Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/d8c99c-e0c8-4c1a-81fb-900d1ca32d7e/1/nPeojOrbaPs45UMM5xBsx67HUyw.roa
File: nPeojOrbaPs45UMM5xBsx67HUyw.roa (raw, json)
Hash identifier: I+r6NKoTQ/LaZOROIxMVJyc2C7XDOY211tQjVI17x0w=
Subject key identifier: 9C:F7:A8:8C:EA:DB:68:FB:38:E5:43:0C:E7:10:6C:C7:AE:C7:53:2C
Certificate issuer: /CN=f360c78b1d462d6bafdf7359d3c233ddbf929d31
Certificate serial: 01942823BA8FA84994C9AA36AB569A0623A5
Authority key identifier: F3:60:C7:8B:1D:46:2D:6B:AF:DF:73:59:D3:C2:33:DD:BF:92:9D:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/82DHix1GLWuv33NZ08Iz3b-SnTE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/d8c99c-e0c8-4c1a-81fb-900d1ca32d7e/1/nPeojOrbaPs45UMM5xBsx67HUyw.roa
Signing time: Thu 02 Jan 2025 17:50:17 +0000
ROA not before: Thu 02 Jan 2025 17:50:17 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48393
IP address blocks: 185.184.40.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:23:ba:8f:a8:49:94:c9:aa:36:ab:56:9a:06:23:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f360c78b1d462d6bafdf7359d3c233ddbf929d31
Validity
Not Before: Jan 2 17:50:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9cf7a88ceadb68fb38e5430ce7106cc7aec7532c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:e1:57:79:ff:64:79:e6:4a:d0:a1:9d:80:70:
3f:c0:cc:b1:12:1b:c6:98:27:03:1e:44:7f:7d:3b:
13:82:ec:be:bb:ed:ee:b5:37:75:c5:14:e2:94:98:
1c:92:0b:fa:f4:b1:df:06:c1:4a:2a:e9:54:2d:3e:
76:ca:91:36:81:9b:d9:61:87:4e:56:ef:fe:49:db:
56:62:56:04:e4:95:33:ef:cf:d7:a1:67:49:e5:91:
f4:d0:43:40:10:b3:ef:8f:1e:fb:24:10:18:c3:cd:
c2:5e:d0:28:91:1f:a8:4a:c5:24:57:bd:eb:a0:e8:
c6:e3:12:c9:3f:ae:7a:62:21:ba:e8:b8:ee:6d:03:
fb:84:73:0b:75:20:24:b5:ea:fc:ba:e2:df:2a:db:
fc:36:64:d0:02:d3:c3:79:a3:c0:b1:de:7b:af:e3:
08:fa:62:91:dd:45:9d:4d:55:d8:24:ae:59:1e:fe:
8e:8d:3c:df:f8:7b:98:2b:21:25:5f:ff:9b:a5:8f:
b3:4d:0d:07:7c:4c:a1:f4:06:27:2f:26:27:3d:a0:
30:74:d1:e1:1e:b7:56:81:37:5a:b1:26:b3:88:bc:
41:4c:1c:2b:a4:91:0b:b0:aa:89:9a:7d:a5:a6:1f:
8d:ef:1e:42:ee:fc:1f:26:43:8b:01:78:98:95:63:
3d:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:F7:A8:8C:EA:DB:68:FB:38:E5:43:0C:E7:10:6C:C7:AE:C7:53:2C
X509v3 Authority Key Identifier:
keyid:F3:60:C7:8B:1D:46:2D:6B:AF:DF:73:59:D3:C2:33:DD:BF:92:9D:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/82DHix1GLWuv33NZ08Iz3b-SnTE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/d8c99c-e0c8-4c1a-81fb-900d1ca32d7e/1/nPeojOrbaPs45UMM5xBsx67HUyw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/d8c99c-e0c8-4c1a-81fb-900d1ca32d7e/1/82DHix1GLWuv33NZ08Iz3b-SnTE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.184.40.0/24
Signature Algorithm: sha256WithRSAEncryption
d1:a7:70:ad:85:03:be:ac:b8:10:d6:2d:58:3f:d7:54:a5:c6:
0c:6a:22:70:bc:48:6f:71:a7:16:04:31:99:18:7e:ba:f4:b1:
26:e1:0b:8d:b1:47:f7:52:42:8b:b8:21:29:c4:dc:4d:05:b8:
b1:93:1a:93:38:3b:5d:c8:b3:82:b8:d9:52:97:2e:b2:e7:ab:
23:92:8d:20:bf:1a:df:71:bd:95:3e:e4:0e:cf:0e:5a:57:b8:
00:27:a5:5a:88:ef:fe:40:f4:f6:29:c7:fc:76:5f:fd:40:61:
45:f5:dc:0d:c6:6c:96:b3:08:17:80:28:2c:c0:a0:04:9a:1d:
17:de:ff:51:27:8c:f6:44:c4:ec:8b:c2:09:ce:67:4b:da:16:
4b:cb:a2:03:1a:f9:89:dd:17:4f:41:b0:37:ad:64:41:8e:8d:
61:66:ec:de:6e:74:12:7a:b9:91:38:9b:a0:74:3c:e3:d9:6d:
1a:f7:a2:6d:36:b0:89:91:c3:82:dc:00:44:ff:0d:a1:0e:2e:
30:13:54:a5:bc:db:6d:fa:74:6c:c8:5e:6d:f4:82:80:53:0e:
5a:10:4b:0b:e8:ac:c1:23:52:ac:38:3c:71:0b:f0:73:c0:f3:
3f:01:25:64:e1:c1:a5:ac:6f:c9:e6:2e:9a:73:fb:c9:b2:b4:
88:90:69:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:47 2025 by rpki-client on console.sobornost.net