Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/3394e3-736e-4879-b8db-89aaea36285e/1/m9A59YD_iQ9gcB6P9wvDy7HURaE.roa
File: m9A59YD_iQ9gcB6P9wvDy7HURaE.roa (raw, json)
Hash identifier: xHxa/4SQxVjf6efBv8x94ZXWg5P/gKOcvLaNan8ppKU=
Subject key identifier: 9B:D0:39:F5:80:FF:89:0F:60:70:1E:8F:F7:0B:C3:CB:B1:D4:45:A1
Certificate issuer: /CN=e85b83c87c4a3d8315025379f72987520bb5d046
Certificate serial: 018E83BA54DF262238663D968EFA7C951017
Authority key identifier: E8:5B:83:C8:7C:4A:3D:83:15:02:53:79:F7:29:87:52:0B:B5:D0:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6FuDyHxKPYMVAlN59ymHUgu10EY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/3394e3-736e-4879-b8db-89aaea36285e/1/m9A59YD_iQ9gcB6P9wvDy7HURaE.roa
Signing time: Thu 28 Mar 2024 06:23:30 +0000
ROA not before: Thu 28 Mar 2024 06:23:30 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 6830
IP address blocks: 80.255.224.0/20 maxlen: 20
185.7.237.0/24 maxlen: 24
185.7.238.0/24 maxlen: 24
185.7.239.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:83:ba:54:df:26:22:38:66:3d:96:8e:fa:7c:95:10:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e85b83c87c4a3d8315025379f72987520bb5d046
Validity
Not Before: Mar 28 06:23:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9bd039f580ff890f60701e8ff70bc3cbb1d445a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:3c:9b:97:1d:ea:82:f0:9a:73:1c:21:8f:1b:
8b:93:2f:05:3c:b3:2d:c2:3e:c4:d9:3d:2b:d8:39:
04:e7:3c:b0:c9:35:f6:61:9c:4d:14:71:3a:06:e7:
e0:34:31:5b:49:1c:8f:b6:1e:93:80:b8:b5:e0:d3:
0e:ac:5f:b8:68:ed:95:33:dd:7a:75:a7:89:48:21:
6d:2a:73:83:59:0c:99:0e:63:28:f5:12:7b:2e:f1:
ab:f6:78:3f:8d:b3:c0:cc:bd:7d:14:f3:60:12:95:
5a:88:00:ab:72:7a:0e:83:b8:fb:ff:25:b6:9d:82:
27:10:87:f1:f5:1e:f0:48:b6:53:18:eb:7d:3e:db:
00:d6:b0:f5:b4:bd:d3:d7:6d:09:39:6b:fc:e2:89:
20:be:d8:ea:eb:58:f5:81:7a:6f:89:36:6a:e6:f8:
ae:62:51:98:d0:0d:3b:d0:f8:4f:39:f6:1a:e9:4a:
8e:e6:8c:a0:90:84:ea:f4:64:0f:66:eb:1e:2a:06:
e1:f4:2c:ef:4e:ec:e1:bb:eb:1a:08:79:b1:b4:68:
03:5c:07:e0:8b:49:b4:e4:8d:cb:34:63:fd:35:5a:
53:5b:69:3b:2d:ba:5b:f5:2d:31:81:3d:d8:21:e4:
16:26:1d:68:a8:22:2d:f0:32:56:6a:73:cc:34:dc:
6d:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:D0:39:F5:80:FF:89:0F:60:70:1E:8F:F7:0B:C3:CB:B1:D4:45:A1
X509v3 Authority Key Identifier:
keyid:E8:5B:83:C8:7C:4A:3D:83:15:02:53:79:F7:29:87:52:0B:B5:D0:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6FuDyHxKPYMVAlN59ymHUgu10EY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3394e3-736e-4879-b8db-89aaea36285e/1/m9A59YD_iQ9gcB6P9wvDy7HURaE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3394e3-736e-4879-b8db-89aaea36285e/1/6FuDyHxKPYMVAlN59ymHUgu10EY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.255.224.0/20
185.7.237.0-185.7.239.255
Signature Algorithm: sha256WithRSAEncryption
02:b5:ac:f9:61:c1:12:c7:22:a6:59:aa:38:71:dd:14:a1:a4:
1d:15:ed:66:54:8f:df:70:18:04:35:ab:69:c5:27:46:ca:af:
f1:dc:be:4c:65:2d:de:27:ba:f9:8c:08:86:9e:05:cd:95:e0:
bf:d4:14:01:72:85:24:f9:72:23:28:bd:11:94:b4:ce:43:24:
86:78:bd:da:7e:e9:db:f8:12:93:11:ac:78:49:cd:0c:d4:75:
ee:16:44:ef:55:56:d5:56:b9:2b:f3:0c:6e:45:5e:94:5c:de:
ac:79:8f:00:ad:44:ed:6a:53:e2:2c:01:e4:38:06:59:27:1e:
17:b1:0b:6b:e5:a9:79:bc:74:fb:6a:09:93:1f:77:69:66:25:
92:83:04:63:1a:f3:fb:2e:43:32:12:59:f3:52:c5:bc:c8:5b:
1f:3a:68:f4:82:34:a2:24:2b:74:4d:0c:eb:f9:db:ac:83:22:
bc:8e:d2:99:91:42:45:5c:8c:21:7e:e3:4a:3f:6b:ab:01:99:
df:19:2d:3f:34:c9:15:e3:31:3a:b9:7d:6e:a5:d5:18:37:ee:
34:f6:42:83:ea:7d:ec:e0:71:ab:ae:ec:93:c4:08:97:71:24:
08:0c:17:7a:a4:01:94:ca:00:36:8c:63:2e:c5:e8:88:aa:89:
79:46:4d:eb
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Apr 17 23:44:49 2025 by rpki-client