Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/81a672-fe98-4d3f-9b83-2cb7a3b6e42f/1/siHg6lFmHbPgHoNeW2SywiubJmo.roa
File: siHg6lFmHbPgHoNeW2SywiubJmo.roa (raw, json)
Hash identifier: kskpJxlnZ+nR3C+TNiBxn+yry8UEOs9uLt7Ezmifj5s=
Subject key identifier: B2:21:E0:EA:51:66:1D:B3:E0:1E:83:5E:5B:64:B2:C2:2B:9B:26:6A
Certificate issuer: /CN=7fe3d63b4a5b404b5ff83cbf2b1525a30477f65c
Certificate serial: 019423D6D64EADB32F8A60E96CCEBECDB09A
Authority key identifier: 7F:E3:D6:3B:4A:5B:40:4B:5F:F8:3C:BF:2B:15:25:A3:04:77:F6:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f-PWO0pbQEtf-Dy_KxUlowR39lw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/81a672-fe98-4d3f-9b83-2cb7a3b6e42f/1/siHg6lFmHbPgHoNeW2SywiubJmo.roa
Signing time: Wed 01 Jan 2025 21:47:49 +0000
ROA not before: Wed 01 Jan 2025 21:47:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44684
IP address blocks: 185.33.27.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d6:d6:4e:ad:b3:2f:8a:60:e9:6c:ce:be:cd:b0:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7fe3d63b4a5b404b5ff83cbf2b1525a30477f65c
Validity
Not Before: Jan 1 21:47:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b221e0ea51661db3e01e835e5b64b2c22b9b266a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:47:1a:79:66:d6:9e:d7:16:69:ff:2d:33:07:
fc:b1:35:42:b7:82:9e:88:70:f3:37:2d:c7:c2:1f:
13:36:da:f6:88:ae:bd:8c:9f:28:41:ce:5c:da:8b:
fc:f7:b7:ab:60:2e:ed:90:f6:75:16:15:72:e2:0a:
16:88:6e:4e:e0:e8:1d:cf:2e:31:c2:81:c3:a0:13:
72:3e:fb:d5:36:16:5f:1d:36:24:30:c8:db:27:1e:
7e:75:52:11:d4:23:59:b9:0a:eb:2f:e0:0e:65:0a:
da:2b:c7:7f:2a:37:c1:24:9c:9d:ab:f2:42:87:60:
37:62:51:cb:e6:c6:af:06:9f:08:d5:af:0d:ea:a3:
07:d5:75:e1:6f:e6:91:29:38:db:b1:af:3d:36:9c:
9e:6b:d6:6d:ef:b4:83:ed:10:e1:5c:44:60:62:b2:
fa:81:2f:8a:eb:64:f6:83:0c:54:18:96:1b:ac:31:
eb:a3:89:68:4c:14:4d:21:a3:6f:4d:23:fc:84:00:
d7:e7:d1:74:24:21:2d:74:60:fb:3c:6b:91:19:22:
65:e0:3f:ed:1a:05:d2:22:c2:68:a7:d3:85:7c:f2:
23:81:75:fe:cf:8f:73:2f:d3:2c:30:9f:c5:c5:77:
f6:cb:dd:b2:a9:73:48:bd:ca:c5:be:7f:76:3c:62:
1b:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:21:E0:EA:51:66:1D:B3:E0:1E:83:5E:5B:64:B2:C2:2B:9B:26:6A
X509v3 Authority Key Identifier:
keyid:7F:E3:D6:3B:4A:5B:40:4B:5F:F8:3C:BF:2B:15:25:A3:04:77:F6:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f-PWO0pbQEtf-Dy_KxUlowR39lw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/81a672-fe98-4d3f-9b83-2cb7a3b6e42f/1/siHg6lFmHbPgHoNeW2SywiubJmo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/81a672-fe98-4d3f-9b83-2cb7a3b6e42f/1/f-PWO0pbQEtf-Dy_KxUlowR39lw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.33.27.0/24
Signature Algorithm: sha256WithRSAEncryption
47:c2:da:b6:3e:77:84:f8:4f:6f:60:47:c7:66:94:e2:f6:49:
78:a5:18:8d:10:d3:75:c5:1c:05:b6:25:44:93:80:1c:48:f3:
f0:4e:6e:b8:dd:6a:4e:ee:c9:e2:5e:ed:7e:2f:62:b0:8c:80:
92:11:61:09:b5:80:ed:e7:03:b6:d6:d6:ff:13:b4:6f:94:83:
b6:19:d5:d2:99:65:ae:f3:3a:1e:37:77:38:ea:0e:c4:c7:40:
a0:47:85:6d:3f:87:4b:71:6f:c7:e1:bf:fb:c8:46:ba:87:98:
09:5f:b3:9d:fa:fa:eb:f8:e2:2b:93:b2:3f:6e:02:04:7f:17:
d1:e0:a8:21:8f:da:27:fa:d3:40:35:8a:3a:a8:89:ae:38:66:
45:37:49:f5:a8:5b:6f:25:8d:4c:5a:d0:3d:e0:9c:ac:14:89:
be:19:cb:4d:81:35:1e:35:92:e2:aa:8f:d7:47:07:9b:b5:45:
a8:3a:59:93:62:dd:bc:81:86:89:eb:bf:97:0e:13:9d:6e:0c:
ab:ce:e2:30:d8:07:ae:cb:20:6e:ce:2e:56:5c:1d:31:ff:85:
0e:b8:0d:80:42:73:7a:ad:ac:a7:f6:b6:a4:a3:ec:66:ab:43:
74:3a:9f:8a:16:8e:7d:62:50:9b:e7:6a:ac:a6:4f:f5:2a:67:
ed:e4:27:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:48 2025 by rpki-client on console.sobornost.net