Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/L9B1z_dF82tmenkdIAfbfu_0bdo.roa
File: L9B1z_dF82tmenkdIAfbfu_0bdo.roa (raw, json)
Hash identifier: 2YQa8fBvcM6HY80w7VZqxSDeaI4/cMUJoBojAneajS4=
Subject key identifier: 2F:D0:75:CF:F7:45:F3:6B:66:7A:79:1D:20:07:DB:7E:EF:F4:6D:DA
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 019421B22EF3914E287F8C7CB252A50DEDFC
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/L9B1z_dF82tmenkdIAfbfu_0bdo.roa
Signing time: Wed 01 Jan 2025 11:48:32 +0000
ROA not before: Wed 01 Jan 2025 11:48:32 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 3257
IP address blocks: 85.208.112.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b2:2e:f3:91:4e:28:7f:8c:7c:b2:52:a5:0d:ed:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Jan 1 11:48:32 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2fd075cff745f36b667a791d2007db7eeff46dda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:fc:77:d4:53:0d:af:60:24:34:d8:93:43:a1:
f6:28:6d:f9:91:b5:15:59:9c:9e:98:ff:97:a6:d2:
25:e9:27:79:4b:89:42:da:8c:e6:81:79:25:27:04:
5f:8d:88:27:5c:a8:92:55:88:a5:aa:59:51:b9:45:
82:07:b3:e4:ba:4c:48:04:5d:a3:10:48:b7:0a:9c:
3f:53:ea:fb:e1:0a:8b:ad:a7:28:3d:a8:b2:98:43:
8f:5f:94:50:86:ac:bd:5a:ca:d4:7b:fd:92:18:d8:
8b:75:8d:65:9e:35:0c:b0:8b:9f:6a:27:e6:1a:67:
3d:67:62:be:61:3f:47:5f:be:83:67:2a:eb:94:18:
c5:c7:64:a2:50:36:9a:04:cb:ee:30:7d:91:60:57:
cd:e5:e1:a5:93:00:d3:9b:e9:e4:2c:65:34:a4:df:
44:8a:54:cc:66:34:ed:d2:d5:25:62:58:d2:46:7d:
47:e5:8d:4e:eb:e7:0c:58:b0:56:98:1c:fa:73:9f:
5b:a3:87:57:82:f9:81:d7:3b:02:bb:3c:2d:18:02:
63:27:a4:27:13:8b:ae:08:95:ce:fb:92:d0:85:47:
55:bb:40:6b:85:ef:da:f5:a5:25:7f:5b:f1:27:db:
77:aa:34:20:99:e7:00:4f:19:37:88:03:8b:1d:85:
12:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:D0:75:CF:F7:45:F3:6B:66:7A:79:1D:20:07:DB:7E:EF:F4:6D:DA
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/L9B1z_dF82tmenkdIAfbfu_0bdo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.208.112.0/24
Signature Algorithm: sha256WithRSAEncryption
59:c5:b6:38:3e:80:65:e2:81:34:4f:ac:f4:33:8b:5b:63:55:
66:cc:da:25:ad:f0:55:a0:1f:56:10:9d:d3:4c:b9:66:e9:4a:
83:e2:97:2f:c0:d3:17:c0:07:0e:ef:a4:2c:df:8b:24:48:d8:
fe:fe:2d:6d:15:53:75:72:2b:5d:1c:8b:63:25:d0:21:99:30:
ce:8a:64:29:59:32:50:24:39:8f:8a:5f:01:37:a3:31:03:62:
5d:fb:9c:f7:39:e7:5d:97:8c:83:ad:ce:b0:a8:c4:ee:18:b1:
65:ab:da:92:19:fb:a2:29:33:7a:c8:b1:c8:61:ff:06:2c:ee:
5b:0d:55:43:81:82:9f:9e:7e:14:68:bc:02:b9:f5:c2:02:00:
ad:a9:8c:a7:0d:4d:5f:d9:fc:e5:98:ad:5b:f6:ff:66:29:27:
5a:e3:2f:38:fb:91:c5:6d:87:83:a7:d7:2a:30:14:53:b1:7f:
30:44:8e:cb:c0:25:3d:ee:c1:99:33:be:25:cc:09:4c:fd:a1:
34:44:cd:b5:49:4a:43:33:71:d3:85:ee:28:97:af:6f:f0:33:
f7:0f:58:c0:21:e8:4c:0d:2e:d1:e9:eb:9e:04:8e:a3:0c:dd:
c0:2c:12:c4:b9:bc:71:3c:0b:e7:8b:2b:27:a1:9e:67:3c:bc:
b4:3a:83:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 11:36:33 2025 by rpki-client