Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/a85f3d-65a2-4f6c-9cb9-82660ee4eac4/1/v3bh2N4thqCv2jw1YX5PjUcZEd0.roa
File: v3bh2N4thqCv2jw1YX5PjUcZEd0.roa (raw, json)
Hash identifier: nIfMLuntg2xncQRj0ShSY9tFssqvjsfpfyRvdL0VSvM=
Subject key identifier: BF:76:E1:D8:DE:2D:86:A0:AF:DA:3C:35:61:7E:4F:8D:47:19:11:DD
Certificate issuer: /CN=dc3cb20c5ca7c4ed8e42078b1a67287a0d991cec
Certificate serial: 019424459065C9E9074DE157EC35EEA0932B
Authority key identifier: DC:3C:B2:0C:5C:A7:C4:ED:8E:42:07:8B:1A:67:28:7A:0D:99:1C:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3DyyDFynxO2OQgeLGmcoeg2ZHOw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/a85f3d-65a2-4f6c-9cb9-82660ee4eac4/1/v3bh2N4thqCv2jw1YX5PjUcZEd0.roa
Signing time: Wed 01 Jan 2025 23:48:46 +0000
ROA not before: Wed 01 Jan 2025 23:48:46 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 208711
IP address blocks: 185.92.247.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:90:65:c9:e9:07:4d:e1:57:ec:35:ee:a0:93:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc3cb20c5ca7c4ed8e42078b1a67287a0d991cec
Validity
Not Before: Jan 1 23:48:46 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=bf76e1d8de2d86a0afda3c35617e4f8d471911dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:5f:c7:63:a5:72:f7:b3:17:21:22:c0:ea:69:
7b:40:ed:e7:76:37:87:96:2d:0f:66:6d:d2:22:5a:
4b:68:c6:4a:91:8d:2a:38:4f:75:ec:d5:97:3a:66:
a4:1a:e4:4e:b4:91:70:d0:36:9c:28:a1:15:d2:c8:
69:af:2f:fc:01:d2:c8:f1:8c:65:b4:34:fd:29:70:
91:a3:b3:e9:bc:79:1e:74:74:51:b8:1b:6c:0b:e3:
af:5b:ad:a8:18:a3:48:fb:cd:a3:58:69:a7:b2:95:
34:14:24:f6:e6:fc:51:e8:72:34:f3:c6:33:44:1a:
c0:01:66:72:39:7a:54:21:09:06:8d:d3:a8:4e:f0:
68:7e:bb:a5:06:54:c0:1d:9c:b3:86:97:aa:eb:40:
c7:81:ec:3d:fc:04:95:57:90:9d:1a:29:a4:1e:f7:
93:03:26:c3:5b:fc:0f:ef:40:f3:84:b0:2f:31:c8:
38:45:1d:c0:98:3a:d4:8c:c8:99:bf:f5:95:4d:d6:
54:1e:41:61:32:09:60:91:a9:6b:f5:05:43:b1:5d:
18:dd:dc:61:0e:0a:86:d6:da:20:51:71:a0:9a:c5:
f5:48:cc:a9:17:31:89:89:4b:06:1f:34:b8:db:25:
d0:61:10:36:04:26:cb:b4:ac:12:74:30:2a:cf:08:
a8:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:76:E1:D8:DE:2D:86:A0:AF:DA:3C:35:61:7E:4F:8D:47:19:11:DD
X509v3 Authority Key Identifier:
keyid:DC:3C:B2:0C:5C:A7:C4:ED:8E:42:07:8B:1A:67:28:7A:0D:99:1C:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3DyyDFynxO2OQgeLGmcoeg2ZHOw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/a85f3d-65a2-4f6c-9cb9-82660ee4eac4/1/v3bh2N4thqCv2jw1YX5PjUcZEd0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/a85f3d-65a2-4f6c-9cb9-82660ee4eac4/1/3DyyDFynxO2OQgeLGmcoeg2ZHOw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.92.247.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:50:6f:d5:10:c6:91:84:bd:60:16:fd:32:94:38:9c:02:c7:
57:e2:f0:4c:a5:ef:e1:69:92:3e:02:49:73:07:40:5b:63:f1:
ea:95:21:43:4c:0a:73:c4:29:17:76:a5:b9:58:ed:9a:1c:9e:
e5:30:64:e2:79:c5:26:51:b0:08:cc:d4:64:95:94:cf:74:d5:
20:f4:7e:b5:bd:d8:1b:92:33:18:9b:5f:df:2d:58:20:96:73:
74:ad:4d:e9:fa:9d:f9:ef:3c:80:06:14:e7:36:5a:c3:48:bc:
49:30:b6:b7:98:a5:4d:6b:ca:a1:82:97:ff:69:d8:78:78:0f:
c8:e1:48:17:2f:5c:2b:f2:2b:5f:6b:79:80:26:6f:3e:f3:a6:
ba:23:4d:67:0e:c8:b8:3b:96:47:ec:7b:66:bf:e3:34:af:0b:
b6:21:bf:3d:96:5a:ef:f5:18:ef:b5:eb:19:53:64:16:fc:87:
ab:da:6f:32:0f:36:11:93:1c:9b:c8:49:c4:da:99:d2:f7:9a:
48:85:3d:0b:2e:8b:6a:e7:4d:ac:06:61:16:31:1f:38:93:1c:
79:29:68:9b:f2:51:31:83:bf:b4:e3:20:f2:51:98:5b:b9:db:
fd:1e:d8:2d:6c:13:d3:8d:2d:3d:ab:d3:e3:fc:dd:a5:19:2c:
ab:18:09:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 18:19:50 2025 by rpki-client