Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/d51f64-5d06-4fc0-ab69-2cd98ee53569/1/7zJeCOLkCzcAkE6elAmsAfnqBrA.roa
File: 7zJeCOLkCzcAkE6elAmsAfnqBrA.roa (raw, json)
Hash identifier: ZBwwSegU4XKbwNTWFofTTBLanZb/lF8bV9B75di1H3E=
Subject key identifier: EF:32:5E:08:E2:E4:0B:37:00:90:4E:9E:94:09:AC:01:F9:EA:06:B0
Certificate issuer: /CN=8d84404e5f8a4b117ae44e73d53c44ecdd578342
Certificate serial: 01942521D866711E4DE3C6E170650C1221BA
Authority key identifier: 8D:84:40:4E:5F:8A:4B:11:7A:E4:4E:73:D5:3C:44:EC:DD:57:83:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jYRATl-KSxF65E5z1TxE7N1Xg0I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/d51f64-5d06-4fc0-ab69-2cd98ee53569/1/7zJeCOLkCzcAkE6elAmsAfnqBrA.roa
Signing time: Thu 02 Jan 2025 03:49:22 +0000
ROA not before: Thu 02 Jan 2025 03:49:22 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 207207
IP address blocks: 185.32.186.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:d8:66:71:1e:4d:e3:c6:e1:70:65:0c:12:21:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d84404e5f8a4b117ae44e73d53c44ecdd578342
Validity
Not Before: Jan 2 03:49:22 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ef325e08e2e40b3700904e9e9409ac01f9ea06b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:ef:37:4f:24:57:1a:90:9b:35:d2:42:2b:a8:
7d:3d:00:1a:04:c0:92:c1:09:c6:5e:df:d5:c0:63:
79:c1:e3:2d:44:0e:1c:26:aa:da:1e:bc:48:56:fb:
0f:92:16:88:a8:ab:aa:fb:21:47:70:c7:d8:2c:2e:
66:6b:6b:ed:95:ee:14:57:b0:58:e3:d9:0a:e9:3b:
81:43:a9:8a:27:4e:81:a2:dc:3a:b2:95:55:43:94:
bb:bd:6c:39:98:d2:69:99:6f:d0:7f:f6:e8:ae:a6:
a6:b2:aa:9d:6f:c6:db:74:94:eb:07:31:bb:cd:d2:
63:62:c5:d4:dc:a0:a1:67:78:ff:5b:bb:23:e1:32:
0d:f5:64:05:ff:44:a4:05:ef:23:f0:df:96:bf:9c:
47:a3:d4:7e:e3:46:26:fa:d7:a5:69:c1:3e:ff:5f:
21:38:3f:71:3e:6f:e7:67:55:fb:94:d8:08:1b:20:
5a:8e:09:03:14:1c:bc:5a:a3:17:04:b1:36:87:7c:
7d:a1:6b:5a:38:42:a0:d1:20:24:f9:86:5d:08:7b:
fa:13:4f:35:69:fd:80:3d:47:2f:ee:e6:c4:59:26:
e1:22:77:7e:2b:ae:01:ba:12:4f:23:06:ca:cd:80:
18:76:22:04:cc:2b:fc:fd:da:6c:99:db:d9:38:ef:
45:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:32:5E:08:E2:E4:0B:37:00:90:4E:9E:94:09:AC:01:F9:EA:06:B0
X509v3 Authority Key Identifier:
keyid:8D:84:40:4E:5F:8A:4B:11:7A:E4:4E:73:D5:3C:44:EC:DD:57:83:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jYRATl-KSxF65E5z1TxE7N1Xg0I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/d51f64-5d06-4fc0-ab69-2cd98ee53569/1/7zJeCOLkCzcAkE6elAmsAfnqBrA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/d51f64-5d06-4fc0-ab69-2cd98ee53569/1/jYRATl-KSxF65E5z1TxE7N1Xg0I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.32.186.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:ea:50:57:d7:19:7e:89:f3:92:4b:b6:6d:31:eb:63:66:65:
99:f2:06:39:7d:86:00:65:5e:05:3a:36:8c:f7:e9:a1:0d:18:
42:1c:bc:43:61:c0:cc:89:99:1e:5e:ac:1a:e1:42:21:74:5e:
d0:d2:2f:96:3f:20:09:c3:19:6e:84:84:3f:ca:2f:7f:28:45:
8f:26:45:17:ba:b0:44:95:bd:40:f9:ab:bd:2f:00:6d:d0:cd:
b6:88:ee:e0:44:bc:22:bf:5e:55:31:3b:6b:d1:3a:e9:a0:f6:
1d:94:ce:11:bf:bc:0d:99:fe:17:93:1a:f3:f9:89:c1:0d:ff:
76:6e:aa:7f:e2:cc:eb:a0:97:52:20:53:ce:2e:4b:47:b4:b2:
26:2a:2b:d8:fb:4b:44:f3:82:49:37:a7:6a:cb:42:6e:fe:df:
ed:55:27:33:09:36:ea:ed:a0:80:48:1c:e8:40:bd:c3:44:4b:
2c:0b:27:01:82:af:48:65:ef:69:91:cf:86:81:a0:2e:0c:4d:
c5:5a:ba:07:46:00:9f:4f:f2:13:e4:7f:77:4b:80:9e:f3:f0:
20:1e:1a:36:ee:6d:1e:86:9f:46:ec:20:8d:ae:f5:4d:c8:0a:
8b:78:8d:cc:59:e8:28:ce:cc:1e:2f:5c:61:2a:df:21:d0:02:
f8:75:9e:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:04 2025 by rpki-client on console.sobornost.net