Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/7b997b-bea6-4891-95d1-94c6f744de46/1/goWXgCcrT8sdpWvs98SjkshS1QQ.roa
File: goWXgCcrT8sdpWvs98SjkshS1QQ.roa (raw, json)
Hash identifier: pL/QBtJXrUgZbyv/2j+3PUPuF0UtD1Pg09swJJxayTU=
Subject key identifier: 82:85:97:80:27:2B:4F:CB:1D:A5:6B:EC:F7:C4:A3:92:C8:52:D5:04
Certificate issuer: /CN=f4897fdbdc7d2508dfcd14cff600ad43b927924b
Certificate serial: 019421B1D475959221D483B363609F6C29B5
Authority key identifier: F4:89:7F:DB:DC:7D:25:08:DF:CD:14:CF:F6:00:AD:43:B9:27:92:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9Il_29x9JQjfzRTP9gCtQ7knkks.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/7b997b-bea6-4891-95d1-94c6f744de46/1/goWXgCcrT8sdpWvs98SjkshS1QQ.roa
Signing time: Wed 01 Jan 2025 11:48:09 +0000
ROA not before: Wed 01 Jan 2025 11:48:09 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 201841
IP address blocks: 185.63.156.0/24 maxlen: 24
185.63.157.0/24 maxlen: 24
185.63.158.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b1:d4:75:95:92:21:d4:83:b3:63:60:9f:6c:29:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4897fdbdc7d2508dfcd14cff600ad43b927924b
Validity
Not Before: Jan 1 11:48:09 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=82859780272b4fcb1da56becf7c4a392c852d504
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:1e:54:ff:8a:9f:42:70:f4:51:0d:e1:29:e2:
62:6d:9f:b8:d0:81:64:5b:4d:94:30:6f:20:09:39:
9a:15:42:e8:58:90:32:99:87:8c:61:8b:ad:64:e7:
40:40:bb:55:60:f0:4a:13:da:1d:5b:f2:f0:a5:b2:
18:e1:db:29:8f:d8:0b:92:a8:1d:2c:4c:2a:f6:e3:
33:e0:95:15:4d:11:34:e6:5d:9a:d5:3b:04:ef:bc:
54:b7:23:c1:30:a5:58:e1:cb:32:40:06:96:0d:59:
6c:dc:c9:80:86:be:4f:73:c0:27:a4:60:ce:f8:39:
23:66:e1:3b:21:58:33:d1:4a:57:34:45:c3:47:6b:
11:20:fe:9f:69:72:33:b5:b9:23:df:8b:9a:0e:d6:
9a:7b:0e:4d:bf:f6:3f:fd:80:8d:c2:19:ae:66:cf:
26:02:fe:45:89:ca:d2:32:03:b1:bf:0a:a2:6e:4d:
84:75:f5:a7:c8:dc:fe:39:22:16:56:39:d5:3e:0c:
30:0e:0c:00:60:46:a4:5f:8d:94:ca:0c:cb:f4:06:
ab:63:c2:49:04:03:04:4f:a1:d1:53:0c:26:c1:d1:
75:ac:48:ac:d3:54:56:f6:74:e5:1e:b9:7f:4d:5e:
4f:f3:0c:38:bb:3d:a1:c9:9d:e8:17:3a:3b:ae:11:
f7:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:85:97:80:27:2B:4F:CB:1D:A5:6B:EC:F7:C4:A3:92:C8:52:D5:04
X509v3 Authority Key Identifier:
keyid:F4:89:7F:DB:DC:7D:25:08:DF:CD:14:CF:F6:00:AD:43:B9:27:92:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9Il_29x9JQjfzRTP9gCtQ7knkks.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/7b997b-bea6-4891-95d1-94c6f744de46/1/goWXgCcrT8sdpWvs98SjkshS1QQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/7b997b-bea6-4891-95d1-94c6f744de46/1/9Il_29x9JQjfzRTP9gCtQ7knkks.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.63.156.0/22
Signature Algorithm: sha256WithRSAEncryption
31:9f:4d:2b:c7:38:84:ee:c6:a5:c4:bf:25:81:e8:1d:da:3f:
39:01:4a:8c:24:12:13:4b:1f:c9:14:ba:8d:b4:64:71:d8:cd:
49:65:28:8c:1e:f6:16:db:06:55:8a:c6:36:de:84:40:da:ce:
21:73:74:fa:de:be:a3:ff:a9:42:e2:a7:05:96:5f:aa:eb:e9:
56:9f:ef:3d:72:80:4c:d3:2e:ce:e1:ff:f3:f0:c7:21:b3:6b:
80:0e:b6:71:59:6b:af:e2:8d:b5:88:65:e4:cc:87:cb:90:e5:
53:55:b5:1e:c6:95:c0:e7:9b:60:7e:46:73:bb:17:e1:f1:6c:
34:56:a9:32:01:8d:a5:b7:30:49:d7:e8:80:8e:b0:0e:ad:5f:
22:3c:b1:86:8a:36:91:95:d9:4d:96:da:e7:db:79:87:75:0c:
4f:b5:a9:d1:ad:93:f5:b7:27:75:e9:a1:b7:6a:72:e5:c9:f6:
38:50:2d:13:19:af:9a:84:b6:62:86:b2:ad:6b:44:76:fb:cc:
48:a1:8e:71:46:1c:32:93:58:e4:5d:b9:80:d5:6c:82:75:73:
20:17:38:af:f9:b4:6b:8f:d3:a2:40:0d:8d:c3:49:d8:66:e0:
09:87:04:3d:27:0d:d7:19:8e:28:41:7c:29:83:6d:b7:9a:64:
f0:c8:73:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:47 2025 by rpki-client on console.sobornost.net