Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/9159db-6173-408c-8e1b-8d498827f45c/1/KtAzNYXVImWMGMH8A6HLsIQbFYc.roa
File: KtAzNYXVImWMGMH8A6HLsIQbFYc.roa (raw, json)
Hash identifier: ltDvt7Ps4IWIzfc/uVIIbjH4kHjztdeIqznwfwNq8iY=
Subject key identifier: 2A:D0:33:35:85:D5:22:65:8C:18:C1:FC:03:A1:CB:B0:84:1B:15:87
Certificate issuer: /CN=f4f8ec96c8ee265c3da423230a55219366dd9b28
Certificate serial: 019422FC23F7BDB2436B2FEFD5AF73039A75
Authority key identifier: F4:F8:EC:96:C8:EE:26:5C:3D:A4:23:23:0A:55:21:93:66:DD:9B:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9PjslsjuJlw9pCMjClUhk2bdmyg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/9159db-6173-408c-8e1b-8d498827f45c/1/KtAzNYXVImWMGMH8A6HLsIQbFYc.roa
Signing time: Wed 01 Jan 2025 17:48:57 +0000
ROA not before: Wed 01 Jan 2025 17:48:57 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 62050
IP address blocks: 185.51.116.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fc:23:f7:bd:b2:43:6b:2f:ef:d5:af:73:03:9a:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4f8ec96c8ee265c3da423230a55219366dd9b28
Validity
Not Before: Jan 1 17:48:57 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2ad0333585d522658c18c1fc03a1cbb0841b1587
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:64:04:b4:91:4f:7c:9e:d4:e6:64:15:e0:6f:
4e:16:b8:7c:22:0c:78:66:a6:d3:dd:70:31:25:e4:
11:eb:30:d7:d0:d6:e8:86:04:6e:41:91:e1:87:dd:
84:46:d7:cd:5d:ae:6e:3b:6b:04:19:80:0c:7d:59:
06:c6:6c:4b:5d:aa:5a:d3:f9:39:4d:cb:e7:d0:0b:
44:43:29:9b:a5:4a:2c:27:88:a1:99:fb:ec:ae:26:
86:e5:c3:9c:ab:8a:f2:46:cb:98:d4:88:aa:b7:54:
48:a6:d3:62:3e:42:af:c9:3e:78:88:0f:c6:64:36:
aa:0b:b2:d7:d7:58:9b:45:c7:9d:c6:8a:ec:5f:ad:
2f:67:7d:34:51:71:d0:29:a9:32:02:47:e5:35:ef:
25:3a:fa:c3:31:9a:a9:ab:4a:0f:e2:56:67:b6:a5:
e6:bc:36:45:ed:39:8d:d0:24:c2:6a:b4:46:c3:e5:
04:8e:0d:27:3e:06:4d:0f:f6:19:7f:e0:83:d6:ac:
fa:47:37:ed:4c:ca:23:a3:58:ab:5e:5a:bd:e4:34:
4e:fd:a7:e2:65:f9:4b:e2:e8:ca:1f:f7:47:52:b4:
25:93:ed:01:37:5a:68:23:d6:93:26:c7:18:bf:27:
17:40:11:ff:1b:38:7e:c8:af:52:6b:ea:d0:e4:76:
c3:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:D0:33:35:85:D5:22:65:8C:18:C1:FC:03:A1:CB:B0:84:1B:15:87
X509v3 Authority Key Identifier:
keyid:F4:F8:EC:96:C8:EE:26:5C:3D:A4:23:23:0A:55:21:93:66:DD:9B:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9PjslsjuJlw9pCMjClUhk2bdmyg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/9159db-6173-408c-8e1b-8d498827f45c/1/KtAzNYXVImWMGMH8A6HLsIQbFYc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/9159db-6173-408c-8e1b-8d498827f45c/1/9PjslsjuJlw9pCMjClUhk2bdmyg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.51.116.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:1e:7d:90:2d:bb:ec:6e:b1:78:78:4a:e2:14:6b:13:5e:17:
a0:d4:6c:f6:93:7e:53:7d:05:54:1a:56:55:07:3b:18:f5:cb:
63:c7:8b:fc:c1:81:48:4b:e7:a8:0c:a5:02:d8:68:8b:01:ec:
24:46:58:e5:a8:53:18:32:56:f1:2f:ae:30:09:0d:71:92:c2:
71:3a:72:3d:99:5b:17:fc:5a:dd:a0:eb:f3:fa:08:2e:05:e9:
6a:49:f0:df:b6:c7:8e:1e:25:bd:1a:63:dc:c4:f8:98:e5:c9:
04:2c:0c:92:f8:cd:4a:9f:1f:64:2e:72:78:bd:bb:f0:23:08:
68:12:5f:66:a0:3f:1d:24:db:a9:59:c4:20:c1:b1:a8:62:d4:
a7:02:c8:44:46:c1:ac:e7:f6:8e:ec:21:28:5a:4c:c9:51:2f:
5f:f8:b1:a6:5c:f1:71:bb:a2:40:8e:5f:00:e2:a1:11:19:c7:
cc:6d:72:0c:9d:5d:e2:a2:a0:63:ba:da:23:4c:2e:be:f1:b2:
51:15:e2:74:9d:68:08:94:a0:b8:7d:f0:be:4a:50:24:26:29:
47:0e:78:5e:4c:68:c3:ac:8b:e6:e4:9f:c6:bf:4f:bf:74:05:
16:70:69:be:dc:e0:90:0e:68:77:84:a2:16:8e:ea:ff:07:f8:
8f:f0:90:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:27 2025 by rpki-client on console.sobornost.net