Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/846bd3-0373-4190-adff-3e36ca9a2d69/1/OynpFmqwLpLmx9cYzWFwaPHhY0Y.roa
File: OynpFmqwLpLmx9cYzWFwaPHhY0Y.roa (raw, json)
Hash identifier: G0GGCEr3qsQGglCVOV/RF4kV8fzUD2GhPPhEVDLyjUg=
Subject key identifier: 3B:29:E9:16:6A:B0:2E:92:E6:C7:D7:18:CD:61:70:68:F1:E1:63:46
Certificate issuer: /CN=dca0adb1a8b797020f0ec7a29a9b5abad40b653e
Certificate serial: 01884548E34E8AECC328706B3FBB249F0CFB
Authority key identifier: DC:A0:AD:B1:A8:B7:97:02:0F:0E:C7:A2:9A:9B:5A:BA:D4:0B:65:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3KCtsai3lwIPDseimptautQLZT4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/846bd3-0373-4190-adff-3e36ca9a2d69/1/OynpFmqwLpLmx9cYzWFwaPHhY0Y.roa
Signing time: Mon 22 May 2023 21:06:24 +0000
ROA not before: Mon 22 May 2023 21:06:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 185.186.27.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:45:48:e3:4e:8a:ec:c3:28:70:6b:3f:bb:24:9f:0c:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dca0adb1a8b797020f0ec7a29a9b5abad40b653e
Validity
Not Before: May 22 21:06:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3b29e9166ab02e92e6c7d718cd617068f1e16346
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:30:78:92:0b:e8:9e:36:f0:24:ed:aa:66:5d:
77:d9:4c:5f:7f:c2:91:03:3d:9d:fd:1e:6f:0f:ff:
75:e6:7d:12:96:0a:00:cf:db:a1:41:c7:dc:9c:7d:
c1:bd:6a:12:be:2d:bb:4a:41:92:8d:54:d7:77:0f:
ef:8f:25:18:de:e6:3b:75:19:9a:26:b5:eb:1b:8f:
73:bf:51:13:34:6b:24:b4:6d:80:87:df:0e:2b:e7:
03:1d:34:3d:53:f5:d9:b5:c4:a9:de:fb:3a:45:98:
d6:8d:76:b9:87:41:1e:16:1e:04:c7:fa:ef:7d:93:
bb:a7:0f:ab:fb:26:87:6a:ec:5c:91:00:c2:7c:6a:
27:46:65:4e:c4:64:fd:40:d6:f0:40:d5:70:21:4e:
d5:af:65:31:86:74:52:83:d3:92:3f:cb:fc:56:ba:
e2:10:58:40:fe:90:2f:9b:a5:2d:47:5e:41:4f:8b:
b7:d5:00:f3:00:6f:fa:00:cf:90:57:e2:01:43:b6:
a2:43:c2:70:9b:81:3c:d5:ad:8a:a9:a6:fb:c1:ee:
0d:d8:1e:3e:b4:2c:ba:ad:b7:13:3c:65:1e:e2:32:
b8:05:b2:b2:a4:91:0b:64:cc:b1:fe:11:6a:0d:a0:
f2:4a:0a:f5:67:28:35:14:50:9f:50:e9:bb:b9:72:
89:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:29:E9:16:6A:B0:2E:92:E6:C7:D7:18:CD:61:70:68:F1:E1:63:46
X509v3 Authority Key Identifier:
keyid:DC:A0:AD:B1:A8:B7:97:02:0F:0E:C7:A2:9A:9B:5A:BA:D4:0B:65:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3KCtsai3lwIPDseimptautQLZT4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/846bd3-0373-4190-adff-3e36ca9a2d69/1/OynpFmqwLpLmx9cYzWFwaPHhY0Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/846bd3-0373-4190-adff-3e36ca9a2d69/1/3KCtsai3lwIPDseimptautQLZT4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.186.27.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:03:c9:d1:ec:59:63:b9:5a:34:64:3e:e3:b0:6e:73:27:bc:
a8:ed:15:14:01:f4:00:9f:41:2d:d8:27:0a:15:2a:74:dd:2f:
60:44:31:0f:cb:aa:22:e5:e9:f3:63:38:9d:2d:d0:fa:0a:8d:
d2:07:92:ef:ce:f0:6c:f7:a5:a1:ee:ff:f8:e5:ee:67:99:bd:
ff:13:40:8e:6f:db:ac:7f:19:1c:1b:02:bb:91:3f:ba:7c:9e:
9b:ee:0d:1d:93:22:bb:c8:b8:f2:c3:11:1c:4a:67:a3:65:e7:
11:f0:34:21:a2:73:44:dd:e9:0e:ad:7b:6f:52:bf:56:db:d9:
6a:d0:20:2d:c4:60:69:90:59:c0:55:6e:14:18:99:69:8f:93:
d6:d8:b0:39:61:6c:11:68:0f:76:2f:11:6a:2c:a5:cf:3a:12:
16:59:47:b2:ee:99:b9:55:12:6d:a7:6f:4b:69:57:30:42:64:
ae:a1:01:94:c7:c7:ca:9c:20:91:bf:1f:aa:45:bd:51:27:7c:
e1:c4:97:d9:bf:d1:dd:b0:9a:c7:34:04:c2:12:be:97:06:50:
35:32:cd:b6:db:55:3e:ef:31:19:7f:2c:d6:56:46:c1:cd:b1:
b6:10:02:da:2e:ff:aa:89:ab:90:a5:9f:7f:79:2a:55:cc:8f:
78:ad:bf:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 16:03:19 2025 by rpki-client