Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/34c5b2-b6e3-4b23-a609-16ed3cd0c72a/1/0GO9N8_ZU6mLb9HyR_ryM-55D8I.roa
File: 0GO9N8_ZU6mLb9HyR_ryM-55D8I.roa (raw, json)
Hash identifier: S6Bg53x69SGVZZJx8hMBIVFU+2Kh/XK3EVv62pKG+EU=
Subject key identifier: D0:63:BD:37:CF:D9:53:A9:8B:6F:D1:F2:47:FA:F2:33:EE:79:0F:C2
Certificate issuer: /CN=509bc63e68c90932b4fc28997fc3bf78de3b3743
Certificate serial: 0194266A3D2BBE63C42F557BB16B0E7ED714
Authority key identifier: 50:9B:C6:3E:68:C9:09:32:B4:FC:28:99:7F:C3:BF:78:DE:3B:37:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UJvGPmjJCTK0_CiZf8O_eN47N0M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/34c5b2-b6e3-4b23-a609-16ed3cd0c72a/1/0GO9N8_ZU6mLb9HyR_ryM-55D8I.roa
Signing time: Thu 02 Jan 2025 09:48:04 +0000
ROA not before: Thu 02 Jan 2025 09:48:04 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 198065
IP address blocks: 185.164.78.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6a:3d:2b:be:63:c4:2f:55:7b:b1:6b:0e:7e:d7:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=509bc63e68c90932b4fc28997fc3bf78de3b3743
Validity
Not Before: Jan 2 09:48:04 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d063bd37cfd953a98b6fd1f247faf233ee790fc2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:27:f6:63:e5:c8:3e:41:6a:0d:16:99:aa:df:
91:19:b5:78:b2:95:b4:60:3b:9e:69:7d:ff:79:4e:
00:be:f4:bd:df:87:17:4d:74:57:96:48:6b:0f:7d:
71:a6:7f:4c:07:d0:4c:db:77:35:e5:7c:67:9b:17:
20:02:4f:97:6e:0e:70:ff:81:52:c2:ae:fd:ab:41:
b3:12:ef:18:59:a0:4a:12:8f:30:a7:d8:a1:ba:80:
25:7f:62:8a:07:ae:30:d4:a2:eb:7a:8a:09:aa:6e:
47:74:39:86:8a:1c:44:43:df:76:18:73:17:41:f2:
dc:39:41:25:b2:a0:c1:64:b5:b2:08:03:ba:a8:37:
63:57:b3:5f:1b:e0:58:b2:dc:16:ad:2e:c9:6d:a3:
5e:79:36:37:96:58:d3:c5:3c:f4:37:ca:b2:aa:56:
71:06:7e:35:c2:c8:86:16:fa:70:dd:47:c6:81:b1:
82:95:83:73:de:85:50:cb:6d:20:27:13:7c:06:09:
14:89:1e:4b:a3:ff:af:01:9b:a1:2b:42:5e:a0:f2:
6b:d0:4e:e9:a1:49:05:72:e8:bf:f5:88:14:37:ce:
1a:9e:07:e5:36:52:5e:dc:b4:9e:28:43:7f:44:15:
32:2d:1d:a2:9b:5d:e6:2b:09:d6:8d:bd:6e:26:7a:
4f:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:63:BD:37:CF:D9:53:A9:8B:6F:D1:F2:47:FA:F2:33:EE:79:0F:C2
X509v3 Authority Key Identifier:
keyid:50:9B:C6:3E:68:C9:09:32:B4:FC:28:99:7F:C3:BF:78:DE:3B:37:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UJvGPmjJCTK0_CiZf8O_eN47N0M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/34c5b2-b6e3-4b23-a609-16ed3cd0c72a/1/0GO9N8_ZU6mLb9HyR_ryM-55D8I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/34c5b2-b6e3-4b23-a609-16ed3cd0c72a/1/UJvGPmjJCTK0_CiZf8O_eN47N0M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.164.78.0/24
Signature Algorithm: sha256WithRSAEncryption
78:ef:b9:58:b9:ae:d3:7c:05:82:5a:a4:e5:d2:f3:a1:a3:9d:
c4:4c:5d:4e:a1:f0:82:5f:c9:b7:fb:3a:aa:16:53:3f:bb:8f:
1c:64:eb:a9:20:56:e4:02:4f:ba:5a:d3:62:f2:e2:d4:9a:fb:
36:60:07:f7:d7:cc:14:cd:e6:c4:13:96:79:59:ca:dc:53:9e:
ea:8b:23:ae:6f:54:a6:d7:61:9a:6d:7e:51:7d:eb:0d:63:41:
36:d8:3b:5b:a8:a1:17:47:87:ac:f0:49:9a:6e:7f:42:6e:2c:
15:ea:d9:c0:52:3c:6b:5d:75:6c:fe:80:7e:46:9e:f8:cf:a5:
82:4e:69:d1:b0:9d:0d:2d:b8:8a:4e:ee:1a:47:f7:b5:0f:b0:
24:36:39:fe:c1:fa:0f:4a:79:ee:fc:50:0e:f6:94:7e:04:32:
a6:0c:a6:04:3b:8d:18:fa:87:c4:95:98:fd:0c:6c:74:40:90:
8f:c9:fb:c5:54:08:e4:cd:ce:fb:c0:c7:52:1d:3d:26:37:be:
9c:a0:e7:80:55:64:1f:3e:fd:c3:6b:b4:a2:93:bd:58:50:49:
0e:60:80:f0:88:bd:37:df:5e:02:13:87:7f:65:92:08:1d:c3:
25:47:c2:3a:0b:77:8d:b8:f5:73:2a:8b:dc:cb:d3:49:ec:7a:
be:a6:ea:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 08:23:35 2025 by rpki-client