Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/5f343d-9b42-44b4-9067-7cae040e49e8/1/Sd9KABI9BM5Wi5AzQPJlcrl7nPs.roa
File: Sd9KABI9BM5Wi5AzQPJlcrl7nPs.roa (raw, json)
Hash identifier: lKvMF4u6rkezbu3Z5i73n84s97j8vHpTtirCLh73hlM=
Subject key identifier: 49:DF:4A:00:12:3D:04:CE:56:8B:90:33:40:F2:65:72:B9:7B:9C:FB
Certificate issuer: /CN=785b490d766f4b1c211d7dadd6efa770f6eb9e25
Certificate serial: 0194236A067D437A0432AA6E5651B45C50E7
Authority key identifier: 78:5B:49:0D:76:6F:4B:1C:21:1D:7D:AD:D6:EF:A7:70:F6:EB:9E:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eFtJDXZvSxwhHX2t1u-ncPbrniU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/5f343d-9b42-44b4-9067-7cae040e49e8/1/Sd9KABI9BM5Wi5AzQPJlcrl7nPs.roa
Signing time: Wed 01 Jan 2025 19:48:58 +0000
ROA not before: Wed 01 Jan 2025 19:48:58 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 202289
IP address blocks: 185.155.16.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:6a:06:7d:43:7a:04:32:aa:6e:56:51:b4:5c:50:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=785b490d766f4b1c211d7dadd6efa770f6eb9e25
Validity
Not Before: Jan 1 19:48:58 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=49df4a00123d04ce568b903340f26572b97b9cfb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:cb:9f:74:56:06:5a:b0:a0:36:0f:a5:5e:f9:
a3:0a:84:d6:9a:ef:77:fe:46:ff:da:e7:74:b8:9c:
8f:36:9a:ed:65:b8:5a:c7:ff:3b:17:7a:37:3d:41:
3b:26:bc:90:f4:16:d1:a0:12:de:33:b7:9d:5d:b8:
86:4e:09:db:3c:8e:44:d0:cb:78:3c:79:08:d3:80:
ee:6e:6a:7d:1c:35:60:f1:0f:05:34:6e:a4:46:34:
6b:56:34:6d:de:06:23:e5:4f:a4:3f:d2:48:2b:8e:
2a:19:38:a2:83:a1:02:6d:4d:7f:62:6b:11:b6:5c:
d2:29:11:fd:c1:3e:50:60:ec:79:de:71:1d:d4:75:
47:fc:ac:13:f2:2a:aa:42:44:37:5b:1a:b7:fb:48:
e7:36:61:5c:55:c9:bd:b5:ec:36:af:19:8e:ea:07:
8d:2e:6c:65:46:a6:8f:5c:91:7b:e6:28:e2:88:3c:
e0:17:46:95:2f:95:eb:85:64:25:0e:c0:9b:11:2c:
ab:25:9e:f8:4c:68:d0:2e:fc:ba:f2:70:cb:4d:fe:
11:5a:f5:3c:45:56:a4:00:0e:ee:2b:f6:ef:1c:de:
39:e8:09:52:83:79:0a:41:70:72:de:0c:68:62:c6:
0a:e1:c5:2b:94:f1:71:ad:93:98:dc:9b:9a:a5:64:
31:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:DF:4A:00:12:3D:04:CE:56:8B:90:33:40:F2:65:72:B9:7B:9C:FB
X509v3 Authority Key Identifier:
keyid:78:5B:49:0D:76:6F:4B:1C:21:1D:7D:AD:D6:EF:A7:70:F6:EB:9E:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eFtJDXZvSxwhHX2t1u-ncPbrniU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/5f343d-9b42-44b4-9067-7cae040e49e8/1/Sd9KABI9BM5Wi5AzQPJlcrl7nPs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/5f343d-9b42-44b4-9067-7cae040e49e8/1/eFtJDXZvSxwhHX2t1u-ncPbrniU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.155.16.0/24
Signature Algorithm: sha256WithRSAEncryption
21:16:29:c7:b9:59:d6:82:87:5f:50:2d:38:a1:c8:e9:5e:37:
0a:20:3e:a8:6b:fd:6c:53:65:9d:e6:9c:59:c0:28:80:02:7a:
ee:76:ed:47:67:8d:b7:fa:3f:da:82:1d:c5:bc:6d:80:49:0f:
dd:e1:ef:ac:94:0b:ee:1d:d3:1f:1c:9e:6e:4b:1e:55:20:bc:
4c:37:ae:4e:72:d1:96:58:2f:6d:f0:59:97:8e:29:99:b8:ce:
07:95:de:33:87:91:e8:21:3c:e4:a6:43:8d:c9:a2:af:c7:65:
fa:a9:42:f9:5c:dc:ac:98:5f:b8:b9:64:12:14:d9:f8:a8:42:
6c:ee:df:ab:a1:d8:2d:b3:21:a8:63:23:60:14:7f:af:6e:b6:
3e:66:ed:61:c9:cc:7d:2a:f0:73:0d:dd:76:35:8a:c2:5a:1b:
68:b2:44:17:ff:e6:b7:e2:62:b7:b4:3b:35:b5:a7:7b:0c:52:
c1:7e:ae:d9:18:fa:45:b2:80:84:66:34:2a:5e:02:04:58:cd:
35:9e:1f:9b:f5:e1:4b:b7:9d:e0:b7:e7:c3:3f:a5:42:86:12:
7e:d0:94:25:45:e5:a3:31:82:0f:3e:ff:8f:f8:50:42:05:d9:
0a:85:76:d4:bc:db:b0:43:28:94:b3:57:28:00:70:2c:0b:9d:
5a:6d:10:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:14 2025 by rpki-client on console.sobornost.net