Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/sBwIL2QXtWAeXuBLYOUMBLyYmuc.roa
File: sBwIL2QXtWAeXuBLYOUMBLyYmuc.roa (raw, json)
Hash identifier: c5zYPQOnxCSqxHOKbARIvAfU79cJPjjQBl+vpmNmVNI=
Subject key identifier: B0:1C:08:2F:64:17:B5:60:1E:5E:E0:4B:60:E5:0C:04:BC:98:9A:E7
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0195EB707674ACFCAA92F005D485496414F7
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/sBwIL2QXtWAeXuBLYOUMBLyYmuc.roa
Signing time: Mon 31 Mar 2025 09:02:50 +0000
ROA not before: Mon 31 Mar 2025 09:02:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215304
IP address blocks: 185.206.250.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:eb:70:76:74:ac:fc:aa:92:f0:05:d4:85:49:64:14:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Mar 31 09:02:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b01c082f6417b5601e5ee04b60e50c04bc989ae7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:a4:fd:1c:e2:71:b5:43:5d:47:e0:87:c6:31:
a9:d5:9e:f6:b7:22:27:16:e4:03:b5:81:f6:c6:79:
d0:fc:54:1a:4e:fe:d3:a6:38:39:0e:e7:31:c7:4d:
e0:f1:df:45:aa:55:ee:b0:22:f5:3c:9e:51:eb:2a:
d3:ef:3e:e8:67:99:70:b4:5c:38:5f:f5:28:76:e7:
7d:4d:ca:ad:07:66:c9:ae:e2:69:3c:6d:66:51:c8:
67:ed:d2:73:03:7f:d7:73:e7:a3:03:1e:b1:76:7f:
66:e1:05:88:9b:ec:bf:fe:c6:a8:7c:8c:67:f1:81:
06:fe:d0:0a:83:8d:17:87:0e:c8:45:83:da:92:1b:
0d:48:ef:e9:f3:44:c1:8c:a5:a2:0f:4a:1d:6b:ef:
4c:da:43:2c:e9:61:1e:a4:c5:35:02:28:04:24:90:
66:3f:f9:bd:ee:a3:7f:97:59:4c:d8:9f:75:2f:8e:
f7:45:c1:1b:ed:95:b3:77:04:04:54:e9:56:aa:b7:
e9:c9:9d:72:3a:6a:33:8f:aa:be:ed:41:64:4f:c6:
c3:83:ef:01:b4:ec:c3:68:94:e1:45:13:dd:13:39:
81:00:51:2d:5a:f2:31:c8:cd:f6:76:ce:d6:d3:e1:
2a:12:f3:8c:e8:06:c5:68:93:8a:81:64:cd:ca:a1:
6d:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:1C:08:2F:64:17:B5:60:1E:5E:E0:4B:60:E5:0C:04:BC:98:9A:E7
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/sBwIL2QXtWAeXuBLYOUMBLyYmuc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.206.250.0/24
Signature Algorithm: sha256WithRSAEncryption
13:72:a0:b9:12:50:42:69:2a:05:71:f5:a4:54:33:db:e0:07:
0b:12:d4:bd:c0:c4:77:32:2f:55:86:49:2d:ec:92:4c:2b:ef:
b8:44:6a:3b:c0:31:69:9a:31:84:67:fb:50:db:d4:1d:c9:24:
b8:a0:19:91:45:c4:a2:7b:48:1b:4c:25:50:3a:0d:f7:2e:7a:
2c:8b:ae:5f:4a:c0:63:d6:67:62:34:c7:0f:e1:f8:59:a2:a8:
5f:da:e3:60:62:55:c8:2f:ca:de:5d:83:26:ef:4b:c5:8e:33:
d8:80:48:ed:c9:12:2e:62:5f:96:77:40:5c:62:92:75:68:36:
7d:83:8f:4f:a7:b7:d5:45:60:fd:eb:ac:e0:2c:14:ea:51:f4:
44:b6:4b:9e:9e:81:4b:3b:9a:38:fa:4b:ee:8c:80:3c:8a:f6:
e4:ed:70:e9:3b:10:0f:48:f9:4c:83:2c:5f:9b:53:1d:94:c7:
c0:ec:ad:18:aa:ef:92:4b:38:f0:15:22:d8:88:b4:28:f1:91:
2a:79:94:28:fb:21:03:f4:e2:f8:46:c8:18:dd:ae:46:65:7e:
6a:58:39:59:97:fd:03:f2:92:3d:9e:f1:1b:12:e9:4f:f3:95:
e7:ea:42:1a:f1:60:77:3b:16:bf:b3:a9:90:1b:0c:66:bf:f0:
02:5c:1f:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:12 2025 by rpki-client on console.sobornost.net