Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/60fc0d-0eb9-424c-a630-9a5c73bffa23/1/SZpd9qPeF2_UcZ0BFTiD1uQx6CE.roa
File: SZpd9qPeF2_UcZ0BFTiD1uQx6CE.roa (raw, json)
Hash identifier: 4d7c/yFsOUlnwxOih4L4b458874C6mb5/7y63/As6E0=
Subject key identifier: 49:9A:5D:F6:A3:DE:17:6F:D4:71:9D:01:15:38:83:D6:E4:31:E8:21
Certificate issuer: /CN=8a31f8bea33b0056446e3321eede3a170fbd7c1f
Certificate serial: 019424459B51CEE918A907B4C81BF90DD7E2
Authority key identifier: 8A:31:F8:BE:A3:3B:00:56:44:6E:33:21:EE:DE:3A:17:0F:BD:7C:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ijH4vqM7AFZEbjMh7t46Fw-9fB8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/60fc0d-0eb9-424c-a630-9a5c73bffa23/1/SZpd9qPeF2_UcZ0BFTiD1uQx6CE.roa
Signing time: Wed 01 Jan 2025 23:48:48 +0000
ROA not before: Wed 01 Jan 2025 23:48:48 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 201047
IP address blocks: 37.18.185.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:9b:51:ce:e9:18:a9:07:b4:c8:1b:f9:0d:d7:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a31f8bea33b0056446e3321eede3a170fbd7c1f
Validity
Not Before: Jan 1 23:48:48 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=499a5df6a3de176fd4719d01153883d6e431e821
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:8b:f2:99:63:0f:77:6d:32:77:0f:0d:26:d6:
82:08:db:9b:75:b8:5b:f2:e1:c0:39:3f:86:a0:d0:
49:e5:9e:af:16:73:82:84:14:d1:b3:72:62:01:d1:
a2:52:d0:e1:68:32:09:33:ce:58:8c:ae:5c:f8:94:
b7:94:36:3d:73:83:63:f8:05:1e:ae:f4:79:21:8e:
39:59:cf:dc:51:57:3e:1e:2c:23:e4:f9:15:bf:a5:
ee:d1:14:f1:a9:fd:6b:93:2d:7e:fd:35:ad:84:bc:
b8:a5:67:ad:a4:ab:e8:67:95:5a:e5:b3:33:8e:a4:
84:f2:ac:86:85:29:19:a1:b9:cd:80:ae:2f:ef:9a:
e3:a7:53:df:6f:b0:65:b2:eb:e9:e9:a6:c9:dd:58:
91:e1:e6:be:01:53:d5:47:9b:f5:bb:82:c5:16:58:
f9:af:13:0c:52:5b:ea:7c:fa:f0:be:ab:0c:4c:89:
e6:77:a3:fd:72:53:20:08:dd:04:f4:21:12:6b:25:
a3:3c:36:c3:dc:94:8b:fc:e5:47:c4:06:4e:72:14:
83:98:b9:ad:47:2a:b5:59:a8:cc:93:13:78:08:f2:
e2:e9:68:f7:4a:19:12:a6:a2:f9:fa:1a:7b:11:ab:
ca:bb:2a:b5:3d:cf:fc:6d:54:ac:de:63:e5:37:b3:
e4:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:9A:5D:F6:A3:DE:17:6F:D4:71:9D:01:15:38:83:D6:E4:31:E8:21
X509v3 Authority Key Identifier:
keyid:8A:31:F8:BE:A3:3B:00:56:44:6E:33:21:EE:DE:3A:17:0F:BD:7C:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ijH4vqM7AFZEbjMh7t46Fw-9fB8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/60fc0d-0eb9-424c-a630-9a5c73bffa23/1/SZpd9qPeF2_UcZ0BFTiD1uQx6CE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/60fc0d-0eb9-424c-a630-9a5c73bffa23/1/ijH4vqM7AFZEbjMh7t46Fw-9fB8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.18.185.0/24
Signature Algorithm: sha256WithRSAEncryption
12:48:5c:77:59:bd:fe:3d:0f:7d:8a:cc:29:82:1c:92:80:2a:
d9:1f:df:6a:97:b8:6d:4e:63:4b:93:b9:ba:7a:e0:90:bd:00:
4f:78:40:21:dc:31:17:03:c2:5b:31:0b:7b:66:27:f3:85:ff:
27:6e:fd:94:43:a6:07:ff:59:8f:a0:41:01:5a:45:2f:19:04:
3e:5f:e6:0e:74:4b:22:76:2e:fc:db:39:9b:8c:87:f0:89:13:
a3:b0:b2:99:42:d0:f2:e0:06:30:8b:92:fd:71:6c:80:87:40:
b7:8a:fc:15:bc:32:f8:e6:63:48:a5:e1:17:1a:e7:29:e5:8b:
c2:7b:d9:96:11:f8:87:b8:52:2b:be:a5:fa:d4:12:d6:88:f3:
24:b4:af:02:b4:86:2f:ba:7c:2a:5c:8d:18:77:2c:43:7a:ee:
d7:8e:40:df:a3:e1:f2:72:a4:52:df:0b:29:01:d3:f8:bb:10:
26:74:6b:0b:c5:f2:83:c9:11:d6:e9:89:19:46:04:86:29:db:
24:42:05:7a:ae:b6:45:2d:23:6c:ef:c5:c0:cb:0e:68:4e:d4:
d4:9d:1e:90:69:40:df:e2:0a:c2:f9:11:7a:0a:00:5c:d2:e2:
c1:ed:58:03:8b:aa:8a:76:2d:0b:a6:99:3c:f6:b7:f4:18:14:
ec:c4:8e:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 06:09:54 2025 by rpki-client