Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/4459b4-1838-4231-bd2c-40c0a652450a/1/Ef_L0S4-Bp45a4AhicIQvktRdz4.roa
File: Ef_L0S4-Bp45a4AhicIQvktRdz4.roa (raw, json)
Hash identifier: /8pqkPBMXDiyNztqWEzFfiF8Q4r48DyQf1X0AGe+tXU=
Subject key identifier: 11:FF:CB:D1:2E:3E:06:9E:39:6B:80:21:89:C2:10:BE:4B:51:77:3E
Certificate issuer: /CN=734fa61b08651038faf81ebf125ec845b1961883
Certificate serial: 0194236A0E0C34974A66E4D7677EB7F62B4D
Authority key identifier: 73:4F:A6:1B:08:65:10:38:FA:F8:1E:BF:12:5E:C8:45:B1:96:18:83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c0-mGwhlEDj6-B6_El7IRbGWGIM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/4459b4-1838-4231-bd2c-40c0a652450a/1/Ef_L0S4-Bp45a4AhicIQvktRdz4.roa
Signing time: Wed 01 Jan 2025 19:49:00 +0000
ROA not before: Wed 01 Jan 2025 19:49:00 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 34984
IP address blocks: 185.135.43.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:6a:0e:0c:34:97:4a:66:e4:d7:67:7e:b7:f6:2b:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=734fa61b08651038faf81ebf125ec845b1961883
Validity
Not Before: Jan 1 19:49:00 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=11ffcbd12e3e069e396b802189c210be4b51773e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:8a:25:a1:ac:39:28:13:46:0c:1e:da:c0:1a:
cb:64:21:2a:1f:e0:7e:0a:5a:d4:d0:6e:55:07:ce:
f7:94:ae:d7:6c:1e:10:d8:87:63:a6:ed:8a:68:42:
44:6c:28:ff:79:dc:eb:76:0b:ba:66:8c:ff:09:c5:
f6:7a:54:50:3b:78:61:dc:25:55:3f:ca:90:2b:8b:
e7:eb:ae:61:69:03:e9:82:d4:02:09:d1:f6:c2:36:
a8:f5:35:44:6b:c0:44:49:7e:32:a3:e0:01:9a:af:
fe:0e:8b:a2:88:d4:99:86:e2:e4:fc:f3:1f:74:dd:
0b:2f:f1:bb:cd:4f:ca:62:a3:d5:ad:2d:08:4b:d9:
8a:ce:43:9e:74:42:07:ec:5f:38:f3:fe:cc:81:49:
5b:90:4e:26:cd:0a:36:d5:db:b6:0b:f0:a1:8b:d9:
1f:db:68:e4:3b:b1:5f:24:5e:fe:3a:65:fb:d3:70:
b4:d2:cf:59:b0:22:53:d1:68:9c:e6:e6:40:18:d9:
b5:31:80:67:19:74:08:2f:69:ef:23:ab:5e:48:14:
72:ce:9c:25:1f:0b:ff:09:89:a1:35:6b:2e:37:88:
3b:5f:f5:65:04:5b:92:6a:6c:58:ea:0d:8f:e6:d1:
5c:c9:99:a2:ad:5c:89:28:20:11:de:0b:cc:52:ee:
b7:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:FF:CB:D1:2E:3E:06:9E:39:6B:80:21:89:C2:10:BE:4B:51:77:3E
X509v3 Authority Key Identifier:
keyid:73:4F:A6:1B:08:65:10:38:FA:F8:1E:BF:12:5E:C8:45:B1:96:18:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0-mGwhlEDj6-B6_El7IRbGWGIM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/4459b4-1838-4231-bd2c-40c0a652450a/1/Ef_L0S4-Bp45a4AhicIQvktRdz4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/4459b4-1838-4231-bd2c-40c0a652450a/1/c0-mGwhlEDj6-B6_El7IRbGWGIM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.135.43.0/24
Signature Algorithm: sha256WithRSAEncryption
89:17:d6:ff:15:fd:31:9f:70:4b:86:25:df:a1:54:eb:81:a4:
b3:e4:06:72:31:88:6d:9b:eb:98:7b:6e:c7:41:7b:ea:a6:e9:
b5:ca:c0:4d:4b:1c:3c:7e:3d:0c:3c:f0:47:dc:9d:40:22:b7:
dd:ec:ea:2b:10:ae:62:04:7d:60:12:a0:67:32:33:10:db:65:
db:92:98:7d:de:53:4b:c4:7e:fb:17:95:63:df:a6:33:30:63:
90:7f:6d:90:80:62:4b:ba:f5:69:18:bd:9a:fc:2e:47:da:1c:
c5:45:59:80:6c:78:4d:f2:b3:20:48:a7:c6:5b:49:dd:fa:71:
ce:12:20:b1:a5:97:5b:24:eb:e7:00:32:fb:09:d5:9b:c1:cc:
11:9e:2d:eb:e8:a9:18:10:61:d1:20:08:94:74:a4:2a:94:c2:
3b:6a:bd:d2:d9:92:76:31:f5:7f:e9:53:8e:15:f4:eb:e8:de:
b7:a1:94:5d:81:32:67:81:f8:56:4a:59:ac:8f:7a:39:c6:44:
10:00:a9:18:98:af:d3:72:71:69:2f:b5:df:35:df:e0:bf:7a:
15:c2:15:1b:f8:ca:44:5d:43:32:60:2e:bf:7d:3c:10:a4:5a:
87:a6:99:86:25:94:80:1b:5d:b1:db:ec:ed:9b:80:99:72:26:
f3:6b:a4:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 18:03:55 2025 by rpki-client