Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/f70db4-62ea-49db-8319-cdfa60122690/1/aUaxmc4yn8DWQgssucohLW2GTOs.roa
File: aUaxmc4yn8DWQgssucohLW2GTOs.roa (raw, json)
Hash identifier: SOdn4BM+lJeHsX2EdSBfNJjI/S1sYp7gdR+GcCunEpg=
Subject key identifier: 69:46:B1:99:CE:32:9F:C0:D6:42:0B:2C:B9:CA:21:2D:6D:86:4C:EB
Certificate issuer: /CN=de51da32762a6f9c126d63ba705d62c050b8484e
Certificate serial: 019421B25D1B59B199BD26F2A4518C098EBC
Authority key identifier: DE:51:DA:32:76:2A:6F:9C:12:6D:63:BA:70:5D:62:C0:50:B8:48:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3lHaMnYqb5wSbWO6cF1iwFC4SE4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/f70db4-62ea-49db-8319-cdfa60122690/1/aUaxmc4yn8DWQgssucohLW2GTOs.roa
Signing time: Wed 01 Jan 2025 11:48:44 +0000
ROA not before: Wed 01 Jan 2025 11:48:44 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 205914
IP address blocks: 185.72.19.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b2:5d:1b:59:b1:99:bd:26:f2:a4:51:8c:09:8e:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de51da32762a6f9c126d63ba705d62c050b8484e
Validity
Not Before: Jan 1 11:48:44 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6946b199ce329fc0d6420b2cb9ca212d6d864ceb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:21:eb:0b:b1:aa:1f:8e:84:3a:75:b5:93:59:
fd:0d:c9:9d:12:f2:bd:20:d8:5a:12:0f:bd:cf:03:
f5:15:97:e2:e7:0d:73:0f:9c:5e:f0:0e:90:2d:c7:
3a:08:00:33:6a:b9:28:8e:a2:37:77:96:7a:20:10:
24:58:ca:f0:0a:af:ad:bb:9d:2b:3f:4c:10:eb:a4:
f1:21:e7:c5:c0:5e:95:e9:21:5c:88:7c:0b:5a:89:
a9:59:3a:13:2f:99:2a:47:48:a6:9c:3b:2a:2b:9a:
df:f7:1e:5e:f7:ad:33:90:36:b3:52:5b:f9:12:9c:
3b:1a:8f:49:ca:7a:d5:e3:2c:52:cb:7e:3e:18:21:
5c:0e:3b:5e:ab:8b:20:ae:94:ff:16:3a:d2:50:31:
58:35:94:72:2d:6e:a3:b0:3b:00:39:1e:fc:3d:0b:
6d:f1:35:88:ea:29:ef:72:8b:99:2d:20:61:ec:c8:
36:e4:7d:8b:6a:8c:ca:9f:ab:20:d3:f9:3f:45:fd:
f3:e4:17:61:76:96:89:0b:15:a4:b6:28:da:bd:55:
20:c5:bb:37:d0:db:8a:e7:8e:6b:01:80:9c:95:f9:
e5:73:d0:57:0f:c3:04:0d:0d:b3:6c:26:9c:3b:43:
05:73:24:56:91:57:ff:ec:81:34:00:cb:0c:40:9f:
e0:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:46:B1:99:CE:32:9F:C0:D6:42:0B:2C:B9:CA:21:2D:6D:86:4C:EB
X509v3 Authority Key Identifier:
keyid:DE:51:DA:32:76:2A:6F:9C:12:6D:63:BA:70:5D:62:C0:50:B8:48:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3lHaMnYqb5wSbWO6cF1iwFC4SE4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/f70db4-62ea-49db-8319-cdfa60122690/1/aUaxmc4yn8DWQgssucohLW2GTOs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/f70db4-62ea-49db-8319-cdfa60122690/1/3lHaMnYqb5wSbWO6cF1iwFC4SE4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.72.19.0/24
Signature Algorithm: sha256WithRSAEncryption
75:82:22:54:30:00:cb:e1:9c:f5:bd:7f:75:2b:66:c4:54:ef:
e7:2a:59:2b:3f:7e:e0:8f:54:fd:b6:80:16:f9:b5:8c:e2:42:
46:07:f1:1b:2b:ff:3c:b3:9b:6f:b2:d0:d7:40:fb:29:8b:c7:
e7:2c:e6:ef:c6:86:40:f3:4c:aa:00:e9:24:f2:5c:c1:53:a6:
db:b9:e3:a7:26:87:57:81:cc:52:37:c7:a9:49:ae:a1:34:85:
89:56:93:e7:14:b1:09:e9:cb:ea:46:98:82:6a:66:9d:92:bb:
22:5d:cd:65:14:ce:3d:c0:10:6d:b2:25:b1:86:c2:c3:4f:34:
07:57:08:fd:80:e9:d1:39:8f:a4:fe:97:bf:d0:63:8f:14:4c:
7d:bc:de:f1:20:1a:07:f7:1c:41:ef:53:56:3f:f1:df:0a:50:
10:fd:07:dc:27:94:00:62:cc:c2:e2:da:a4:9c:e2:f5:1d:9c:
13:a1:83:0a:20:41:b4:26:15:23:0e:0c:f0:94:a3:8a:e0:eb:
11:c3:79:0d:56:cb:2a:11:6a:8f:9c:22:64:24:dc:fc:2a:c7:
c5:fa:92:59:b6:8b:07:ed:b9:d6:83:92:3b:b9:de:8f:fe:66:
74:26:5c:8b:1c:9c:09:09:6d:64:12:16:05:54:9b:da:d7:7a:
80:9d:f7:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:09 2025 by rpki-client on console.sobornost.net