Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/b66ff8-e2ab-483c-a373-4b7f375ecd06/1/M-zl6ZmtNK_TSwrT44MkMmFWsWY.roa
File: M-zl6ZmtNK_TSwrT44MkMmFWsWY.roa (raw, json)
Hash identifier: 4yxdkDwmfz59LnRbcG6OUavxv8vAR+8hlDkw2Ess8wU=
Subject key identifier: 33:EC:E5:E9:99:AD:34:AF:D3:4B:0A:D3:E3:83:24:32:61:56:B1:66
Certificate issuer: /CN=c15233af4ba59119d6ff194d7cd8665084a6ee77
Certificate serial: 019425FDB3D03FEAA86B5EACC236C5342B7B
Authority key identifier: C1:52:33:AF:4B:A5:91:19:D6:FF:19:4D:7C:D8:66:50:84:A6:EE:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wVIzr0ulkRnW_xlNfNhmUISm7nc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/b66ff8-e2ab-483c-a373-4b7f375ecd06/1/M-zl6ZmtNK_TSwrT44MkMmFWsWY.roa
Signing time: Thu 02 Jan 2025 07:49:30 +0000
ROA not before: Thu 02 Jan 2025 07:49:30 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 208617
IP address blocks: 185.160.204.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fd:b3:d0:3f:ea:a8:6b:5e:ac:c2:36:c5:34:2b:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c15233af4ba59119d6ff194d7cd8665084a6ee77
Validity
Not Before: Jan 2 07:49:30 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=33ece5e999ad34afd34b0ad3e38324326156b166
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:64:60:86:4b:36:3b:9c:5f:7a:19:94:95:55:
fe:63:d9:79:be:29:05:83:44:fd:dc:5d:6e:f3:32:
00:59:63:e8:a9:1f:33:3a:c9:ff:79:c3:24:ec:2f:
96:22:a6:c7:7c:1d:65:5d:39:f6:70:93:dd:1c:e5:
f8:f3:07:90:bd:d6:a0:79:d0:61:0a:0d:e9:24:21:
74:47:31:04:9e:64:ec:8f:03:8e:98:90:6f:94:75:
0d:b3:62:f6:8e:13:fe:af:72:3b:1f:3b:e9:63:0c:
95:90:78:e9:41:3f:cb:4f:03:11:58:54:07:57:c9:
b5:6b:11:05:19:30:1e:04:de:03:8c:a4:07:d6:f6:
6c:44:c0:e5:06:43:fb:14:cb:e2:d9:1b:59:5f:8d:
f5:5b:8c:c2:ba:a6:2c:a3:75:40:0c:87:2a:e7:68:
79:63:4e:b6:79:58:01:c1:51:0b:f3:06:dd:26:45:
41:dc:d9:7e:a0:ba:2b:20:21:5c:85:fe:80:67:19:
73:03:e5:2f:54:62:48:48:dd:fb:88:2b:de:6d:56:
e4:48:08:9b:28:b5:14:88:fc:16:7a:55:4b:30:b1:
ba:08:7d:29:d3:19:34:a0:d5:be:9b:cc:cc:03:07:
68:6a:18:01:ab:48:b1:43:c3:26:e0:8a:8d:0c:f1:
14:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:EC:E5:E9:99:AD:34:AF:D3:4B:0A:D3:E3:83:24:32:61:56:B1:66
X509v3 Authority Key Identifier:
keyid:C1:52:33:AF:4B:A5:91:19:D6:FF:19:4D:7C:D8:66:50:84:A6:EE:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wVIzr0ulkRnW_xlNfNhmUISm7nc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/b66ff8-e2ab-483c-a373-4b7f375ecd06/1/M-zl6ZmtNK_TSwrT44MkMmFWsWY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/b66ff8-e2ab-483c-a373-4b7f375ecd06/1/wVIzr0ulkRnW_xlNfNhmUISm7nc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.160.204.0/24
Signature Algorithm: sha256WithRSAEncryption
99:72:72:25:60:70:82:76:b9:98:0b:8d:d3:8f:46:8b:74:09:
66:6b:36:82:e2:9f:4b:97:ca:06:61:55:e6:5c:e3:c7:eb:e5:
5b:11:d0:ee:fc:f1:42:e4:b6:e2:28:3c:a8:cf:85:cb:c1:eb:
0b:38:54:a3:23:ec:93:88:ea:19:a9:8f:27:72:a6:f6:77:a5:
f9:52:db:4a:65:04:12:73:ba:2c:ba:65:9b:01:b4:c1:d6:31:
ca:4f:e8:53:a3:d5:4f:37:10:80:5c:35:32:e7:1a:ff:9c:9c:
87:06:9f:3c:88:37:8f:ff:a5:79:42:74:7a:f0:e3:e7:a3:b4:
95:e0:f5:ab:7d:58:19:b2:4e:c5:43:a5:5b:23:e0:69:cb:b0:
90:4d:17:6b:5a:26:59:4d:05:e3:8d:26:e9:ce:cf:82:15:95:
18:60:c4:d1:1f:94:c6:c9:83:24:f7:ce:04:9e:6b:e6:f7:7b:
56:a7:1a:19:90:c6:e0:6d:17:27:ec:5a:28:f6:02:94:81:47:
f9:e0:65:fd:6e:91:51:52:24:16:69:7f:35:7a:c1:5b:3a:e9:
f7:ba:83:40:d3:fc:13:d7:1e:62:b2:cb:e6:93:a1:c3:98:f7:
0a:ba:fa:6e:10:74:8c:f2:f3:ab:c3:ce:d1:ab:37:51:86:9f:
20:08:dc:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 07:50:11 2025 by rpki-client