Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/1bb1a2-6763-4b24-ad88-06413ceefce0/1/FSVMQ4pJCPFoKLSJXQ6SN5sd20I.roa
File: FSVMQ4pJCPFoKLSJXQ6SN5sd20I.roa (raw, json)
Hash identifier: fn+/BnxEhFcy9tBiYyHkUVxuspdk8dmiFltXF8v88aI=
Subject key identifier: 15:25:4C:43:8A:49:08:F1:68:28:B4:89:5D:0E:92:37:9B:1D:DB:42
Certificate issuer: /CN=f08fba5263519b7c3a2155c69878217776defba0
Certificate serial: 019421B2339BA2A8746BCD79B5C2CCF16FD8
Authority key identifier: F0:8F:BA:52:63:51:9B:7C:3A:21:55:C6:98:78:21:77:76:DE:FB:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8I-6UmNRm3w6IVXGmHghd3be-6A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/1bb1a2-6763-4b24-ad88-06413ceefce0/1/FSVMQ4pJCPFoKLSJXQ6SN5sd20I.roa
Signing time: Wed 01 Jan 2025 11:48:34 +0000
ROA not before: Wed 01 Jan 2025 11:48:34 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 205578
IP address blocks: 185.12.220.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b2:33:9b:a2:a8:74:6b:cd:79:b5:c2:cc:f1:6f:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f08fba5263519b7c3a2155c69878217776defba0
Validity
Not Before: Jan 1 11:48:34 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=15254c438a4908f16828b4895d0e92379b1ddb42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:18:6c:ad:05:9f:ce:52:3a:54:34:4d:0c:9d:
56:85:2b:02:18:0a:75:79:2c:26:af:3f:81:83:b8:
f1:a9:55:42:97:ac:92:c6:b8:db:2a:57:35:dd:fb:
cd:0d:93:8f:30:20:8b:02:8f:61:ec:27:28:db:b3:
4a:b5:a8:aa:89:51:66:d5:bb:43:40:86:75:b3:54:
de:55:b0:dd:63:3f:c7:ca:5a:f5:ac:a2:db:1e:ab:
e9:9d:72:10:7d:4f:66:44:f6:ef:d2:b9:a8:54:39:
ef:a4:1c:8e:28:b4:3a:c4:9e:f7:25:2f:7b:72:fa:
0c:f6:f0:7b:4f:a4:9c:fc:6c:0d:4c:2c:6e:07:5b:
39:08:60:1a:c9:02:c2:30:f5:d3:54:8a:6e:95:35:
b1:3a:72:5b:d9:bf:dd:87:70:4d:12:4d:a7:45:43:
a9:88:18:35:fd:81:68:b0:97:31:3b:59:c2:0f:1c:
3b:46:d6:ca:27:b9:17:53:9b:b1:75:43:fd:f5:7a:
0d:c4:f9:2b:a5:7f:4a:03:f3:5f:eb:42:21:69:d0:
2c:32:21:66:75:e1:b7:2e:38:3c:c8:94:0e:d5:92:
3b:b7:fa:ea:30:fe:70:53:0a:81:a0:32:10:ac:3b:
16:a3:f2:8f:5c:86:d0:c9:e5:2b:cc:f2:01:d2:12:
76:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:25:4C:43:8A:49:08:F1:68:28:B4:89:5D:0E:92:37:9B:1D:DB:42
X509v3 Authority Key Identifier:
keyid:F0:8F:BA:52:63:51:9B:7C:3A:21:55:C6:98:78:21:77:76:DE:FB:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8I-6UmNRm3w6IVXGmHghd3be-6A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/1bb1a2-6763-4b24-ad88-06413ceefce0/1/FSVMQ4pJCPFoKLSJXQ6SN5sd20I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/1bb1a2-6763-4b24-ad88-06413ceefce0/1/8I-6UmNRm3w6IVXGmHghd3be-6A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.12.220.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:11:ab:f8:b7:04:7f:68:9e:2d:4e:be:41:51:fc:e4:27:eb:
52:7c:d8:a9:c1:f3:97:af:9a:ea:e7:f1:a2:45:a1:05:12:0c:
f1:d9:10:0a:af:56:5a:0f:47:1d:03:dc:ab:b9:98:36:47:da:
64:b3:d2:be:50:3f:ea:05:be:7c:84:25:0e:f8:a8:ec:dd:20:
1e:f8:4e:04:a6:39:e0:98:fb:b0:25:94:3b:80:d1:27:7f:6a:
89:49:df:f5:30:10:ce:08:bb:ec:92:2f:03:9f:cd:00:ed:0e:
b2:55:3d:1b:40:99:9d:80:2f:e1:26:5a:e8:15:96:59:fa:d3:
8e:d6:7b:a0:b7:c4:56:41:f1:aa:73:37:90:11:3f:2b:0a:5a:
f5:a0:e8:16:1e:20:ba:cd:3f:2d:55:5c:9f:f7:b4:cf:e1:15:
85:64:94:21:e9:37:fe:ea:23:5b:d4:90:70:c6:28:00:99:c3:
bd:a6:0c:25:f0:67:29:2d:7f:2d:54:b5:18:c8:05:b4:fd:32:
5c:aa:2b:72:6c:83:e2:f4:e4:ca:c4:de:1f:50:b2:da:64:a4:
d1:2c:45:93:86:2f:d1:a9:80:28:6c:ff:73:07:b4:45:8c:b3:
99:7c:83:12:ea:b6:4b:de:50:8c:1e:b5:00:15:90:75:d2:46:
ec:07:a3:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:31 2025 by rpki-client on console.sobornost.net