Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/6b0e0e-8be5-4bf9-b427-70d63107d05d/1/SgrL7DiM5GSLyUl02rPic8LO2xM.roa
File: SgrL7DiM5GSLyUl02rPic8LO2xM.roa (raw, json)
Hash identifier: mfGk2oXMS3Dskm6xFi6bjI6ao91mV5GgJuEh/2dC5PU=
Subject key identifier: 4A:0A:CB:EC:38:8C:E4:64:8B:C9:49:74:DA:B3:E2:73:C2:CE:DB:13
Certificate issuer: /CN=9ce22dca2a2db0a59fe56681c8d1c40677a745b5
Certificate serial: 01941F8C3327E992A6CB1B1E618E9E864B21
Authority key identifier: 9C:E2:2D:CA:2A:2D:B0:A5:9F:E5:66:81:C8:D1:C4:06:77:A7:45:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nOItyiotsKWf5WaByNHEBnenRbU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/6b0e0e-8be5-4bf9-b427-70d63107d05d/1/SgrL7DiM5GSLyUl02rPic8LO2xM.roa
Signing time: Wed 01 Jan 2025 01:47:49 +0000
ROA not before: Wed 01 Jan 2025 01:47:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 47736
IP address blocks: 185.209.96.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:33:27:e9:92:a6:cb:1b:1e:61:8e:9e:86:4b:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9ce22dca2a2db0a59fe56681c8d1c40677a745b5
Validity
Not Before: Jan 1 01:47:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4a0acbec388ce4648bc94974dab3e273c2cedb13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:ba:70:39:96:49:e5:8b:33:7e:e5:de:68:d2:
c5:7f:fd:47:82:67:40:38:1b:de:3c:d3:d4:ef:6d:
58:8e:a5:7d:4b:f0:70:98:dc:94:f6:e4:02:ec:d0:
3e:96:fb:e4:5b:78:b3:50:d4:73:18:a7:bd:df:c8:
1b:8a:62:d1:4b:f4:91:cc:ce:b2:cb:f4:be:42:db:
1a:01:73:c7:8a:ae:51:4a:3b:bc:ff:64:48:67:26:
4a:38:3d:10:b3:fd:fd:8e:41:1d:24:45:ec:0e:da:
91:b4:e0:10:b2:3f:90:d1:80:d9:0d:79:54:f2:cd:
f2:96:6b:5c:bd:80:67:14:57:1e:7e:e5:2b:9f:54:
56:b9:c6:84:62:4f:bb:14:0e:51:6e:47:56:70:72:
65:3f:f9:36:b4:1c:56:b8:2d:4e:66:13:cc:42:93:
d8:06:4c:5d:c0:e0:77:8f:d8:fb:b8:43:8c:4d:fe:
25:a7:da:97:43:99:29:06:80:b7:94:4b:a5:c9:9c:
34:2f:82:77:51:f8:3f:5d:33:f2:1a:40:34:ad:10:
6a:81:d8:c4:99:77:1b:d5:99:ab:de:33:bc:a1:4e:
9f:d9:16:10:39:5e:61:d6:ef:cf:ec:f0:bf:df:2f:
9b:a0:c5:0e:ae:f0:e4:f0:1e:26:22:18:8a:5a:2e:
6e:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:0A:CB:EC:38:8C:E4:64:8B:C9:49:74:DA:B3:E2:73:C2:CE:DB:13
X509v3 Authority Key Identifier:
keyid:9C:E2:2D:CA:2A:2D:B0:A5:9F:E5:66:81:C8:D1:C4:06:77:A7:45:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nOItyiotsKWf5WaByNHEBnenRbU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/6b0e0e-8be5-4bf9-b427-70d63107d05d/1/SgrL7DiM5GSLyUl02rPic8LO2xM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/6b0e0e-8be5-4bf9-b427-70d63107d05d/1/nOItyiotsKWf5WaByNHEBnenRbU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.209.96.0/22
Signature Algorithm: sha256WithRSAEncryption
ab:09:8f:17:4b:3d:27:2e:f6:a4:43:18:96:32:be:a4:9f:ee:
f8:f5:44:9b:27:64:2d:1d:2d:3b:1c:32:8d:79:0b:c4:fb:b5:
f1:ff:d8:47:43:be:5a:4f:4e:0d:95:38:d9:2f:82:09:67:8d:
2e:79:8e:d1:34:e7:36:29:9e:4d:3e:f6:94:c0:28:38:3e:f2:
7f:87:2c:b5:1f:0b:d0:78:86:bc:2b:90:d5:32:3d:19:4a:ef:
c0:e9:62:2b:1c:a9:9d:0c:43:bb:59:56:2d:38:76:b1:30:61:
33:57:90:93:c2:2a:9a:81:55:88:7f:7e:03:64:7d:3a:24:07:
9b:3f:55:45:5b:bd:8a:da:fe:19:17:23:19:6d:84:65:9f:05:
89:68:3e:1f:2d:48:69:e8:5c:4b:84:7a:61:de:43:f6:13:0f:
48:b1:14:0f:c6:5d:d3:11:97:64:e2:fe:ae:00:cc:e1:84:11:
a5:84:ec:de:cc:66:e3:62:17:d8:ff:65:f9:72:8d:5b:b2:51:
f8:8e:7f:4a:c5:57:d9:3c:35:bd:b2:86:32:bd:3e:45:ed:ea:
4b:b4:de:df:75:bd:bb:97:8b:25:a6:9c:a4:b2:29:7b:7b:95:
12:12:da:1d:cc:ef:8f:e8:af:52:8a:12:63:40:15:85:81:2c:
aa:26:c0:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:33 2025 by rpki-client on console.sobornost.net