Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/482101-ac94-4f0b-9309-3e18ee6b4a5a/1/tgAHftofsUlrut1OVcO8hHTBTbc.roa
File: tgAHftofsUlrut1OVcO8hHTBTbc.roa (raw, json)
Hash identifier: tgkhROI0aApXAU3ooNKzzNjHjSmQxJBLSWJU0UDgdqI=
Subject key identifier: B6:00:07:7E:DA:1F:B1:49:6B:BA:DD:4E:55:C3:BC:84:74:C1:4D:B7
Certificate issuer: /CN=92f7d213fa13708e3200184ff1bc391577cc252f
Certificate serial: 01953DAB2B6FD569707F3030889217D29349
Authority key identifier: 92:F7:D2:13:FA:13:70:8E:32:00:18:4F:F1:BC:39:15:77:CC:25:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kvfSE_oTcI4yABhP8bw5FXfMJS8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/482101-ac94-4f0b-9309-3e18ee6b4a5a/1/tgAHftofsUlrut1OVcO8hHTBTbc.roa
Signing time: Tue 25 Feb 2025 15:13:02 +0000
ROA not before: Tue 25 Feb 2025 15:13:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 3356
IP address blocks: 185.47.164.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:3d:ab:2b:6f:d5:69:70:7f:30:30:88:92:17:d2:93:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92f7d213fa13708e3200184ff1bc391577cc252f
Validity
Not Before: Feb 25 15:13:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b600077eda1fb1496bbadd4e55c3bc8474c14db7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:38:b5:85:a7:ea:58:88:95:b7:17:6d:3c:fa:
89:14:0b:4c:f0:b2:5d:03:04:79:29:ad:95:1a:68:
35:5b:81:ab:2d:bf:94:60:67:4b:ff:ae:b9:d3:a5:
b2:a5:eb:29:c2:26:86:9d:13:3b:60:43:0e:65:f7:
1f:86:12:98:26:5a:ca:62:fb:fd:11:34:65:f1:4d:
cf:63:ce:5f:f6:f5:94:18:12:fe:f2:3b:10:ce:4d:
11:21:a7:42:f8:41:a7:f2:58:84:44:98:09:57:4f:
2e:c8:cb:92:b8:de:fe:14:8e:9b:2f:67:43:1c:61:
70:da:6d:5b:33:0e:3c:aa:82:a0:e1:7d:20:1d:ae:
07:db:a8:c5:25:5d:29:76:d7:84:99:15:ce:6f:75:
13:84:16:38:3c:09:21:a4:9d:51:d6:33:5c:66:e3:
64:ae:01:31:c3:61:3b:c3:4c:66:26:d5:59:1c:87:
22:cc:0a:8e:5e:a9:a1:e5:ef:99:1d:c0:a4:c4:a3:
04:08:a2:19:02:39:df:c2:95:d5:9f:c1:62:8b:5c:
44:bb:a3:78:b2:b6:51:fa:55:7b:f2:86:88:5a:0f:
d5:05:ee:50:ce:23:b5:30:69:b5:5d:b9:d8:40:ae:
84:b8:e0:13:b1:54:04:ac:b5:20:26:b9:3c:b0:25:
6b:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:00:07:7E:DA:1F:B1:49:6B:BA:DD:4E:55:C3:BC:84:74:C1:4D:B7
X509v3 Authority Key Identifier:
keyid:92:F7:D2:13:FA:13:70:8E:32:00:18:4F:F1:BC:39:15:77:CC:25:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kvfSE_oTcI4yABhP8bw5FXfMJS8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/482101-ac94-4f0b-9309-3e18ee6b4a5a/1/tgAHftofsUlrut1OVcO8hHTBTbc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/482101-ac94-4f0b-9309-3e18ee6b4a5a/1/kvfSE_oTcI4yABhP8bw5FXfMJS8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.47.164.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:39:18:40:95:6b:63:17:d1:3d:c8:29:26:fd:18:81:a9:f3:
b9:50:cf:ec:51:d5:f6:e5:23:8b:ef:45:a4:fa:98:ce:be:cf:
ec:3d:9a:36:7a:77:a4:2f:74:e8:3d:a9:8d:e2:10:f3:88:d1:
e1:00:a7:1a:f2:b1:cd:aa:1a:8d:08:2d:a4:cd:c0:a9:d8:b9:
6c:b4:8a:54:7b:b6:e4:74:db:ec:e2:9b:93:e7:8c:01:6a:5c:
e2:ec:f8:9a:a6:4b:a8:9c:94:2a:8b:19:60:60:b2:f8:c0:78:
3b:1e:19:c6:0b:ea:eb:72:ef:5b:66:42:db:41:c8:63:e7:7c:
df:5a:53:92:be:67:e3:6d:74:17:dd:3f:a1:38:fd:cf:27:3f:
03:d3:5a:1e:5b:17:67:4f:e5:26:b1:13:fa:4c:5d:79:10:cc:
dd:0d:14:af:07:ce:d8:67:42:ad:3b:c8:af:bc:f8:31:3d:51:
01:02:58:84:31:07:43:08:b0:a5:a8:37:bc:df:22:9d:de:89:
cc:a0:16:c9:c4:db:d2:e9:ef:aa:05:36:64:65:84:ca:50:46:
9a:b7:7a:ef:6c:0b:86:fe:54:d6:54:f4:e7:ce:28:29:0b:48:
76:fb:a0:81:56:d0:8d:44:22:4f:73:cc:6e:db:8c:64:07:f7:
e2:44:ad:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 13:15:04 2025 by rpki-client