Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/d72574-272a-409d-9d3c-e49a9e06c700/1/dBAhef7ZbzZHuhQtCd6SvGGzO6s.roa
File: dBAhef7ZbzZHuhQtCd6SvGGzO6s.roa (raw, json)
Hash identifier: GxBDk0D1VZf4nDJCKhQwuWJlgGCDzXPqvKzG3koHCYY=
Subject key identifier: 74:10:21:79:FE:D9:6F:36:47:BA:14:2D:09:DE:92:BC:61:B3:3B:AB
Certificate issuer: /CN=d6c1c2465b4f973fb4b0cb6628a98b3b58896d48
Certificate serial: 0193D44C2DE1A64A537313D034849F84B972
Authority key identifier: D6:C1:C2:46:5B:4F:97:3F:B4:B0:CB:66:28:A9:8B:3B:58:89:6D:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1sHCRltPlz-0sMtmKKmLO1iJbUg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/d72574-272a-409d-9d3c-e49a9e06c700/1/dBAhef7ZbzZHuhQtCd6SvGGzO6s.roa
Signing time: Tue 17 Dec 2024 11:06:22 +0000
ROA not before: Tue 17 Dec 2024 11:06:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213726
IP address blocks: 185.197.164.0/24 maxlen: 24
2a0a:7bc1:1::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:d4:4c:2d:e1:a6:4a:53:73:13:d0:34:84:9f:84:b9:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d6c1c2465b4f973fb4b0cb6628a98b3b58896d48
Validity
Not Before: Dec 17 11:06:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=74102179fed96f3647ba142d09de92bc61b33bab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:0e:c9:9d:5d:4f:07:c5:d5:c5:e5:af:97:74:
81:74:df:5d:d6:fa:7e:19:f1:a4:8e:4b:71:77:55:
f5:9a:47:6b:d7:17:16:3f:c0:6f:da:68:dd:50:b0:
e0:69:aa:d4:fa:fb:1c:68:68:d7:51:c7:81:01:c4:
cf:83:7d:b2:d6:11:33:78:39:25:86:d0:66:8f:4f:
b7:4b:a8:dd:f9:98:36:e1:ae:c8:4e:80:e6:6a:a5:
0d:d5:af:95:20:c3:05:d7:ee:70:90:4a:7a:f4:92:
8c:a8:a3:57:6e:8a:aa:2f:75:13:1f:72:dd:51:e3:
c7:91:10:63:0a:3d:20:a0:51:fd:2d:47:72:b8:8a:
96:c1:05:f9:24:41:46:f2:03:2e:43:7d:b5:99:5b:
a1:82:2f:59:c9:f8:0d:5b:a9:55:12:e5:08:78:62:
0f:fd:73:01:04:47:2f:56:16:0f:a6:44:9e:de:26:
99:23:69:bc:d9:3e:ef:e8:19:ae:b6:7f:22:79:da:
90:db:a9:b1:17:12:02:10:eb:91:a0:6a:7a:cb:b3:
4f:1f:6d:98:dc:74:8e:e0:b1:e2:66:bf:93:d6:7c:
b5:d0:2b:2e:50:2d:c4:b0:c4:dd:64:77:e0:52:03:
ae:07:ca:b4:59:55:e8:47:36:7b:2c:db:40:3b:ce:
ec:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:10:21:79:FE:D9:6F:36:47:BA:14:2D:09:DE:92:BC:61:B3:3B:AB
X509v3 Authority Key Identifier:
keyid:D6:C1:C2:46:5B:4F:97:3F:B4:B0:CB:66:28:A9:8B:3B:58:89:6D:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1sHCRltPlz-0sMtmKKmLO1iJbUg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/d72574-272a-409d-9d3c-e49a9e06c700/1/dBAhef7ZbzZHuhQtCd6SvGGzO6s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/d72574-272a-409d-9d3c-e49a9e06c700/1/1sHCRltPlz-0sMtmKKmLO1iJbUg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.197.164.0/24
IPv6:
2a0a:7bc1:1::/48
Signature Algorithm: sha256WithRSAEncryption
6a:8c:69:b6:97:2e:37:73:de:87:09:25:69:30:a4:08:78:2a:
63:b3:02:d4:df:72:bd:5c:fb:d3:61:45:e5:07:d4:0f:09:e2:
94:eb:df:e1:f6:f1:26:f6:0d:e3:9c:a8:0c:c7:66:93:75:ea:
fc:cd:8b:92:f2:7f:81:cd:cf:60:e4:22:44:3d:95:6a:2a:6f:
08:f7:b4:2e:32:53:c5:ae:ea:7e:5c:70:d0:3b:e9:fc:c1:c7:
b8:2d:93:df:00:ee:c3:39:5f:aa:20:5e:e2:7f:f5:3c:c4:23:
67:0b:55:90:87:54:93:88:2c:72:72:53:4b:92:27:ac:ae:a3:
f9:0a:77:e3:0c:90:cd:5f:fe:d3:17:de:cd:19:81:8c:a0:da:
94:15:b3:60:03:90:48:e6:69:28:80:5b:ad:48:93:f4:07:8b:
1b:4c:0b:24:31:59:64:c2:65:ac:0b:d5:1d:50:90:ab:91:02:
aa:18:30:bb:41:4b:46:fe:11:20:8f:15:0f:43:c0:f3:d5:5f:
52:f8:31:d2:6b:c9:53:a2:fb:15:54:2b:69:8c:f4:00:37:f7:
8e:d7:f8:40:e5:4e:0a:75:88:ba:eb:fb:b3:27:16:06:71:10:
1b:fd:86:94:1d:e0:0f:ce:1d:5d:0c:4e:38:a3:9d:c5:10:0c:
2b:b9:05:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 08:13:31 2025 by rpki-client