Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/bd9f3c-9a03-420d-8a29-d094dfa364d6/1/VZHF0nE3qVwIIpqdmF6QQh7nLs0.roa
File: VZHF0nE3qVwIIpqdmF6QQh7nLs0.roa (raw, json)
Hash identifier: mQT6bJlTC89LqB3D9GVMba8EFmBGqFt+S6QYF8yZZKY=
Subject key identifier: 55:91:C5:D2:71:37:A9:5C:08:22:9A:9D:98:5E:90:42:1E:E7:2E:CD
Certificate issuer: /CN=c96c9e6d3233e2c24120b85d17179cfb5d334784
Certificate serial: 019424B3C75AB18F13A7C45141A7FA475485
Authority key identifier: C9:6C:9E:6D:32:33:E2:C2:41:20:B8:5D:17:17:9C:FB:5D:33:47:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yWyebTIz4sJBILhdFxec-10zR4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/bd9f3c-9a03-420d-8a29-d094dfa364d6/1/VZHF0nE3qVwIIpqdmF6QQh7nLs0.roa
Signing time: Thu 02 Jan 2025 01:49:09 +0000
ROA not before: Thu 02 Jan 2025 01:49:09 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206002
IP address blocks: 185.187.28.0/22 maxlen: 24
2a0b:9380::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:c7:5a:b1:8f:13:a7:c4:51:41:a7:fa:47:54:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c96c9e6d3233e2c24120b85d17179cfb5d334784
Validity
Not Before: Jan 2 01:49:09 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5591c5d27137a95c08229a9d985e90421ee72ecd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:ff:8a:15:da:74:7f:c7:21:66:4a:20:35:58:
2e:c3:db:45:63:0d:a4:bc:70:e1:fa:55:db:b2:e6:
76:6d:06:ba:71:c9:5a:4a:f0:d8:02:22:60:b5:f6:
dc:00:e5:3c:cf:7e:4f:e4:aa:cf:bb:20:75:05:cc:
61:f7:75:1c:bc:56:28:48:b6:b3:7d:37:b0:4f:fb:
68:d3:09:66:d6:43:6b:17:76:51:7e:fd:f5:97:07:
07:84:be:3e:3b:62:c1:13:be:cd:c4:68:6c:cd:0d:
b9:e5:74:3f:76:ae:11:ab:52:70:40:95:ce:d5:44:
fb:bd:f6:db:42:1f:c2:d8:df:b9:b9:f0:1a:25:26:
ad:cb:16:4d:82:10:9d:04:4b:8c:d1:18:06:3e:7b:
1d:20:28:86:d9:0c:28:95:bf:69:5d:99:9f:35:ea:
4a:c3:0d:74:82:98:19:e3:fe:85:81:32:ac:e8:d7:
21:8b:9f:8a:0b:5b:25:ec:39:42:51:df:99:0c:18:
80:ce:67:75:4d:91:9a:4a:a6:a4:b1:ce:8b:f4:b0:
3c:c6:bf:6b:4f:71:01:b7:19:89:6d:de:43:bc:2c:
61:73:9b:67:91:84:ce:7d:bb:c3:c4:0e:70:e7:f1:
1b:e7:f2:d1:cf:de:8c:2d:52:0e:32:43:a7:22:3b:
f5:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:91:C5:D2:71:37:A9:5C:08:22:9A:9D:98:5E:90:42:1E:E7:2E:CD
X509v3 Authority Key Identifier:
keyid:C9:6C:9E:6D:32:33:E2:C2:41:20:B8:5D:17:17:9C:FB:5D:33:47:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yWyebTIz4sJBILhdFxec-10zR4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/bd9f3c-9a03-420d-8a29-d094dfa364d6/1/VZHF0nE3qVwIIpqdmF6QQh7nLs0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/bd9f3c-9a03-420d-8a29-d094dfa364d6/1/yWyebTIz4sJBILhdFxec-10zR4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.187.28.0/22
IPv6:
2a0b:9380::/32
Signature Algorithm: sha256WithRSAEncryption
61:0b:2f:f0:00:6c:60:68:c4:c5:05:af:8a:1d:3b:d8:39:cd:
fa:0d:8e:cf:e5:4e:ac:72:f9:94:6a:68:3a:61:28:8c:51:19:
ff:a8:c7:83:4a:78:8a:23:cd:d5:be:e1:7c:53:fc:aa:85:b9:
53:39:3b:a6:45:8c:06:b9:98:3e:00:0c:6f:b2:28:c8:7f:9f:
9f:08:85:c0:55:c4:52:48:d3:34:22:08:a7:56:1e:e1:17:4f:
15:2e:ed:de:13:11:91:0f:b7:b6:06:fa:ca:b9:35:e1:6b:fc:
c1:f3:a6:83:1a:84:e4:c8:50:6c:48:1a:a2:e3:bc:db:fd:41:
58:8b:da:84:95:c9:38:0b:c5:1a:8e:bd:27:77:11:af:d9:0f:
95:46:b6:e9:8c:76:b2:4f:cd:c9:5d:45:25:34:09:28:df:be:
3b:6a:0f:ed:aa:97:f4:8d:60:1a:1f:09:19:b0:45:75:0e:8e:
f2:1a:23:2d:84:af:8a:94:cb:e4:46:a1:02:84:6e:0f:ba:b6:
f2:34:37:dc:3b:76:df:31:0a:60:2b:23:89:0e:02:dc:3a:c1:
07:d3:61:e0:21:e7:6d:0b:89:a1:5b:b2:52:82:21:12:64:59:
6c:c5:75:62:bc:c3:73:21:74:7c:f5:29:81:69:18:42:42:b1:
92:f1:b7:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:28 2025 by rpki-client on console.sobornost.net