Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/a3383a-04eb-43f8-a953-3bf04a2a93d8/1/fCmxjuxg2kiGhVLozWEWvXwEU4U.roa
File: fCmxjuxg2kiGhVLozWEWvXwEU4U.roa (raw, json)
Hash identifier: M5qgc4FTv7281YHawHS2pyFS7vA+gmBBWWyMQstn7/0=
Subject key identifier: 7C:29:B1:8E:EC:60:DA:48:86:85:52:E8:CD:61:16:BD:7C:04:53:85
Certificate issuer: /CN=0526b03c717184c3680817e55e2455f85d73a413
Certificate serial: 0194274815F456015FFA33EA0FE14E8761B4
Authority key identifier: 05:26:B0:3C:71:71:84:C3:68:08:17:E5:5E:24:55:F8:5D:73:A4:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BSawPHFxhMNoCBflXiRV-F1zpBM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/a3383a-04eb-43f8-a953-3bf04a2a93d8/1/fCmxjuxg2kiGhVLozWEWvXwEU4U.roa
Signing time: Thu 02 Jan 2025 13:50:23 +0000
ROA not before: Thu 02 Jan 2025 13:50:23 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215300
IP address blocks: 37.123.211.0/24 maxlen: 24
37.123.212.0/24 maxlen: 24
2a00:1678:5a::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:15:f4:56:01:5f:fa:33:ea:0f:e1:4e:87:61:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0526b03c717184c3680817e55e2455f85d73a413
Validity
Not Before: Jan 2 13:50:23 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7c29b18eec60da48868552e8cd6116bd7c045385
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:86:17:e0:96:a6:c0:a9:be:b8:f1:b5:01:1a:
45:c6:9d:20:6e:76:25:79:26:76:94:16:8d:f2:56:
d4:0b:3e:f6:87:16:db:00:c9:3c:06:8e:17:79:dc:
69:39:6e:74:38:20:5f:6f:50:1b:da:00:62:0e:bc:
f4:d8:cf:a7:69:f2:c6:b7:4c:0b:34:39:f0:d2:f7:
2d:f1:27:bd:a3:3e:f2:22:2f:16:50:8c:35:5c:b9:
c7:46:50:d8:39:64:55:6f:45:71:92:0e:ec:de:53:
cb:0d:80:d9:1f:53:39:18:6a:fc:0b:d0:43:21:76:
eb:2c:86:a9:86:7d:7a:b5:00:ae:f6:00:8d:13:3e:
01:da:2b:73:f2:af:f3:52:cb:24:1c:56:a8:f6:76:
f4:fe:51:b1:90:5b:9b:6d:7a:e8:06:e8:95:f3:7b:
ae:f4:ce:b6:e6:fa:cb:ed:1a:21:f5:49:99:f6:32:
e0:32:d1:17:a8:54:b6:81:cd:f9:bd:03:a3:fc:7e:
d8:4a:ab:c9:c5:fd:fa:14:22:fa:4a:9d:15:0f:1c:
3f:49:33:a3:f5:6b:f2:84:24:d0:ca:a1:00:72:90:
d7:9c:17:84:a0:a8:65:3b:4e:ad:aa:a5:f7:79:eb:
c3:60:12:62:f2:47:c3:b3:d6:93:59:32:d5:26:c1:
07:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:29:B1:8E:EC:60:DA:48:86:85:52:E8:CD:61:16:BD:7C:04:53:85
X509v3 Authority Key Identifier:
keyid:05:26:B0:3C:71:71:84:C3:68:08:17:E5:5E:24:55:F8:5D:73:A4:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BSawPHFxhMNoCBflXiRV-F1zpBM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/a3383a-04eb-43f8-a953-3bf04a2a93d8/1/fCmxjuxg2kiGhVLozWEWvXwEU4U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/a3383a-04eb-43f8-a953-3bf04a2a93d8/1/BSawPHFxhMNoCBflXiRV-F1zpBM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.123.211.0-37.123.212.255
IPv6:
2a00:1678:5a::/48
Signature Algorithm: sha256WithRSAEncryption
74:f0:3f:ea:52:ab:02:de:04:91:7d:2f:07:a1:db:c4:4e:a7:
e4:2c:86:fa:3b:83:e0:14:47:f9:92:4c:c7:9a:fd:01:cb:fc:
5d:bf:f8:63:5c:3f:29:33:16:f7:63:ba:c8:04:b4:97:35:f3:
82:fa:83:fa:20:e4:8b:0e:69:7e:22:02:35:c7:82:29:bc:87:
4c:b9:06:c1:14:2a:82:05:bc:36:34:c0:18:92:1c:70:8f:72:
83:29:8d:81:20:7b:69:db:3b:7f:3c:7a:c5:3a:a7:e0:09:e3:
9d:41:8f:ee:c4:c7:7b:3e:0d:77:db:5d:61:4d:cc:7f:a0:c3:
a0:45:32:06:67:ac:09:b6:67:62:95:61:f0:70:8c:f3:8a:fd:
30:65:35:f6:f1:35:d3:b0:59:51:f0:7f:68:18:57:e6:f9:98:
7f:5d:57:a6:19:20:4f:82:e1:63:8d:9a:b0:11:be:10:1f:79:
f0:73:7d:88:94:e6:4c:9c:0f:a3:ec:d3:fa:aa:bb:fc:91:1a:
33:78:ae:b3:63:35:6f:ad:6a:68:72:91:36:38:ef:47:51:2e:
19:ca:4c:09:c3:09:6c:65:a7:a0:f1:0d:e4:f8:cf:e3:9e:3c:
a0:0a:15:27:7e:5b:aa:6e:f4:da:3b:5a:f3:30:4b:08:5f:81:
de:cd:72:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:13 2025 by rpki-client on console.sobornost.net