Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/0e90f9-e8d3-4562-a5b3-621ee052a6fc/1/8nN37M1QVwo5aZKuWF1RmWIGMrA.roa
File: 8nN37M1QVwo5aZKuWF1RmWIGMrA.roa (raw, json)
Hash identifier: m5iDAmHHoP/uBIylHZnsa9E5u1gm5LV/GCFP/fDqwqY=
Subject key identifier: F2:73:77:EC:CD:50:57:0A:39:69:92:AE:58:5D:51:99:62:06:32:B0
Certificate issuer: /CN=23cbbf9348ae558c6efa0c086f24be04cb23c6e9
Certificate serial: 019483F5B8DA6207B5987BE068068B707BB4
Authority key identifier: 23:CB:BF:93:48:AE:55:8C:6E:FA:0C:08:6F:24:BE:04:CB:23:C6:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I8u_k0iuVYxu-gwIbyS-BMsjxuk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/0e90f9-e8d3-4562-a5b3-621ee052a6fc/1/8nN37M1QVwo5aZKuWF1RmWIGMrA.roa
Signing time: Mon 20 Jan 2025 13:45:06 +0000
ROA not before: Mon 20 Jan 2025 13:45:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215733
IP address blocks: 185.24.232.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:83:f5:b8:da:62:07:b5:98:7b:e0:68:06:8b:70:7b:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23cbbf9348ae558c6efa0c086f24be04cb23c6e9
Validity
Not Before: Jan 20 13:45:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f27377eccd50570a396992ae585d5199620632b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:0e:6a:27:98:50:5b:a4:c9:ec:25:19:63:0b:
d6:b3:70:06:cf:2c:90:1a:56:c6:bf:83:63:ee:77:
ff:ad:ad:9e:41:88:ac:d5:dd:ce:2e:e6:6a:e5:be:
cf:78:e5:95:50:91:be:66:de:88:51:ec:d9:d7:b6:
e7:be:5d:42:e0:50:5c:e6:b1:c8:0d:3e:f9:fd:fd:
4f:2b:c2:4f:ed:91:87:80:a9:60:40:da:7c:52:f6:
0d:6b:95:7f:f4:ce:54:08:e5:8f:88:3e:fa:c9:0c:
17:16:85:53:65:aa:c8:44:c0:39:13:12:07:99:84:
6f:19:a1:ba:03:1a:55:39:41:18:68:a4:6e:92:df:
7d:2e:28:71:3d:cc:51:09:c5:bc:b0:9b:bf:a7:9c:
22:e3:0d:6d:fb:f8:f7:28:65:5d:d7:f6:00:53:43:
e3:af:2a:88:10:07:5f:b5:86:30:17:2a:c1:ec:e1:
48:4b:0a:f7:75:2e:80:1a:b8:79:cd:9a:89:82:4e:
05:a6:83:4d:e4:04:54:41:d1:47:a5:94:c3:c1:ba:
e3:b7:17:f8:25:c5:59:a9:51:e3:25:d2:e7:5d:fb:
48:92:8d:5d:d5:f7:42:c3:f3:ae:3e:bc:80:5c:ee:
ba:df:d7:12:04:53:6a:c8:5b:85:70:bc:2b:fe:13:
14:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:73:77:EC:CD:50:57:0A:39:69:92:AE:58:5D:51:99:62:06:32:B0
X509v3 Authority Key Identifier:
keyid:23:CB:BF:93:48:AE:55:8C:6E:FA:0C:08:6F:24:BE:04:CB:23:C6:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I8u_k0iuVYxu-gwIbyS-BMsjxuk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/0e90f9-e8d3-4562-a5b3-621ee052a6fc/1/8nN37M1QVwo5aZKuWF1RmWIGMrA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/0e90f9-e8d3-4562-a5b3-621ee052a6fc/1/I8u_k0iuVYxu-gwIbyS-BMsjxuk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.24.232.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:8e:70:5c:0d:02:17:11:a7:57:b3:28:ba:d7:6a:ab:43:87:
e4:7b:3d:d0:65:77:39:7e:6c:08:6b:76:2a:04:c0:59:13:2a:
4b:f8:cd:75:e1:16:89:19:9a:b7:12:09:74:72:09:85:fd:9d:
b0:e5:58:11:f6:c3:30:db:b4:8d:d6:ac:d5:4f:9b:04:fc:1d:
67:3d:33:05:16:c1:23:57:82:59:53:fa:bb:e3:86:7c:cc:46:
87:87:2b:ad:bd:a7:8c:44:b4:b6:77:a0:c3:cb:a4:55:1d:a8:
aa:94:1f:5e:3b:a9:fb:2c:97:0f:39:f7:1f:90:37:05:40:d3:
e8:ce:1a:4a:ee:58:72:3b:a1:bc:85:18:34:13:f1:34:74:55:
4a:b6:1a:cb:e9:31:e1:5b:9f:b0:e4:ea:e6:18:ed:82:62:93:
23:b9:c4:92:37:f5:91:b4:14:b0:d5:75:27:0c:8f:19:8a:98:
8f:a6:56:9c:db:6b:07:bf:04:a7:76:f3:11:8f:67:5e:38:ec:
48:99:59:fd:06:40:30:44:43:3a:29:27:be:19:9c:ee:4b:a4:
34:ce:6a:fe:c1:39:0b:60:96:2c:eb:23:c5:24:7b:66:5f:bb:
52:c9:01:69:7e:5c:95:42:44:4e:af:ce:c3:9f:50:20:92:b2:
ba:d8:77:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 06:09:26 2025 by rpki-client