Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/cd4798-b7b7-4b66-948a-bf71449d97dd/1/nP0sRhZHCL86Iv0j3SDGQv7wJ1s.roa
File: nP0sRhZHCL86Iv0j3SDGQv7wJ1s.roa (raw, json)
Hash identifier: 1vLkNr3Sn/sdaJf6eykh/ZGw0jccrm4CGLqN9g8GoFs=
Subject key identifier: 9C:FD:2C:46:16:47:08:BF:3A:22:FD:23:DD:20:C6:42:FE:F0:27:5B
Certificate issuer: /CN=5dcc2f7d790a8300a7dd3519e0fb887fa4de0260
Certificate serial: 019425FC4810D18DBB580F7B4B444FFAA895
Authority key identifier: 5D:CC:2F:7D:79:0A:83:00:A7:DD:35:19:E0:FB:88:7F:A4:DE:02:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XcwvfXkKgwCn3TUZ4PuIf6TeAmA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/cd4798-b7b7-4b66-948a-bf71449d97dd/1/nP0sRhZHCL86Iv0j3SDGQv7wJ1s.roa
Signing time: Thu 02 Jan 2025 07:47:58 +0000
ROA not before: Thu 02 Jan 2025 07:47:58 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 6789
IP address blocks: 185.166.72.0/22 maxlen: 24
193.37.134.0/24 maxlen: 24
193.37.155.0/24 maxlen: 24
193.37.224.0/24 maxlen: 24
193.37.229.0/24 maxlen: 24
194.247.33.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fc:48:10:d1:8d:bb:58:0f:7b:4b:44:4f:fa:a8:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dcc2f7d790a8300a7dd3519e0fb887fa4de0260
Validity
Not Before: Jan 2 07:47:58 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9cfd2c46164708bf3a22fd23dd20c642fef0275b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:ff:68:12:e9:6d:58:23:a5:78:93:eb:b5:86:
50:3f:23:42:7f:94:a5:b5:dc:a4:3e:b9:db:18:43:
3f:a6:7b:40:05:ae:d1:7c:4a:87:86:73:b0:19:67:
31:6e:a0:a2:15:f8:09:67:84:78:ab:b9:5d:c1:5a:
3d:43:74:ba:04:eb:8a:50:6d:40:46:42:be:19:e6:
2b:23:1f:0d:7b:b9:1d:ab:1c:b2:6f:73:50:3d:30:
3d:63:30:28:12:be:4f:32:16:bd:26:f8:2e:b4:68:
cd:1b:44:9c:8f:b7:7f:d4:fb:cc:6b:f2:95:47:e8:
00:1f:0e:3f:6e:e6:ab:67:03:c9:96:dc:be:ec:a3:
39:29:af:6a:d2:11:0a:96:82:9c:e1:51:83:30:3b:
1e:8e:b3:5b:94:3a:0f:d7:38:fa:97:07:bb:eb:ec:
5b:a2:7a:5a:bd:5b:6e:60:cc:6b:c2:6d:3b:b1:68:
13:1f:af:6f:ba:06:9f:6c:93:7e:9a:ac:88:ed:e7:
fe:fd:2d:3a:99:4b:5d:da:95:45:89:bf:e6:52:4e:
28:37:6d:f4:a8:ae:35:bd:4e:a3:60:b1:09:6f:d7:
06:26:56:6b:a8:6a:3a:7c:57:aa:bf:8e:5b:61:ae:
18:ae:2d:32:af:2e:c4:22:fe:ed:dc:6c:8c:1a:7e:
bc:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:FD:2C:46:16:47:08:BF:3A:22:FD:23:DD:20:C6:42:FE:F0:27:5B
X509v3 Authority Key Identifier:
keyid:5D:CC:2F:7D:79:0A:83:00:A7:DD:35:19:E0:FB:88:7F:A4:DE:02:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XcwvfXkKgwCn3TUZ4PuIf6TeAmA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/cd4798-b7b7-4b66-948a-bf71449d97dd/1/nP0sRhZHCL86Iv0j3SDGQv7wJ1s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/cd4798-b7b7-4b66-948a-bf71449d97dd/1/XcwvfXkKgwCn3TUZ4PuIf6TeAmA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.166.72.0/22
193.37.134.0/24
193.37.155.0/24
193.37.224.0/24
193.37.229.0/24
194.247.33.0/24
Signature Algorithm: sha256WithRSAEncryption
66:6f:ba:55:ee:5f:2c:c1:34:ae:7e:dc:8e:c8:76:43:2b:a5:
f4:c0:99:de:1d:c2:f3:db:ed:78:1b:f3:0d:a0:52:a1:95:b4:
5d:19:ce:b6:eb:2b:3c:d0:f1:34:03:10:d9:36:78:e9:66:0b:
bc:3b:63:5b:82:30:ec:87:a9:d5:59:58:6f:f3:47:3c:ea:13:
70:fa:71:32:c4:9b:47:cb:66:f0:71:d4:10:af:52:01:90:82:
88:db:b3:a3:a2:c6:db:78:75:0f:07:36:fb:df:0f:47:1d:6b:
2d:e2:a3:51:1d:01:ac:27:75:01:fa:e3:ec:dd:ea:a3:86:ce:
d2:bf:99:4f:b3:3c:94:9b:95:c9:c3:e9:6b:b6:3f:f0:0d:74:
65:01:be:22:fa:f0:7a:18:2f:e1:5f:49:7b:6c:9a:ba:ab:c7:
b4:13:40:1c:cd:3b:32:0e:19:04:0b:7e:a0:f3:88:70:30:f0:
80:c4:17:80:ed:03:37:ae:d8:dd:31:2a:95:71:56:9f:72:98:
5a:34:67:fe:e5:ec:86:10:c8:ac:f6:72:b4:ff:dd:68:c8:ac:
01:b5:27:09:db:31:a1:dd:91:a6:9a:05:72:6b:06:10:1a:16:
24:9f:d7:45:07:c6:ae:dc:d4:2f:56:b4:b6:82:61:9d:87:5c:
a5:17:b9:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:33 2025 by rpki-client on console.sobornost.net