Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/Sid2JphOtFkula33r_ixIKpP8HY.roa
File: Sid2JphOtFkula33r_ixIKpP8HY.roa (raw, json)
Hash identifier: c8XekloV2d+YsVt44JIKbc3dNs/ehcwMQ4mqaf2Shss=
Subject key identifier: 4A:27:76:26:98:4E:B4:59:2E:95:AD:F7:AF:F8:B1:20:AA:4F:F0:76
Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Certificate serial: 0195DCDE97992385AA87FA2F58F689A0D299
Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/Sid2JphOtFkula33r_ixIKpP8HY.roa
Signing time: Fri 28 Mar 2025 13:08:50 +0000
ROA not before: Fri 28 Mar 2025 13:08:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206385
IP address blocks: 37.18.41.0/24 maxlen: 24
37.230.136.0/24 maxlen: 24
46.243.173.0/24 maxlen: 24
178.170.253.0/24 maxlen: 24
185.2.33.0/24 maxlen: 24
188.72.72.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:dc:de:97:99:23:85:aa:87:fa:2f:58:f6:89:a0:d2:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Validity
Not Before: Mar 28 13:08:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4a277626984eb4592e95adf7aff8b120aa4ff076
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:78:d9:c4:40:6e:62:8d:a0:d9:09:ae:e6:29:
09:89:9d:7c:10:4f:13:42:3e:f3:4d:f8:4a:ad:f8:
95:d8:81:ef:f7:ec:d8:1f:7e:2c:3e:4f:a3:45:87:
b5:2b:56:66:98:7f:a5:81:c5:81:94:ad:19:a0:26:
44:fa:c9:77:e2:0c:b2:62:ef:d7:bb:eb:f3:28:05:
06:4c:6a:62:a1:4e:0d:fa:e8:6e:7e:15:82:6b:65:
91:fa:92:c4:ac:02:f7:5d:f7:d5:d4:91:fa:f9:3c:
ae:1a:69:81:66:4b:a8:18:86:89:e2:43:8a:be:52:
42:df:26:0f:67:d9:9e:28:d0:a1:4a:ef:6a:96:cc:
76:66:30:35:86:3d:b7:52:4f:2d:f8:be:e6:5e:fe:
09:24:6c:49:f4:2d:ce:2b:2e:e7:20:0c:9b:ab:47:
77:07:51:c1:6d:0d:65:ca:2e:fd:66:23:c6:d4:03:
58:ca:8a:89:a7:26:c6:de:98:71:8c:86:09:be:65:
5e:9d:da:c8:7d:28:ee:af:5e:01:34:8e:b2:da:f9:
c6:31:01:b6:c4:96:bf:5a:ff:0d:70:aa:64:78:af:
8c:61:05:49:72:d1:62:70:0e:7d:55:3a:fc:f0:16:
30:a7:fc:91:5e:6f:1b:ab:fb:88:d0:3a:a5:eb:78:
7e:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:27:76:26:98:4E:B4:59:2E:95:AD:F7:AF:F8:B1:20:AA:4F:F0:76
X509v3 Authority Key Identifier:
keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/Sid2JphOtFkula33r_ixIKpP8HY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.18.41.0/24
37.230.136.0/24
46.243.173.0/24
178.170.253.0/24
185.2.33.0/24
188.72.72.0/24
Signature Algorithm: sha256WithRSAEncryption
08:13:de:6b:57:8a:b1:4a:4f:f9:41:b8:c1:f1:e1:d8:3c:43:
c8:ea:c8:29:d6:aa:34:40:38:d7:81:41:3e:9a:ff:a1:c9:bd:
be:7b:97:42:5c:a1:11:eb:4d:28:3a:5a:fb:81:98:26:92:c1:
f7:98:0c:19:04:ca:49:f6:92:b5:cd:29:a4:ad:81:f1:b8:55:
2e:89:dc:3a:01:d9:bf:8f:5b:ff:ce:c2:bf:b5:85:c6:ad:a1:
5b:1e:13:5c:5e:c3:2d:8d:d0:6d:87:2c:f4:3d:29:2d:4c:37:
20:46:d0:a7:ee:13:8f:02:e0:4a:e9:ae:59:4c:8f:f5:e0:9f:
c9:22:d9:32:e6:db:20:43:ab:15:fc:f4:97:ab:37:ae:36:4e:
35:a3:2a:fb:5f:48:9f:31:17:07:3e:98:2a:bf:c8:cf:06:9f:
c2:4e:c8:ff:12:4f:77:c4:54:7d:e5:1c:12:43:02:1d:71:b4:
2d:56:ac:02:fb:e0:93:0e:d4:c1:f9:20:ba:e6:27:71:60:f9:
de:a9:46:5e:b2:82:68:80:02:0f:ab:fd:b4:e2:29:9c:76:7e:
63:7c:a4:bd:85:6e:28:de:a4:0a:64:44:c7:05:f9:88:6f:c9:
15:59:4d:87:6b:68:7c:16:f9:d1:e8:1c:1f:d7:cf:6b:38:a8:
b6:59:30:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 15:30:19 2025 by rpki-client