Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/861400-edf2-40eb-8ea6-f0227fc953dd/1/nLNsFwXzKmaIf0xxELCygxu--b0.roa
File: nLNsFwXzKmaIf0xxELCygxu--b0.roa (raw, json)
Hash identifier: NM2hkFf7SZBLV+ZbCgA9htwtXLeE3pbzj1ii9W8hiKY=
Subject key identifier: 9C:B3:6C:17:05:F3:2A:66:88:7F:4C:71:10:B0:B2:83:1B:BE:F9:BD
Certificate issuer: /CN=62df8bede80e561f92707d898918d69e4b851102
Certificate serial: 0186032D55763F9391E8DF4B2AFF7F1461F6
Authority key identifier: 62:DF:8B:ED:E8:0E:56:1F:92:70:7D:89:89:18:D6:9E:4B:85:11:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yt-L7egOVh-ScH2JiRjWnkuFEQI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/861400-edf2-40eb-8ea6-f0227fc953dd/1/nLNsFwXzKmaIf0xxELCygxu--b0.roa
Signing time: Mon 30 Jan 2023 14:55:48 +0000
ROA not before: Mon 30 Jan 2023 14:55:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198356
IP address blocks: 185.232.166.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:03:2d:55:76:3f:93:91:e8:df:4b:2a:ff:7f:14:61:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62df8bede80e561f92707d898918d69e4b851102
Validity
Not Before: Jan 30 14:55:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9cb36c1705f32a66887f4c7110b0b2831bbef9bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:14:dc:24:b2:ec:7e:c0:c5:95:27:74:6e:f8:
56:e5:6f:13:87:dd:1e:a8:97:87:db:78:2f:d9:05:
10:4c:61:51:ef:5a:7a:78:6f:70:0a:6d:05:e7:b6:
50:9c:46:fa:d6:cb:1d:be:bc:45:03:18:92:7d:4e:
57:59:89:60:a8:e6:5c:3a:80:81:9d:d3:f6:3b:10:
36:2e:21:86:d5:38:b4:a0:89:b7:47:38:41:b1:37:
37:f4:ce:8a:99:f1:cb:3c:69:24:1b:67:70:81:1a:
93:eb:b3:b5:b2:e2:3a:31:79:2a:f9:49:cc:9f:24:
75:ca:bc:86:df:b3:f2:a6:93:7b:58:e9:e0:c3:cc:
2d:f3:84:db:c8:a7:32:74:d9:a2:9f:85:e9:1e:14:
09:ca:9b:a4:da:90:70:e3:d0:7d:50:c3:68:a9:c4:
88:7b:7b:5d:a8:8c:23:cd:29:99:49:e0:7a:a4:4f:
82:06:03:6c:3e:e7:e1:ec:7d:9f:23:5d:e3:c0:61:
8f:e8:53:15:6e:1f:45:02:12:35:91:9c:74:d9:83:
b3:13:97:ef:b4:16:d1:30:b6:d7:13:87:8c:13:78:
b2:94:ab:04:84:27:e2:26:79:a6:2e:63:dc:2b:7e:
85:2d:b7:42:26:c9:df:a0:09:9c:15:c2:e4:e2:f2:
53:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:B3:6C:17:05:F3:2A:66:88:7F:4C:71:10:B0:B2:83:1B:BE:F9:BD
X509v3 Authority Key Identifier:
keyid:62:DF:8B:ED:E8:0E:56:1F:92:70:7D:89:89:18:D6:9E:4B:85:11:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yt-L7egOVh-ScH2JiRjWnkuFEQI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/861400-edf2-40eb-8ea6-f0227fc953dd/1/nLNsFwXzKmaIf0xxELCygxu--b0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/861400-edf2-40eb-8ea6-f0227fc953dd/1/Yt-L7egOVh-ScH2JiRjWnkuFEQI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.232.166.0/24
Signature Algorithm: sha256WithRSAEncryption
25:a7:c7:c7:22:2e:f9:1e:a9:f4:a6:93:f3:4f:f2:6b:f6:e3:
f5:cc:b2:67:6d:ea:c6:f3:74:d9:93:63:03:ef:33:93:40:64:
18:2b:a1:fd:56:6b:d5:04:3a:06:f1:a2:76:d6:99:1d:60:d6:
10:5e:c2:93:2c:23:e0:33:c1:fe:5d:df:51:0d:2f:c5:07:90:
45:78:87:24:ac:09:d3:57:b7:06:1f:a4:be:6e:1c:ab:7f:62:
6b:c7:90:ae:9e:a3:d3:51:f2:ad:52:1c:e3:42:97:9a:ab:07:
26:f6:58:12:16:84:fd:90:a0:6f:fe:46:6a:c9:2f:98:40:47:
4e:d5:bf:59:31:02:6b:97:51:fe:0f:c5:ab:6e:2f:31:f8:9d:
f6:33:c4:df:e5:ad:54:55:3e:52:cd:31:30:3a:e6:e4:89:f6:
c2:08:00:b0:dc:16:94:df:20:21:3a:00:af:22:b5:d1:8e:b1:
a8:bc:82:54:8c:c1:2c:05:71:ff:16:b0:8d:e6:78:c1:71:26:
c8:d2:2e:8d:a6:d8:0d:bf:c2:15:24:08:16:d8:f6:60:04:2c:
42:b8:1f:78:80:16:3a:3f:37:34:2f:a5:46:fa:ef:a2:23:00:
1a:c2:56:b7:38:08:b9:2d:23:46:d5:95:10:e3:96:a2:a3:27:
47:81:13:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 04:13:31 2025 by rpki-client