Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/971e73-fa83-4579-8532-58f0f325c2b8/1/MIfmeAoWN0nwDc_PxEMHlVixhH0.roa
File: MIfmeAoWN0nwDc_PxEMHlVixhH0.roa (raw, json)
Hash identifier: BGlglgWDBdgW/hvSdFfJEQ+q//PCVjKwrtXl1XRe9nc=
Subject key identifier: 30:87:E6:78:0A:16:37:49:F0:0D:CF:CF:C4:43:07:95:58:B1:84:7D
Certificate issuer: /CN=fca98b1d0ecccc4f6ff1a7e7db84b4bb2f55b08d
Certificate serial: 019422FBC03081A2EBCA6835FAFDAFFEB58A
Authority key identifier: FC:A9:8B:1D:0E:CC:CC:4F:6F:F1:A7:E7:DB:84:B4:BB:2F:55:B0:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_KmLHQ7MzE9v8afn24S0uy9VsI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/971e73-fa83-4579-8532-58f0f325c2b8/1/MIfmeAoWN0nwDc_PxEMHlVixhH0.roa
Signing time: Wed 01 Jan 2025 17:48:31 +0000
ROA not before: Wed 01 Jan 2025 17:48:31 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 49219
IP address blocks: 185.155.142.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fb:c0:30:81:a2:eb:ca:68:35:fa:fd:af:fe:b5:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fca98b1d0ecccc4f6ff1a7e7db84b4bb2f55b08d
Validity
Not Before: Jan 1 17:48:31 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3087e6780a163749f00dcfcfc443079558b1847d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:66:ba:18:8d:d0:1e:29:85:9d:ee:70:0c:79:
14:cc:98:6b:a8:91:a0:82:38:80:2e:4e:c0:8f:58:
1f:9d:7a:17:c7:c4:e1:0f:98:0a:c8:dc:73:1e:05:
e6:35:c4:6d:e3:95:ee:c8:79:6e:03:68:f5:47:81:
96:66:45:f4:11:e7:34:7f:75:fe:bf:87:8e:ea:96:
ae:73:f3:79:d9:1a:3a:d5:16:93:89:c3:38:b6:df:
bf:91:df:a5:35:57:ed:05:6e:0d:3d:ee:76:5b:79:
13:5b:f8:64:d5:c6:58:44:a9:a2:48:29:ca:1f:2d:
e9:16:12:a2:ba:95:21:ec:60:90:e1:f2:f0:e6:18:
1d:fc:91:fa:9d:37:0f:51:b2:63:12:bc:48:36:d3:
5b:1f:f2:9e:d5:a4:71:22:7a:41:2a:37:9d:3c:aa:
15:46:00:d2:03:39:a7:ec:31:c8:ca:c9:ee:0c:07:
cf:a0:d9:5d:be:5f:51:3a:64:2a:ec:b5:87:03:d9:
88:18:88:3c:15:c6:89:34:21:a7:5f:9c:51:ec:f3:
b5:93:34:0a:01:35:d6:5c:6e:98:99:21:fb:dc:fd:
76:7c:27:a2:6e:b1:4e:9b:cd:c1:19:42:13:1f:29:
33:c0:0b:a8:d9:6b:6e:f6:c0:71:ce:7c:63:e1:6c:
ad:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:87:E6:78:0A:16:37:49:F0:0D:CF:CF:C4:43:07:95:58:B1:84:7D
X509v3 Authority Key Identifier:
keyid:FC:A9:8B:1D:0E:CC:CC:4F:6F:F1:A7:E7:DB:84:B4:BB:2F:55:B0:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_KmLHQ7MzE9v8afn24S0uy9VsI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/971e73-fa83-4579-8532-58f0f325c2b8/1/MIfmeAoWN0nwDc_PxEMHlVixhH0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/971e73-fa83-4579-8532-58f0f325c2b8/1/_KmLHQ7MzE9v8afn24S0uy9VsI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.155.142.0/24
Signature Algorithm: sha256WithRSAEncryption
bd:f1:dc:0f:51:42:8f:6b:33:67:c1:7a:bc:f9:69:d2:99:58:
73:00:1b:21:0c:59:e1:70:07:1b:f9:85:e0:04:7c:0a:c2:69:
92:ff:cc:bf:0f:36:12:ab:41:d4:d7:c6:47:97:5c:06:f8:32:
b3:1a:01:9f:0b:8d:05:a0:af:3a:89:17:3b:08:db:97:20:08:
f7:b5:04:a8:9c:60:79:4c:b9:b4:87:34:9c:a0:15:46:15:51:
dc:d5:a3:6e:1f:e2:0e:4c:d4:01:ee:9f:94:31:3a:21:17:78:
e8:b4:4c:c3:2f:db:4d:38:e6:d8:17:42:a4:8e:87:3d:2c:88:
1a:b3:d7:e2:ae:7d:30:71:d6:8f:92:bc:dd:aa:da:ac:e0:38:
ae:d2:4c:8a:9b:74:85:9c:c7:30:ac:a9:16:e5:2a:39:d7:14:
28:ac:c9:cb:d8:24:4e:92:f1:29:49:3c:b3:11:8d:56:de:57:
ec:29:d5:bd:ea:53:ae:a9:92:6f:58:ae:07:b0:0f:2c:2f:16:
8d:16:fa:e0:52:5c:ad:4b:fa:b4:14:95:d6:c4:58:4d:38:0b:
03:11:c3:7b:3b:f4:9e:56:18:c7:42:c2:2d:30:29:f7:d1:89:
55:7d:cc:73:20:0f:43:44:da:ee:e4:8f:57:81:8f:d0:74:5e:
6d:5d:a0:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:04 2025 by rpki-client on console.sobornost.net