Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/ef3e43-7bf7-404f-a9a3-b3e9255d2b3e/1/3bdkyDOPeFMUXLwSE8-H9WsoE5Q.roa
File: 3bdkyDOPeFMUXLwSE8-H9WsoE5Q.roa (raw, json)
Hash identifier: PlZdxhGvkiUhGU+GOrrf1QUy/EtgNJlhb0ER9kfhqcI=
Subject key identifier: DD:B7:64:C8:33:8F:78:53:14:5C:BC:12:13:CF:87:F5:6B:28:13:94
Certificate issuer: /CN=b8d5b3d379d21162e2b522c43801fb9603988245
Certificate serial: 01942067CB6B9A91044C7070EEDAE01A2F0E
Authority key identifier: B8:D5:B3:D3:79:D2:11:62:E2:B5:22:C4:38:01:FB:96:03:98:82:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uNWz03nSEWLitSLEOAH7lgOYgkU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/ef3e43-7bf7-404f-a9a3-b3e9255d2b3e/1/3bdkyDOPeFMUXLwSE8-H9WsoE5Q.roa
Signing time: Wed 01 Jan 2025 05:47:40 +0000
ROA not before: Wed 01 Jan 2025 05:47:40 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211732
IP address blocks: 185.243.128.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:67:cb:6b:9a:91:04:4c:70:70:ee:da:e0:1a:2f:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8d5b3d379d21162e2b522c43801fb9603988245
Validity
Not Before: Jan 1 05:47:40 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ddb764c8338f7853145cbc1213cf87f56b281394
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:88:6b:33:cf:99:4a:20:97:9e:6b:08:80:d8:
96:c5:da:49:e7:cf:76:ae:27:c6:98:9a:37:44:de:
cb:67:7d:96:cb:93:6d:2f:82:41:e8:d7:12:f4:74:
c4:a6:35:90:0c:76:96:03:25:ea:f2:ce:5d:0a:de:
f9:1c:67:cc:15:a4:ad:ea:a8:e9:ec:e6:05:9a:b2:
c9:77:c4:ef:62:51:f0:8c:83:bc:11:52:b5:46:66:
f2:a4:27:62:78:84:de:63:19:34:5b:5e:bc:5b:19:
e2:57:dd:4a:f2:ef:b9:2a:8b:98:de:49:43:20:73:
53:0e:de:89:c7:ac:49:2a:37:83:2b:86:1e:cd:aa:
f5:d3:00:dc:c7:2d:d2:de:14:ff:7d:62:64:d1:64:
02:18:bd:4c:94:8a:ef:5e:8e:6c:00:5e:df:49:f5:
e8:f2:29:89:78:c4:34:af:3d:4a:1e:54:46:44:43:
23:b8:5b:65:2a:8f:d6:30:96:a0:58:9f:5c:da:9c:
16:88:65:8d:10:4f:b1:3b:2e:5a:7b:f0:b1:c0:28:
e2:1f:fb:4b:49:44:cc:8f:34:8f:67:26:ae:dd:20:
9d:e2:c3:59:5b:46:3a:6b:64:00:a7:99:5a:8c:78:
dc:08:2b:17:a7:94:62:31:1d:06:8a:e9:74:6c:d9:
92:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:B7:64:C8:33:8F:78:53:14:5C:BC:12:13:CF:87:F5:6B:28:13:94
X509v3 Authority Key Identifier:
keyid:B8:D5:B3:D3:79:D2:11:62:E2:B5:22:C4:38:01:FB:96:03:98:82:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uNWz03nSEWLitSLEOAH7lgOYgkU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/ef3e43-7bf7-404f-a9a3-b3e9255d2b3e/1/3bdkyDOPeFMUXLwSE8-H9WsoE5Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/ef3e43-7bf7-404f-a9a3-b3e9255d2b3e/1/uNWz03nSEWLitSLEOAH7lgOYgkU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.243.128.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:bb:d6:30:ab:bc:6f:4d:65:de:35:ef:03:49:49:a4:f1:cd:
17:4d:ac:a5:92:55:c9:27:35:e1:10:15:15:24:21:9f:e2:35:
bb:00:ab:31:5f:23:ea:2a:9e:07:d1:73:9c:0e:b5:b5:18:ef:
07:68:68:9a:2d:0b:26:cd:8e:df:51:c4:f1:3a:23:55:49:8b:
57:c3:57:96:23:e9:91:00:2c:06:72:0f:95:27:f5:a1:d2:fd:
71:27:98:8b:ea:30:83:b9:7d:14:d9:f1:b1:0e:f1:b0:9a:e9:
09:b8:a7:9b:2d:33:8f:40:a1:e1:15:81:8e:6f:20:c1:d6:87:
33:f6:a0:56:c2:75:40:24:a9:61:da:25:7f:f1:35:f4:32:76:
cc:ea:cf:96:cb:28:9e:13:12:60:e6:e7:6f:63:48:06:b4:30:
53:2f:9d:17:cc:ee:1a:39:75:ef:6f:06:29:47:6a:0d:57:c6:
25:a1:4a:46:a9:87:cb:4b:5c:38:e7:2d:08:4c:34:b8:c3:c1:
fa:e4:35:b1:d7:b6:17:af:ca:31:81:5b:80:e6:4e:34:98:13:
ed:bf:a0:dd:1a:d0:ab:ec:20:39:8c:3a:35:85:de:98:a9:8e:
a0:0e:6e:2e:90:4f:00:5e:06:ff:37:a4:44:70:81:19:bf:2e:
f8:b7:d5:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:00 2025 by rpki-client on console.sobornost.net