Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/962b3f-fc26-4549-ae02-4d049a1eaf2f/1/1QVk1mwhRced4ZFbCGKb85l3WO0.roa
File: 1QVk1mwhRced4ZFbCGKb85l3WO0.roa (raw, json)
Hash identifier: p8wvog7E7NQyigh9F1XCHiJovkkIhiAPoqiyZJ+4Ha8=
Subject key identifier: D5:05:64:D6:6C:21:45:C7:9D:E1:91:5B:08:62:9B:F3:99:77:58:ED
Certificate issuer: /CN=d9a988916d51406f9a269f30a02d0086b57f4d5a
Certificate serial: 01942067E64021F0EE24A621CAB288379809
Authority key identifier: D9:A9:88:91:6D:51:40:6F:9A:26:9F:30:A0:2D:00:86:B5:7F:4D:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2amIkW1RQG-aJp8woC0AhrV_TVo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/962b3f-fc26-4549-ae02-4d049a1eaf2f/1/1QVk1mwhRced4ZFbCGKb85l3WO0.roa
Signing time: Wed 01 Jan 2025 05:47:47 +0000
ROA not before: Wed 01 Jan 2025 05:47:47 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 56324
IP address blocks: 185.6.28.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:67:e6:40:21:f0:ee:24:a6:21:ca:b2:88:37:98:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9a988916d51406f9a269f30a02d0086b57f4d5a
Validity
Not Before: Jan 1 05:47:47 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d50564d66c2145c79de1915b08629bf3997758ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:3d:dc:5b:4a:d5:9b:45:fc:ad:2c:72:8e:d2:
c6:86:90:fc:02:a4:d6:8b:7f:de:ae:fc:c4:6c:69:
99:9d:a7:bc:04:16:4b:03:19:01:1f:4f:25:d0:a9:
98:3b:32:15:70:0e:09:d3:c5:9d:5d:04:94:8b:ad:
9f:d0:2b:de:39:ee:51:85:de:cd:a4:42:60:65:da:
e9:b2:f0:b8:c5:f9:4a:e5:bb:b0:b0:42:ff:3f:96:
ea:e7:7e:41:be:70:be:c8:9e:ec:de:05:b2:fe:20:
b3:9b:29:27:7e:66:91:61:0f:45:b3:44:69:ca:90:
12:2c:aa:e9:86:a9:2d:18:95:57:69:34:d6:45:17:
f6:c6:81:17:2b:39:4f:45:83:fe:4e:93:28:f9:e5:
9c:4a:8a:f4:3a:06:5b:08:7a:8c:01:43:3c:78:35:
02:bf:46:5d:f3:8a:e7:e3:9c:1c:92:d5:68:58:4b:
55:64:7b:0b:aa:20:44:de:81:34:e5:b8:81:a1:e3:
e1:0b:8e:9d:9e:e2:87:e6:f6:13:9c:29:3d:da:8a:
2b:09:84:c3:df:65:7d:d3:66:85:c3:82:1f:f7:70:
76:07:0a:e1:1d:e1:6e:8e:79:af:37:92:c3:5d:10:
20:ac:c4:f3:c0:67:24:9e:3b:a3:6f:e6:da:f8:b9:
66:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:05:64:D6:6C:21:45:C7:9D:E1:91:5B:08:62:9B:F3:99:77:58:ED
X509v3 Authority Key Identifier:
keyid:D9:A9:88:91:6D:51:40:6F:9A:26:9F:30:A0:2D:00:86:B5:7F:4D:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2amIkW1RQG-aJp8woC0AhrV_TVo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/962b3f-fc26-4549-ae02-4d049a1eaf2f/1/1QVk1mwhRced4ZFbCGKb85l3WO0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/962b3f-fc26-4549-ae02-4d049a1eaf2f/1/2amIkW1RQG-aJp8woC0AhrV_TVo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.6.28.0/23
Signature Algorithm: sha256WithRSAEncryption
55:21:5f:d7:88:f6:90:5b:4a:62:eb:a8:b2:63:ba:81:d1:0f:
30:3a:47:c5:1b:2a:7b:21:f7:6b:1a:8d:1b:3e:4e:82:ab:0a:
80:89:16:0b:97:5e:76:07:1c:e0:94:9d:ed:d1:1b:77:1a:3b:
f5:49:14:2f:61:7a:44:f5:0e:50:7c:99:52:6a:42:7e:e8:1c:
bb:b2:09:1f:55:e7:b0:67:d1:50:cf:28:ee:6e:88:41:2f:69:
ce:29:f3:c0:6e:83:23:9e:1a:ef:ac:ce:29:af:6c:1e:08:bc:
ab:77:76:13:55:32:5f:42:cb:3c:09:dd:7f:d7:47:ab:8c:29:
28:f5:57:4d:eb:d9:a0:3e:69:9d:53:8b:86:55:58:d9:d2:6f:
45:30:8b:82:44:76:44:d7:8e:21:3a:06:64:fb:cc:ab:bc:cb:
43:86:fd:7b:b9:c7:4f:28:2e:db:fa:64:39:54:20:57:85:0f:
3e:fc:fb:2c:99:99:3e:67:13:f3:a4:67:67:47:b3:64:e1:e4:
a5:6a:d8:8f:a9:a1:b5:5d:38:3a:24:50:d3:6a:e6:3e:7b:f1:
fb:f8:33:cf:8f:a1:d3:3e:3c:90:26:38:f5:a7:41:39:dc:8e:
47:c6:b2:c2:8f:4a:59:f9:69:7c:3d:96:0a:70:95:94:f5:c0:
b8:ab:05:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:42 2025 by rpki-client on console.sobornost.net