Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/87a00a-b6f6-4721-a828-d9337db39d1f/1/B6CARfPCfS2O9gV-oDteNt53Dtk.roa
File: B6CARfPCfS2O9gV-oDteNt53Dtk.roa (raw, json)
Hash identifier: w3cZFbgUbwVt1NYVOa6imysKS/DraI2dYtokXEjpgTI=
Subject key identifier: 07:A0:80:45:F3:C2:7D:2D:8E:F6:05:7E:A0:3B:5E:36:DE:77:0E:D9
Certificate issuer: /CN=7554ac4c7f451c5bb9382fbcd46d70c4c0f9de56
Certificate serial: 01942687C5639EACF2F7DEA4BF4B78E13959
Authority key identifier: 75:54:AC:4C:7F:45:1C:5B:B9:38:2F:BC:D4:6D:70:C4:C0:F9:DE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dVSsTH9FHFu5OC-81G1wxMD53lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/87a00a-b6f6-4721-a828-d9337db39d1f/1/B6CARfPCfS2O9gV-oDteNt53Dtk.roa
Signing time: Thu 02 Jan 2025 10:20:19 +0000
ROA not before: Thu 02 Jan 2025 10:20:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 397373
IP address blocks: 185.177.231.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:87:c5:63:9e:ac:f2:f7:de:a4:bf:4b:78:e1:39:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7554ac4c7f451c5bb9382fbcd46d70c4c0f9de56
Validity
Not Before: Jan 2 10:20:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=07a08045f3c27d2d8ef6057ea03b5e36de770ed9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:4c:ba:64:d4:a9:fe:bc:79:c0:15:c3:7b:be:
d3:95:fe:f7:02:e8:8f:d6:48:28:d8:01:8b:44:fb:
c6:b6:a4:9f:c9:c3:e6:de:c1:53:7a:ec:2a:d2:2f:
a8:9f:15:6d:db:89:b3:fb:61:e6:c8:c7:11:97:59:
c5:68:80:84:7e:c0:4d:8c:61:91:77:0e:d9:c6:f8:
fe:b6:69:d6:00:e5:ea:f7:fb:14:79:0f:b0:07:b8:
35:d7:15:ce:e2:b8:d7:e3:3c:3d:6e:44:ad:02:fc:
3c:7b:db:a3:0e:56:46:72:da:28:07:1e:99:1a:d9:
3e:d0:50:99:da:f4:fc:87:ff:26:a3:a2:79:3b:f8:
28:32:8e:28:66:a7:a3:39:6c:75:e4:eb:1c:13:e4:
2b:04:4f:2b:1f:1b:6b:81:fa:fe:35:d1:7d:b2:28:
b5:23:9f:6c:9f:54:3c:13:80:4b:55:e0:69:76:72:
41:c7:80:70:dd:cc:07:37:f5:48:31:fc:ad:31:e2:
f9:d1:9f:ff:90:75:29:ce:fc:79:80:33:93:cc:81:
0a:b1:f1:34:80:30:ad:0b:2b:3f:d1:28:18:19:85:
d1:ea:2e:28:2b:73:5e:24:d8:cd:07:39:eb:10:db:
19:54:64:5a:5d:a8:b1:70:f4:b1:73:18:e0:3c:f5:
93:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:A0:80:45:F3:C2:7D:2D:8E:F6:05:7E:A0:3B:5E:36:DE:77:0E:D9
X509v3 Authority Key Identifier:
keyid:75:54:AC:4C:7F:45:1C:5B:B9:38:2F:BC:D4:6D:70:C4:C0:F9:DE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dVSsTH9FHFu5OC-81G1wxMD53lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/87a00a-b6f6-4721-a828-d9337db39d1f/1/B6CARfPCfS2O9gV-oDteNt53Dtk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/87a00a-b6f6-4721-a828-d9337db39d1f/1/dVSsTH9FHFu5OC-81G1wxMD53lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.177.231.0/24
Signature Algorithm: sha256WithRSAEncryption
28:25:60:12:6c:9a:9d:8c:89:39:83:b7:18:19:2d:62:e2:8a:
2e:b3:34:ed:56:a4:7d:9f:7e:01:ab:cb:8c:96:2a:7f:5e:e2:
3f:93:4e:f4:a5:dd:8c:34:3b:a5:91:d9:8c:eb:ce:4a:71:46:
69:48:7e:f2:73:14:8c:be:50:f6:9c:7a:cb:e7:c4:49:82:d9:
35:88:bb:7a:66:5b:56:ed:d1:94:5d:c8:bf:1a:a3:8a:dd:08:
e5:0c:16:26:49:9e:af:b7:a2:0a:ec:89:ab:1f:18:eb:0c:a3:
56:54:19:37:c4:7e:6c:ce:27:71:56:7e:2b:3a:a8:56:65:b2:
ad:73:be:9c:33:d3:2f:94:d5:35:61:7a:7e:b4:e2:2c:c5:21:
00:d3:1c:ab:1f:9f:22:e1:04:fa:be:27:56:d9:48:c2:72:aa:
31:e0:98:d0:94:d8:6c:69:48:45:29:86:ab:50:96:2a:17:34:
09:fd:4a:86:13:d1:5a:06:3e:55:44:db:7f:5c:9a:4b:54:08:
bb:e1:13:b6:7e:50:39:f9:ab:ff:15:9e:29:ad:bd:d5:07:f6:
c7:86:3e:62:16:b3:fc:af:93:0a:58:67:22:e0:ee:54:04:27:
c0:ce:cd:83:cc:8d:c5:c0:71:40:78:db:97:a9:aa:43:f3:71:
a2:8b:b0:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 09:07:59 2025 by rpki-client