Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/igGBFD8kNEyp0oLcDRQiMdpWqUg.roa
File: igGBFD8kNEyp0oLcDRQiMdpWqUg.roa (raw, json)
Hash identifier: JBfHKzIq0hybb3YSwoXuYc0ak5WjhrecAhw46dVwLpA=
Subject key identifier: 8A:01:81:14:3F:24:34:4C:A9:D2:82:DC:0D:14:22:31:DA:56:A9:48
Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Certificate serial: 01941F8CBF171FBC82552118042B272C722E
Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/igGBFD8kNEyp0oLcDRQiMdpWqUg.roa
Signing time: Wed 01 Jan 2025 01:48:25 +0000
ROA not before: Wed 01 Jan 2025 01:48:25 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 205537
IP address blocks: 185.214.204.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:bf:17:1f:bc:82:55:21:18:04:2b:27:2c:72:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Validity
Not Before: Jan 1 01:48:25 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8a0181143f24344ca9d282dc0d142231da56a948
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:b9:54:01:5c:7c:a5:6b:64:68:98:fe:49:db:
78:56:4e:ec:53:d8:2d:01:41:4d:85:05:44:cc:b5:
1b:b4:81:0d:e7:cd:c0:75:aa:bd:44:9c:d7:b3:cd:
c0:32:30:53:75:fb:2b:4b:b3:c9:86:9d:78:bf:1b:
32:59:92:37:67:db:fe:3a:50:99:52:e5:54:88:9a:
44:50:bd:79:2b:89:bf:ef:ee:e4:4a:70:13:6f:d3:
0b:ab:a8:8e:12:63:3e:2d:3b:4e:c6:ab:45:e8:e9:
59:41:75:af:63:af:b0:81:d8:82:d2:4c:32:de:fa:
73:dc:f3:97:86:ab:f6:55:5d:8a:5d:a4:96:7b:74:
2f:00:a8:81:66:27:28:a0:fa:92:e6:18:f0:fc:be:
45:c2:b5:22:5d:ed:ef:a2:e3:eb:32:a1:0f:44:1b:
df:b4:7d:34:48:1f:66:c2:13:54:39:5f:20:8c:6b:
0b:34:51:bb:13:20:a7:13:94:48:02:8b:6b:43:25:
80:16:d3:d0:e9:12:2b:ba:7f:79:2f:db:65:58:8a:
35:6c:22:fd:11:ed:51:2e:ce:e4:36:11:e8:46:db:
4c:39:69:a4:61:04:10:ce:5b:ff:ce:54:89:bb:51:
7b:2b:dd:99:a1:b0:74:45:43:89:eb:a3:a0:42:5f:
74:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:01:81:14:3F:24:34:4C:A9:D2:82:DC:0D:14:22:31:DA:56:A9:48
X509v3 Authority Key Identifier:
keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/igGBFD8kNEyp0oLcDRQiMdpWqUg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.214.204.0/22
Signature Algorithm: sha256WithRSAEncryption
86:e2:b9:ba:7e:09:59:63:58:00:07:e7:0f:fa:84:04:3a:6d:
84:c3:26:88:0b:58:2b:93:33:33:4c:c7:e1:7a:27:56:d9:d3:
01:42:20:49:08:42:da:39:e1:9f:e5:e2:43:67:15:ad:11:65:
9b:4e:ed:44:6e:e6:76:05:17:d2:6a:93:b5:19:42:22:bc:db:
bf:d6:d0:23:fd:af:d1:a4:05:75:c0:d0:0a:8e:52:8c:05:18:
20:f1:80:06:6f:4b:f3:c2:35:e8:91:3d:bf:d9:fa:79:b9:46:
71:2a:55:e8:81:56:b3:bb:d5:f0:2f:dd:4a:08:dd:a9:c0:33:
98:d2:ce:56:6c:df:99:6e:bc:b9:86:f6:1c:7a:50:4a:02:79:
76:6b:69:61:39:1c:7a:bd:25:50:1e:69:4a:f1:ba:b0:fc:83:
78:8f:b2:eb:c2:dc:cc:c5:6c:4f:76:e3:7e:65:1b:7d:ed:06:
8a:62:6e:2d:5f:c0:17:c2:91:a6:52:4d:b9:41:2c:c0:1c:64:
51:40:98:e8:cf:43:c4:86:3f:bd:8f:06:01:06:1a:74:1e:71:
52:23:33:f4:56:d9:c1:47:69:98:97:95:34:a9:60:d1:ed:c8:
04:5d:0b:01:45:af:85:b2:7b:9e:17:31:a4:6c:40:dc:7f:a8:
67:40:a8:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:02 2025 by rpki-client on console.sobornost.net