Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/2dad35-dd0a-4d63-8c1e-b9a36eb9ee21/1/PdBwCNjRTwQhBka9QYTFJ85Levw.roa
File: PdBwCNjRTwQhBka9QYTFJ85Levw.roa (raw, json)
Hash identifier: 1UzFJNiL/xWD/Kmj2JG8FjTPHthfJspZ/00KC7jKNXw=
Subject key identifier: 3D:D0:70:08:D8:D1:4F:04:21:06:46:BD:41:84:C5:27:CE:4B:7A:FC
Certificate issuer: /CN=e1d75690d39c830180b3f55c49d140a2a04d3917
Certificate serial: 01942369A15DCA92164C04461A9654E7B578
Authority key identifier: E1:D7:56:90:D3:9C:83:01:80:B3:F5:5C:49:D1:40:A2:A0:4D:39:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4ddWkNOcgwGAs_VcSdFAoqBNORc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/2dad35-dd0a-4d63-8c1e-b9a36eb9ee21/1/PdBwCNjRTwQhBka9QYTFJ85Levw.roa
Signing time: Wed 01 Jan 2025 19:48:32 +0000
ROA not before: Wed 01 Jan 2025 19:48:32 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 50377
IP address blocks: 109.234.244.0/24 maxlen: 24
185.184.64.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:69:a1:5d:ca:92:16:4c:04:46:1a:96:54:e7:b5:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1d75690d39c830180b3f55c49d140a2a04d3917
Validity
Not Before: Jan 1 19:48:32 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3dd07008d8d14f04210646bd4184c527ce4b7afc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:26:cb:1e:b7:32:ec:6d:e9:97:0c:a1:02:9a:
ce:03:8a:9a:2c:81:59:11:d2:ca:47:16:06:20:b1:
ae:f3:2b:de:ef:df:21:59:77:69:5b:fd:46:4b:bd:
e1:98:99:d6:1e:b9:90:c3:f6:21:8a:d2:14:f3:6d:
c9:a7:14:b8:19:0f:00:58:16:ab:cc:30:fe:16:00:
7d:59:db:ab:2a:f9:f6:41:9a:3b:7d:b5:d6:3e:33:
5a:6c:14:6c:94:a8:8e:86:8c:2a:80:09:0d:d8:2f:
4c:16:24:0a:0c:b4:bb:64:d1:85:91:47:3c:c7:46:
b4:25:70:3f:30:1e:14:5e:33:55:48:2a:32:e0:2c:
86:03:df:11:94:4c:97:3a:98:07:bd:55:08:00:ae:
26:3f:e5:26:41:41:f6:fe:7f:2f:7e:3c:1a:fa:7c:
b1:fa:de:3e:7b:2d:a5:27:0c:c0:41:19:67:30:d2:
0c:75:93:8c:5f:d0:5b:62:a0:3d:90:73:e0:1f:93:
b0:1f:f3:8d:a1:61:11:25:da:d4:ec:2d:85:90:37:
93:40:a8:8e:97:52:b6:dd:5d:c3:5b:9e:76:59:c2:
7d:ab:70:34:58:7f:da:89:ec:39:86:d3:29:9b:b1:
37:47:97:cb:b2:25:fa:fd:8a:6c:1d:48:5c:52:2e:
dd:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:D0:70:08:D8:D1:4F:04:21:06:46:BD:41:84:C5:27:CE:4B:7A:FC
X509v3 Authority Key Identifier:
keyid:E1:D7:56:90:D3:9C:83:01:80:B3:F5:5C:49:D1:40:A2:A0:4D:39:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4ddWkNOcgwGAs_VcSdFAoqBNORc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/2dad35-dd0a-4d63-8c1e-b9a36eb9ee21/1/PdBwCNjRTwQhBka9QYTFJ85Levw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/2dad35-dd0a-4d63-8c1e-b9a36eb9ee21/1/4ddWkNOcgwGAs_VcSdFAoqBNORc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.234.244.0/24
185.184.64.0/22
Signature Algorithm: sha256WithRSAEncryption
a6:f1:aa:f9:06:e7:cc:97:da:44:8f:f9:02:17:64:57:ab:ab:
ff:95:c6:2e:41:af:7d:07:d8:01:a3:dc:99:e0:d6:5e:41:42:
94:e5:f3:c4:ba:73:51:11:61:2b:74:5c:25:a0:44:8d:d8:04:
c5:a6:7f:ac:50:a7:98:c8:bd:59:9e:37:46:b0:60:80:b0:84:
0d:01:1f:cc:71:e6:e2:cf:eb:e9:91:7e:c6:bb:ce:8f:70:81:
8c:27:12:95:e0:ba:ee:97:93:90:6c:2f:93:53:02:14:00:03:
26:fa:4d:a0:d5:95:a3:af:8f:7b:59:ea:94:cc:52:57:b6:10:
21:ca:41:a2:93:3f:15:51:45:ae:23:85:9d:0a:98:ce:2a:a0:
af:be:b7:0f:99:c8:c7:e1:7b:9e:ec:c6:9b:a6:a9:f9:e9:36:
4c:14:e8:ec:f6:0f:2b:58:cb:11:97:40:ff:03:84:4f:f1:20:
76:b4:6f:11:f5:b7:ae:28:a1:ef:ad:3b:f7:30:1f:bb:43:31:
b5:34:dc:98:fe:e2:8d:85:f4:18:31:68:dd:5a:a7:32:a0:2c:
c9:fe:2c:c6:27:50:c5:3c:29:b2:1e:2e:09:17:1f:8d:97:ef:
4c:a5:0f:e8:b9:90:c7:1a:30:e9:cf:b7:e3:05:ae:1c:d3:8f:
d3:92:3f:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:15 2025 by rpki-client on console.sobornost.net