Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/T195uzhcxLzu10eyYWudFCGivFA.roa
File: T195uzhcxLzu10eyYWudFCGivFA.roa (raw, json)
Hash identifier: qzUIoK7cQxzw4ahmYyu2KSE8akPb2eWd34lvfRiJKwg=
Subject key identifier: 4F:5F:79:BB:38:5C:C4:BC:EE:D7:47:B2:61:6B:9D:14:21:A2:BC:50
Certificate issuer: /CN=d914da56e1a934649da02964ac12eba34c5cb84f
Certificate serial: 0195821EA05E4E868A461674B1172D1D65FA
Authority key identifier: D9:14:DA:56:E1:A9:34:64:9D:A0:29:64:AC:12:EB:A3:4C:5C:B8:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2RTaVuGpNGSdoClkrBLro0xcuE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/T195uzhcxLzu10eyYWudFCGivFA.roa
Signing time: Mon 10 Mar 2025 22:13:19 +0000
ROA not before: Mon 10 Mar 2025 22:13:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213484
IP address blocks: 185.97.215.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:82:1e:a0:5e:4e:86:8a:46:16:74:b1:17:2d:1d:65:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d914da56e1a934649da02964ac12eba34c5cb84f
Validity
Not Before: Mar 10 22:13:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4f5f79bb385cc4bceed747b2616b9d1421a2bc50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:75:ca:7b:f1:72:5f:4c:cc:19:da:67:30:5c:
01:64:25:3e:82:1c:e4:5d:78:7e:f7:2f:b5:ea:9c:
30:7b:32:19:94:e1:d5:67:5f:91:8e:e9:8f:c8:63:
ce:b6:c7:3e:05:a1:5a:98:29:f3:cc:19:9a:76:9c:
ae:f1:c8:de:82:45:b1:a4:27:c2:62:5d:47:46:15:
6d:31:04:29:f0:64:d1:6c:c9:c6:8c:16:ca:96:d9:
33:ce:12:a5:7c:7b:54:fc:d9:91:72:5f:27:92:e1:
1c:da:b9:73:05:d0:a9:0a:ac:e6:11:22:1f:dc:53:
58:f8:a8:0b:aa:58:5b:29:6c:19:ed:18:68:37:c4:
09:b9:e6:b6:28:89:f1:57:7e:9b:0d:e0:81:60:5b:
36:92:48:a0:e4:48:76:5f:55:b5:58:62:a5:70:f9:
c5:e9:6c:a0:43:d6:7f:9e:27:fd:24:fb:3f:5a:e0:
c6:40:60:d7:bd:d7:f7:87:25:3c:0c:d3:08:b6:e6:
4c:56:39:06:01:5a:02:03:32:df:52:76:16:43:38:
24:58:96:f5:7d:fa:b4:0a:ab:39:a0:35:c1:1d:c6:
b4:ac:83:60:a3:b1:6b:09:0a:db:7e:22:23:83:70:
2c:80:db:07:58:19:0b:56:21:93:aa:bc:42:62:ad:
fd:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:5F:79:BB:38:5C:C4:BC:EE:D7:47:B2:61:6B:9D:14:21:A2:BC:50
X509v3 Authority Key Identifier:
keyid:D9:14:DA:56:E1:A9:34:64:9D:A0:29:64:AC:12:EB:A3:4C:5C:B8:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2RTaVuGpNGSdoClkrBLro0xcuE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/T195uzhcxLzu10eyYWudFCGivFA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/2RTaVuGpNGSdoClkrBLro0xcuE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.97.215.0/24
Signature Algorithm: sha256WithRSAEncryption
61:57:1f:12:08:f1:10:f8:b2:fd:5a:ff:2a:a1:41:f6:69:e2:
e2:cf:56:10:ac:0a:d3:66:56:c2:f2:7d:c5:ff:93:54:58:b3:
93:3f:a9:3a:1a:af:ef:a8:6b:49:ec:b0:91:28:c1:86:a1:b7:
e4:fa:7f:c0:cc:7c:51:69:df:cc:2e:3c:a4:40:14:f3:a0:9a:
cb:cc:b0:f7:b8:10:1c:a1:5e:4d:3b:54:8b:18:67:9a:9b:c4:
4e:19:73:9d:bd:39:55:88:97:21:9b:2d:e3:54:00:9b:ca:c9:
51:fc:02:9c:7a:04:de:fa:1d:8c:4e:8f:e7:61:67:7f:50:4f:
3e:f9:9c:05:9c:08:3d:ce:8e:62:96:90:96:da:96:e4:a5:c1:
ba:d3:6c:22:5f:f4:1b:a7:9f:13:95:a2:cd:43:9a:b0:a6:7f:
20:50:6a:37:a8:bd:92:8c:69:de:4f:82:39:0a:fd:eb:36:65:
b6:d1:44:87:d4:fe:bc:ff:d1:85:37:79:db:59:95:36:50:81:
ad:c3:53:03:5a:c7:5a:b1:1f:18:ae:da:54:eb:98:41:f9:08:
27:8e:93:56:6e:e9:2b:81:e8:cf:b7:05:4f:9e:57:18:2d:31:
e2:5d:cb:4e:04:5f:f9:e8:ce:f9:41:31:fb:92:f5:fe:12:22:
62:32:2c:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 14:42:40 2025 by rpki-client