Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/936cbb-bac4-4fde-8def-febc1ed3ceba/1/JY9LzlIgT9I57_KE7zrrGS7E8Qk.roa
File: JY9LzlIgT9I57_KE7zrrGS7E8Qk.roa (raw, json)
Hash identifier: pG1i5yA4B+HIYkYc64ggfa0dVvkWYyImVKQY1Fkl/ng=
Subject key identifier: 25:8F:4B:CE:52:20:4F:D2:39:EF:F2:84:EF:3A:EB:19:2E:C4:F1:09
Certificate issuer: /CN=89edfa414944d010ac69ee5bfb22773b24b27efb
Certificate serial: 019426D9EDAC77005148AEF53B373EB73FA0
Authority key identifier: 89:ED:FA:41:49:44:D0:10:AC:69:EE:5B:FB:22:77:3B:24:B2:7E:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ie36QUlE0BCsae5b-yJ3OySyfvs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/936cbb-bac4-4fde-8def-febc1ed3ceba/1/JY9LzlIgT9I57_KE7zrrGS7E8Qk.roa
Signing time: Thu 02 Jan 2025 11:50:03 +0000
ROA not before: Thu 02 Jan 2025 11:50:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 42708
IP address blocks: 185.36.145.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:ed:ac:77:00:51:48:ae:f5:3b:37:3e:b7:3f:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89edfa414944d010ac69ee5bfb22773b24b27efb
Validity
Not Before: Jan 2 11:50:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=258f4bce52204fd239eff284ef3aeb192ec4f109
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:6d:c7:48:6b:2c:e6:4a:45:4d:bb:30:fa:f1:
6f:9e:c0:87:e8:0e:84:ed:71:53:1d:cd:e8:6b:11:
0a:22:15:74:51:40:b8:29:7b:90:9b:83:68:81:87:
13:0e:bf:7b:0b:74:bb:0a:7b:b9:22:90:f7:b9:5c:
8f:20:27:ec:f5:8e:53:39:e3:5d:b8:f6:8c:30:87:
ce:e6:bb:61:96:80:1f:49:a7:8b:97:51:78:7e:24:
8a:54:0b:7a:14:5c:80:5e:0b:6a:46:03:96:1f:a8:
2d:ce:ba:7f:4f:3b:a2:7c:69:54:5c:19:c6:92:3a:
b0:6a:81:e3:b6:50:0d:0f:41:c8:39:ff:e7:7f:d9:
e8:0f:e0:e1:92:93:de:b6:f7:e6:73:b0:f3:b4:42:
d9:da:bc:e0:51:1b:e3:27:f0:7d:06:23:0f:4b:a9:
2f:2d:bf:b6:19:08:f4:8e:ff:dc:df:d5:17:88:2a:
1a:75:f8:ba:fa:73:d8:96:59:ae:92:de:c5:95:a7:
c6:16:f4:c8:35:fd:73:1c:58:e4:85:9e:81:9a:24:
a8:72:35:8b:76:49:b6:97:5c:7f:eb:3f:b2:80:06:
b3:4b:fa:9b:fd:fe:81:6a:e7:02:bb:81:18:27:62:
d9:1d:27:2f:81:5e:29:a6:8d:90:20:bc:b2:7c:3a:
61:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:8F:4B:CE:52:20:4F:D2:39:EF:F2:84:EF:3A:EB:19:2E:C4:F1:09
X509v3 Authority Key Identifier:
keyid:89:ED:FA:41:49:44:D0:10:AC:69:EE:5B:FB:22:77:3B:24:B2:7E:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ie36QUlE0BCsae5b-yJ3OySyfvs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/936cbb-bac4-4fde-8def-febc1ed3ceba/1/JY9LzlIgT9I57_KE7zrrGS7E8Qk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/936cbb-bac4-4fde-8def-febc1ed3ceba/1/ie36QUlE0BCsae5b-yJ3OySyfvs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.36.145.0/24
Signature Algorithm: sha256WithRSAEncryption
36:e9:6d:d8:9e:ca:dd:e9:ad:c0:82:49:27:a5:61:87:23:2f:
86:98:af:96:bc:08:7a:54:fb:19:e3:17:3d:8c:75:22:55:9f:
08:64:b9:1a:10:96:ba:40:d3:bb:48:eb:f2:1b:57:cf:45:b5:
12:85:e4:96:db:39:89:b5:1a:5a:ab:33:a7:22:21:0b:ca:42:
68:98:bc:f1:64:d7:f3:a8:67:61:a3:b4:84:81:37:2f:09:b6:
56:10:e4:e5:0d:97:27:4f:63:bb:ec:08:42:60:e5:40:0d:7c:
99:15:93:5f:5a:e5:45:30:7b:6f:6e:ee:41:7a:c6:d2:93:28:
3a:ef:46:d4:e4:ed:16:2b:b0:92:56:2f:25:ec:01:9d:db:a8:
6a:8e:b4:1c:11:31:da:09:80:8e:99:92:77:a1:68:0b:b2:ff:
14:f4:65:06:2e:d6:7a:16:4f:39:63:3f:fe:68:3e:c8:75:11:
0d:8f:2c:ae:6b:5a:29:fd:8f:26:e7:03:01:b8:fe:ce:97:7d:
27:4e:5d:c3:0d:19:9a:53:06:8d:f4:9a:6e:3f:62:ac:b5:38:
99:7d:28:c7:8a:27:a9:31:73:09:aa:12:0c:f9:f5:9c:3a:9e:
69:21:93:43:1d:d8:14:56:6d:39:9c:9a:0e:1b:95:e5:9a:36:
97:82:5d:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 07:57:31 2025 by rpki-client