2:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:58 2025 by rpki-client on console.sobornost.net