Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/n74OnOk2cupPxqpmEGxm3X6NJi0.roa
File: n74OnOk2cupPxqpmEGxm3X6NJi0.roa (raw, json)
Hash identifier: 4IFl5DFKU9Rz9OqnMogOy+LZtMk2c06yHfw/g7OpLv4=
Subject key identifier: 9F:BE:0E:9C:E9:36:72:EA:4F:C6:AA:66:10:6C:66:DD:7E:8D:26:2D
Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Certificate serial: 01941F8CA758B51784E4DF05DD1C865864D3
Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/n74OnOk2cupPxqpmEGxm3X6NJi0.roa
Signing time: Wed 01 Jan 2025 01:48:18 +0000
ROA not before: Wed 01 Jan 2025 01:48:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 39744
IP address blocks: 185.216.168.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:a7:58:b5:17:84:e4:df:05:dd:1c:86:58:64:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Validity
Not Before: Jan 1 01:48:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9fbe0e9ce93672ea4fc6aa66106c66dd7e8d262d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:01:c2:98:f6:33:95:e2:9e:da:07:43:fb:4e:
cc:f2:f6:90:06:34:17:ca:e5:b8:de:57:11:ed:8e:
a0:3d:57:d4:cd:4f:85:b9:ad:96:cd:a0:4e:e7:6f:
29:70:b4:41:d7:ea:f3:cf:8d:e3:c9:9c:a5:9f:e7:
4c:3d:8e:3b:81:8d:2e:78:2a:d2:fd:04:05:f2:3e:
b9:99:9a:cf:73:5b:bb:0c:e4:88:50:b3:4b:a7:42:
65:e5:a2:c0:e1:c0:3b:f5:df:e2:0f:cd:e2:b2:e4:
9a:d5:c7:ce:f9:b6:66:ee:aa:3d:0b:07:e5:d2:b3:
09:43:8b:8d:df:85:ee:e1:dd:64:49:9e:71:da:ae:
f7:0d:1d:dd:cb:37:d7:02:f4:aa:7d:94:27:c0:58:
5d:91:5f:cb:06:46:3c:20:d5:53:d6:cf:40:04:28:
3b:d7:31:f8:ae:f9:40:31:f8:c8:15:92:9e:e6:2f:
dc:37:18:15:a8:e5:ac:fe:c8:02:4d:45:b0:a4:f8:
9f:5f:7a:ea:b4:42:b4:2b:7e:ea:70:71:39:78:a4:
fe:50:1a:e3:92:8b:f7:9f:55:59:fb:cd:72:89:b7:
3d:9b:14:0e:28:be:6d:7d:7f:24:ce:a5:5f:42:db:
f0:4f:8d:11:22:2a:8b:d4:8d:64:f6:e3:a9:70:75:
a3:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:BE:0E:9C:E9:36:72:EA:4F:C6:AA:66:10:6C:66:DD:7E:8D:26:2D
X509v3 Authority Key Identifier:
keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/n74OnOk2cupPxqpmEGxm3X6NJi0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.216.168.0/22
Signature Algorithm: sha256WithRSAEncryption
3d:76:13:9f:2c:60:61:29:af:3c:f3:cb:57:6b:e7:80:c5:82:
b6:69:04:e1:ec:f0:5a:27:9d:be:1e:14:be:18:bd:ce:d8:92:
e7:25:5a:6c:2a:5d:f9:6c:89:d0:fd:93:ee:8e:be:ad:1d:88:
aa:4c:69:31:1f:d9:7c:89:f8:e0:ff:68:12:f1:34:7c:15:f5:
86:60:0b:d3:1d:74:ee:b6:ec:37:d4:28:1c:aa:ee:80:97:1e:
a7:bc:41:6c:56:12:8a:cf:5b:a5:d2:00:cc:d6:13:c2:7b:fc:
66:77:14:02:c4:97:2b:e9:0a:f1:26:bb:c4:c6:27:51:5d:23:
40:02:dd:34:61:98:68:8d:27:bd:9c:c2:00:7c:31:11:cf:f0:
ac:b6:b8:80:d5:ac:11:ac:5b:26:a7:68:84:80:15:a6:86:15:
c0:87:59:26:a5:8f:0b:8d:a0:6e:64:ff:8b:2e:49:90:81:ce:
3c:36:64:67:c9:4d:91:98:1f:54:bb:a6:ef:18:21:e1:72:92:
11:77:86:3c:84:3f:ab:1f:47:37:bb:99:17:25:c7:fb:f4:3f:
0d:34:eb:aa:c2:c4:25:e3:fb:f4:46:62:d5:3e:8b:51:d3:a1:
78:03:c6:c8:89:a2:b8:21:9e:3e:de:22:4b:60:46:f4:1f:25:
f4:c2:3f:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:02 2025 by rpki-client on console.sobornost.net