Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/yIb5OKS_ZSxAKm_5-1fpir4IskM.roa
File: yIb5OKS_ZSxAKm_5-1fpir4IskM.roa (raw, json)
Hash identifier: 6ZtfvSEcMwrHrg+OIE2o+hfITiXETAqTU6u0w9nDCMk=
Subject key identifier: C8:86:F9:38:A4:BF:65:2C:40:2A:6F:F9:FB:57:E9:8A:BE:08:B2:43
Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Certificate serial: 01941F8CC1F27D7CC20453D6713465025911
Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/yIb5OKS_ZSxAKm_5-1fpir4IskM.roa
Signing time: Wed 01 Jan 2025 01:48:25 +0000
ROA not before: Wed 01 Jan 2025 01:48:25 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206787
IP address blocks: 185.176.84.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:c1:f2:7d:7c:c2:04:53:d6:71:34:65:02:59:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Validity
Not Before: Jan 1 01:48:25 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c886f938a4bf652c402a6ff9fb57e98abe08b243
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:98:e7:84:3d:fe:06:fc:94:6d:88:8b:4e:ac:
2d:f5:b5:1a:f7:4e:34:76:4c:32:0e:f4:40:79:3a:
6f:21:78:3c:b1:c8:5b:85:a2:26:c6:0a:48:96:16:
c9:1c:13:89:a9:76:94:89:d4:c3:eb:e2:84:01:41:
2b:fe:39:13:e4:8b:57:11:4b:08:d4:b8:50:af:9b:
fc:3b:cc:82:44:6f:4b:2d:8e:76:58:31:38:3b:f1:
3b:5d:6e:43:c3:49:0f:c9:cb:22:06:b7:6c:c8:56:
48:23:7f:ac:17:81:15:d2:eb:ae:26:8a:4f:9b:83:
dd:7b:8c:d4:e3:08:71:c3:33:bc:74:a6:fa:33:cd:
af:d4:a2:4c:1d:16:d9:cd:09:ec:47:15:31:fa:62:
81:d2:7c:62:f3:20:17:3d:25:bc:86:00:2d:77:81:
f3:03:88:f1:40:d7:a0:32:b3:b8:6b:f7:0f:18:12:
b2:ec:95:9e:3e:5a:e9:ec:d1:a9:e9:3e:0c:a4:05:
cd:e0:b8:ab:cc:20:a6:11:f9:16:cd:00:76:ad:4a:
c3:33:97:89:45:9d:e3:6f:a2:e0:fc:28:cc:53:c4:
98:ba:04:f1:61:27:d2:d9:b5:a1:77:da:a7:57:93:
52:37:2d:23:2f:17:cc:39:b9:b9:db:18:07:4d:26:
fd:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:86:F9:38:A4:BF:65:2C:40:2A:6F:F9:FB:57:E9:8A:BE:08:B2:43
X509v3 Authority Key Identifier:
keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/yIb5OKS_ZSxAKm_5-1fpir4IskM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.176.84.0/22
Signature Algorithm: sha256WithRSAEncryption
a7:96:62:90:d1:eb:9d:9f:37:8c:50:44:52:4c:b2:7d:d4:a6:
f2:33:49:6a:97:37:4c:7c:47:bf:a8:2e:94:b9:3f:b6:31:a8:
0d:9d:0e:66:c6:7e:4c:ef:32:5f:23:e2:3f:5c:ca:fc:df:87:
6b:1e:10:84:03:75:5c:df:31:7e:36:18:50:92:6e:e0:fe:16:
57:a8:82:4d:32:19:4b:9d:b7:b3:cc:b0:1e:b6:d0:32:76:35:
34:af:cc:a5:21:68:2b:eb:da:18:ce:12:a3:5a:a8:1b:db:40:
63:f3:aa:fd:4f:31:d2:55:3b:2e:59:cd:9b:fb:f8:a1:ee:d0:
ad:10:3b:46:aa:8b:0e:a5:0f:a2:26:69:f2:1a:c5:a5:f5:b3:
15:23:13:85:8a:83:de:71:0d:0c:ef:33:7f:43:55:64:58:37:
c2:f6:ca:c7:af:33:80:ac:57:1a:1b:76:7b:c8:29:80:20:c7:
92:1f:77:7b:8d:0f:ca:3a:fa:e6:70:46:b8:01:d7:32:aa:0e:
32:27:a7:46:3d:0c:fa:0b:a8:35:db:b8:df:6e:66:d5:ff:f6:
4f:f5:8f:2b:4d:58:bc:b0:7a:1f:ed:f7:37:27:37:c5:6e:3a:
aa:30:f5:be:69:4d:10:f0:42:e5:4b:87:e3:fc:c4:ff:93:27:
c9:09:99:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:02 2025 by rpki-client on console.sobornost.net