Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/779d7c-7564-4960-98c1-5f6ee58d9c8b/1/8A8y9WDWLQcj74J5-U2GMd5jcTA.roa
File: 8A8y9WDWLQcj74J5-U2GMd5jcTA.roa (raw, json)
Hash identifier: gPjwDghxURyEGzwpFw/rRUulL8EarCMywzfByHD+L6E=
Subject key identifier: F0:0F:32:F5:60:D6:2D:07:23:EF:82:79:F9:4D:86:31:DE:63:71:30
Certificate issuer: /CN=3cb78128b79ca91ab624ba8325dfced94f64469a
Certificate serial: 01941F8C2F10D094BEAD7CB68E6A305B6B37
Authority key identifier: 3C:B7:81:28:B7:9C:A9:1A:B6:24:BA:83:25:DF:CE:D9:4F:64:46:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PLeBKLecqRq2JLqDJd_O2U9kRpo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/779d7c-7564-4960-98c1-5f6ee58d9c8b/1/8A8y9WDWLQcj74J5-U2GMd5jcTA.roa
Signing time: Wed 01 Jan 2025 01:47:48 +0000
ROA not before: Wed 01 Jan 2025 01:47:48 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 12703
IP address blocks: 185.71.100.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:2f:10:d0:94:be:ad:7c:b6:8e:6a:30:5b:6b:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3cb78128b79ca91ab624ba8325dfced94f64469a
Validity
Not Before: Jan 1 01:47:48 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f00f32f560d62d0723ef8279f94d8631de637130
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:26:69:78:01:40:47:c2:4f:16:1a:17:ad:55:
97:72:25:c5:e2:b0:68:7b:af:82:78:13:4e:04:f8:
99:67:bf:69:47:91:ce:75:7b:aa:1e:b3:4c:78:7a:
a4:cf:19:1f:c5:42:fd:f4:de:84:bb:5a:e1:c5:08:
41:1c:a2:36:2a:8b:74:ab:24:7e:3a:98:07:94:d0:
5c:90:ed:80:f1:f2:7a:93:fc:55:ee:60:5e:0a:f1:
dd:70:d9:d1:51:b1:60:3d:45:7d:d5:f7:f3:55:2f:
1f:53:14:1b:59:1c:9c:5a:52:2c:cb:06:7f:4d:a9:
7e:61:8c:cf:c0:ff:e4:c0:6a:c7:61:43:09:14:9c:
5b:67:d6:84:d1:f6:e2:28:89:8d:02:a7:46:8f:72:
40:3b:68:d4:3f:0e:5e:b1:ad:81:89:56:b2:d5:18:
f4:7b:20:0f:66:7f:85:3e:ea:19:08:f3:5b:90:01:
d3:5a:09:d7:14:9b:7e:d0:51:ce:19:2c:d1:13:c0:
76:bf:b4:95:09:95:47:d1:94:19:34:0a:e1:0f:dc:
d9:59:e9:03:d8:57:27:da:f3:75:78:93:f8:11:ec:
73:d8:cb:05:74:7a:de:88:25:37:9c:37:46:55:76:
46:c4:72:f4:51:8a:aa:b1:46:86:76:37:08:fd:ff:
3b:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:0F:32:F5:60:D6:2D:07:23:EF:82:79:F9:4D:86:31:DE:63:71:30
X509v3 Authority Key Identifier:
keyid:3C:B7:81:28:B7:9C:A9:1A:B6:24:BA:83:25:DF:CE:D9:4F:64:46:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PLeBKLecqRq2JLqDJd_O2U9kRpo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/779d7c-7564-4960-98c1-5f6ee58d9c8b/1/8A8y9WDWLQcj74J5-U2GMd5jcTA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/779d7c-7564-4960-98c1-5f6ee58d9c8b/1/PLeBKLecqRq2JLqDJd_O2U9kRpo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.71.100.0/22
Signature Algorithm: sha256WithRSAEncryption
7a:27:7c:2f:22:de:67:1e:b0:a0:10:90:b7:74:20:54:2a:5e:
1f:95:f7:4c:52:79:2a:77:72:79:55:87:b4:ba:f5:11:7c:3c:
8b:c2:62:9f:ab:ed:e9:ea:43:08:38:0b:81:d2:b0:79:04:13:
6c:62:25:21:42:36:e8:4c:03:2e:d9:ca:13:13:5c:c0:18:f0:
7a:67:9c:a9:04:19:5a:23:a8:72:19:02:e1:f4:b9:35:89:f8:
eb:1c:d2:35:0c:96:4e:fd:f2:41:ec:8d:fb:03:cd:39:30:12:
57:a2:c3:f6:bf:64:7c:4d:5a:ca:36:f9:fe:23:3e:44:8c:72:
f7:e6:df:2b:68:21:a0:83:75:b3:55:e1:61:b4:40:10:52:57:
7d:39:a2:3a:88:78:f3:4a:9e:2f:ca:4d:ae:c5:ad:4d:a9:42:
9a:fb:45:72:cf:c0:6f:da:36:77:06:f8:cb:ab:bc:48:14:e9:
99:9c:42:ac:c5:b8:fe:32:69:ab:80:b1:2f:dc:bb:79:60:30:
c8:cc:ae:2d:fd:7c:b3:24:a8:d7:2c:ac:2b:b5:2d:ca:89:22:
58:fa:9e:89:29:fe:25:43:26:90:4c:53:1d:14:90:a5:64:66:
7e:4a:1f:84:0f:d6:34:41:e8:8d:8e:5d:d1:c5:5f:ea:32:8e:
73:8d:26:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:41 2025 by rpki-client on console.sobornost.net