Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/5sO3ihqMYlcvXn84yqgQi29KMmw.roa
File: 5sO3ihqMYlcvXn84yqgQi29KMmw.roa (raw, json)
Hash identifier: mo4o1Q6/3Kx0AwUgn9sgtfvGlx77pdqMGuZUbqTyeCM=
Subject key identifier: E6:C3:B7:8A:1A:8C:62:57:2F:5E:7F:38:CA:A8:10:8B:6F:4A:32:6C
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 0194236A564F1ECA3C50737826F61B583D89
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/5sO3ihqMYlcvXn84yqgQi29KMmw.roa
Signing time: Wed 01 Jan 2025 19:49:18 +0000
ROA not before: Wed 01 Jan 2025 19:49:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212396
IP address blocks: 45.85.194.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:6a:56:4f:1e:ca:3c:50:73:78:26:f6:1b:58:3d:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 1 19:49:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e6c3b78a1a8c62572f5e7f38caa8108b6f4a326c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:48:ea:be:7a:75:a4:3c:6d:c9:22:0d:c3:8a:
d2:bc:38:43:59:e3:fc:49:32:30:cd:d3:86:cc:9c:
6a:da:c1:35:59:8b:be:12:94:18:4d:0d:e5:9b:14:
e5:ae:e6:87:19:11:e3:07:26:47:b9:3b:4f:50:1c:
67:af:5e:49:8b:79:7a:ac:30:83:f6:ae:4e:82:47:
89:60:e5:1a:63:47:87:5c:d8:57:b8:58:3a:cb:f2:
0d:ab:43:3d:9d:97:23:c0:aa:aa:79:dd:97:af:a4:
20:60:75:43:3e:c2:e9:9e:c6:03:7a:11:3c:97:7a:
0f:6b:c1:16:8a:66:a1:20:8d:cf:99:1c:c0:35:28:
61:c1:d2:84:6c:cf:47:8e:a4:72:61:08:28:50:f7:
de:96:4b:3a:c5:46:25:04:14:8b:91:b7:3f:77:00:
2d:bb:26:18:09:5f:36:80:d2:25:96:2e:9a:a5:51:
cf:ec:4c:d2:45:09:f8:f8:c4:ff:5b:48:25:7b:40:
18:94:f4:b8:7e:dd:ef:d7:d3:89:f5:8a:a4:46:6b:
a1:6a:71:00:3e:96:55:b1:54:84:53:d1:d9:67:fc:
fa:bf:b1:f4:81:17:48:24:6d:b5:8d:0a:be:85:74:
f6:c5:1d:88:7b:e0:34:f8:16:e9:70:4d:78:ed:30:
71:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:C3:B7:8A:1A:8C:62:57:2F:5E:7F:38:CA:A8:10:8B:6F:4A:32:6C
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/5sO3ihqMYlcvXn84yqgQi29KMmw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.85.194.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:ca:e9:d1:7a:e4:47:db:f3:ed:82:44:d2:85:63:d4:c3:e3:
99:22:b6:a8:12:e9:86:74:a9:6f:35:bd:9c:35:66:0a:f0:23:
9b:54:ee:cd:b5:e6:3d:4d:aa:fd:a5:09:4e:d7:2f:e1:7f:60:
e2:dd:ad:84:5f:c4:87:58:91:9b:aa:38:f9:5a:70:8a:43:c6:
73:39:81:98:7b:99:f3:83:25:0b:43:d5:31:32:32:a4:4f:f0:
3b:ce:91:60:a1:08:00:76:71:a5:cf:b6:c6:f1:80:d1:18:7b:
55:88:f2:23:fb:38:fe:d1:c2:e6:5b:e1:fe:90:a4:03:3e:4d:
e4:f5:1f:3b:3f:8c:0e:67:82:9c:b3:6b:72:16:80:4f:8a:1e:
6a:4f:9a:ad:2a:0c:31:fd:03:9e:b0:78:5b:30:df:a8:94:b0:
2e:80:79:56:64:35:9a:b1:dc:5c:49:ce:c1:a7:07:76:31:d6:
21:9b:9c:eb:43:ac:ae:93:1a:64:10:04:aa:7d:5f:82:a0:f9:
54:b0:2b:57:89:ee:2a:f7:b1:21:90:dc:02:7f:08:95:33:b4:
95:79:ff:da:ef:76:de:8f:01:90:ff:9f:47:5c:ac:f6:d0:62:
6d:7a:e6:91:0f:f6:14:2b:b2:cc:e4:18:2e:d6:7a:53:47:cd:
50:c5:59:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:12 2025 by rpki-client on console.sobornost.net