Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/c3c5b7-fe57-474c-8ae3-de18510ea50a/1/2Th08CsGcph52DOySFf8avd11s0.roa
File: 2Th08CsGcph52DOySFf8avd11s0.roa (raw, json)
Hash identifier: WgaVVlF9ZBAWiPJHuR7pDrCRfi4rbJHfsc6PSI0qP/M=
Subject key identifier: D9:38:74:F0:2B:06:72:98:79:D8:33:B2:48:57:FC:6A:F7:75:D6:CD
Certificate issuer: /CN=5d30056bc4e20393a6febf6576b3912c7ea569a6
Certificate serial: 01942748779A641C0F1696215C04F474ABAA
Authority key identifier: 5D:30:05:6B:C4:E2:03:93:A6:FE:BF:65:76:B3:91:2C:7E:A5:69:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XTAFa8TiA5Om_r9ldrORLH6laaY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/c3c5b7-fe57-474c-8ae3-de18510ea50a/1/2Th08CsGcph52DOySFf8avd11s0.roa
Signing time: Thu 02 Jan 2025 13:50:48 +0000
ROA not before: Thu 02 Jan 2025 13:50:48 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 29684
IP address blocks: 185.149.193.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:77:9a:64:1c:0f:16:96:21:5c:04:f4:74:ab:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d30056bc4e20393a6febf6576b3912c7ea569a6
Validity
Not Before: Jan 2 13:50:48 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d93874f02b06729879d833b24857fc6af775d6cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:65:a5:f3:9e:48:15:35:08:35:e3:9f:92:9f:
23:6f:46:5c:5f:f4:d7:41:6a:6b:5b:d6:82:77:23:
fe:06:16:45:ef:30:f2:e4:6a:a8:03:f3:f2:8e:70:
d4:08:d4:93:ae:11:72:b1:70:61:8d:e5:8e:ea:78:
f8:e8:da:d6:b2:c7:9e:f7:ab:cd:54:67:25:1a:09:
75:f9:77:0c:75:fa:0e:2c:40:27:29:6b:3f:b4:eb:
69:ec:5b:a6:1a:2d:ba:ec:9e:74:81:15:22:55:4b:
3f:00:9d:e2:c4:b9:6d:f9:f5:5a:57:8e:c0:0f:be:
77:2a:7e:70:d5:d8:7c:6d:9d:a1:46:ed:bb:08:2c:
0a:f0:f2:cb:70:5f:0c:6d:b4:dc:bc:7c:ec:45:0b:
e2:92:23:90:08:7c:e1:a1:b9:f1:cc:3d:d5:1d:4d:
b0:a5:dd:33:3a:4d:62:db:aa:dd:1a:b2:2f:9c:e7:
53:62:21:97:2b:50:e3:a0:e9:7f:c4:41:98:6e:30:
fe:b9:e8:75:12:ea:5a:bd:a4:ac:ce:62:52:85:87:
2d:f8:18:b0:38:3b:4e:73:b7:2f:fc:31:91:c7:4c:
69:89:f5:61:39:93:19:04:96:23:7a:32:54:fb:85:
f9:24:63:b4:5b:28:be:a2:02:cc:65:1b:73:99:88:
c8:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:38:74:F0:2B:06:72:98:79:D8:33:B2:48:57:FC:6A:F7:75:D6:CD
X509v3 Authority Key Identifier:
keyid:5D:30:05:6B:C4:E2:03:93:A6:FE:BF:65:76:B3:91:2C:7E:A5:69:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XTAFa8TiA5Om_r9ldrORLH6laaY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/c3c5b7-fe57-474c-8ae3-de18510ea50a/1/2Th08CsGcph52DOySFf8avd11s0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/c3c5b7-fe57-474c-8ae3-de18510ea50a/1/XTAFa8TiA5Om_r9ldrORLH6laaY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.149.193.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:86:d0:83:be:8f:0e:e1:33:ef:c6:15:4f:d3:c7:ce:7f:68:
c2:a4:70:ff:fc:d9:30:7b:9e:eb:f6:e7:f4:05:74:91:55:90:
4f:2a:91:9e:42:3c:37:8b:b6:06:13:6d:fd:f1:29:02:f8:e1:
13:bf:9a:45:6a:05:fa:a6:69:99:1b:76:20:88:b0:8c:09:70:
c8:e4:06:5c:94:a5:18:a6:e8:c2:42:d3:b7:ce:03:88:fb:cc:
03:f6:14:d8:de:3e:bd:7c:e3:b1:5a:02:1e:02:e6:0a:b2:ea:
8b:64:55:6b:46:69:69:83:1e:fe:26:e3:ec:1f:a3:4b:0d:c4:
57:7c:45:4a:18:b8:af:f4:75:8f:b9:17:f2:83:ab:56:32:20:
8f:20:74:4d:6c:49:61:3f:b3:26:72:00:b2:c7:60:89:74:b2:
8f:9a:e4:f0:e1:5a:f8:ab:c7:0e:7f:52:90:63:82:b2:c6:96:
f6:2b:de:fb:2b:99:e5:81:d3:b1:fb:fb:a4:53:ad:7a:9c:65:
e9:48:09:0f:79:22:69:f5:04:2e:fa:62:95:c0:f8:35:94:5a:
d7:a4:fd:fd:09:fd:b7:7c:47:ae:c9:04:72:c4:a6:6d:86:aa:
72:83:4c:1a:ba:b5:fe:42:9a:c5:a3:9a:4b:ef:4e:57:a3:79:
f3:7b:07:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 23 19:16:32 2025 by rpki-client on console.sobornost.net