Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/f52cea-3f41-482b-8ce8-2e2548310df3/1/xG6V-ZBOkUvyT-WvdOCbpNGBhno.roa
File: xG6V-ZBOkUvyT-WvdOCbpNGBhno.roa (raw, json)
Hash identifier: Naq65ENl+tsrgyE3t3NO3AfPirgJokBnbdzMIvkSOwo=
Subject key identifier: C4:6E:95:F9:90:4E:91:4B:F2:4F:E5:AF:74:E0:9B:A4:D1:81:86:7A
Certificate issuer: /CN=bb61df71f97461c6b3b4548fdcfecd77b679030f
Certificate serial: 019420D63F2D4873BE31893C27BE470FB1BF
Authority key identifier: BB:61:DF:71:F9:74:61:C6:B3:B4:54:8F:DC:FE:CD:77:B6:79:03:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u2Hfcfl0YcaztFSP3P7Nd7Z5Aw8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/f52cea-3f41-482b-8ce8-2e2548310df3/1/xG6V-ZBOkUvyT-WvdOCbpNGBhno.roa
Signing time: Wed 01 Jan 2025 07:48:19 +0000
ROA not before: Wed 01 Jan 2025 07:48:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 41678
IP address blocks: 185.4.12.0/24 maxlen: 24
185.4.13.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d6:3f:2d:48:73:be:31:89:3c:27:be:47:0f:b1:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb61df71f97461c6b3b4548fdcfecd77b679030f
Validity
Not Before: Jan 1 07:48:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c46e95f9904e914bf24fe5af74e09ba4d181867a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:16:17:57:4d:ad:3c:33:fa:7c:b3:98:b1:e5:
89:31:69:36:7c:5a:e5:df:a8:46:c7:37:03:da:96:
79:a0:37:53:db:d2:6b:2c:84:77:68:8b:ae:e7:62:
f7:94:0e:b0:58:9e:97:73:76:56:47:66:ed:20:9c:
a0:96:5d:4c:cc:d4:af:e3:ae:7a:72:71:c1:a6:c5:
6e:3e:5e:e3:d6:2e:04:f7:75:aa:06:f6:00:7a:d3:
35:8a:4c:03:c7:0b:9e:64:03:12:cf:06:49:f6:8e:
90:02:f5:32:0b:3b:60:88:a7:c6:74:81:fb:de:d6:
2a:59:96:f7:0f:e4:7a:33:0b:04:f3:4a:70:34:72:
aa:ec:b5:46:5b:8a:9c:15:09:48:be:01:3f:73:24:
68:7f:42:ed:ba:86:74:88:c9:1d:ea:80:6e:47:79:
c0:bb:17:59:88:10:7b:48:f4:01:36:3c:63:f6:0a:
59:57:51:29:d9:dd:e4:18:df:60:5e:98:10:0a:10:
a1:b3:8e:62:8b:eb:e3:fa:0d:4a:5f:82:8d:c3:7e:
52:ab:13:f7:7e:bc:30:7d:a9:e6:38:0c:94:e0:95:
d6:27:e1:9b:c5:58:41:62:82:e6:45:23:e8:2d:7b:
bf:78:bd:7d:b5:35:3b:0a:7c:36:50:7e:68:00:3b:
ef:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:6E:95:F9:90:4E:91:4B:F2:4F:E5:AF:74:E0:9B:A4:D1:81:86:7A
X509v3 Authority Key Identifier:
keyid:BB:61:DF:71:F9:74:61:C6:B3:B4:54:8F:DC:FE:CD:77:B6:79:03:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u2Hfcfl0YcaztFSP3P7Nd7Z5Aw8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/f52cea-3f41-482b-8ce8-2e2548310df3/1/xG6V-ZBOkUvyT-WvdOCbpNGBhno.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/f52cea-3f41-482b-8ce8-2e2548310df3/1/u2Hfcfl0YcaztFSP3P7Nd7Z5Aw8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.4.12.0/23
Signature Algorithm: sha256WithRSAEncryption
48:da:8a:de:26:a7:44:24:64:48:0a:d4:eb:7b:54:04:44:32:
44:2d:25:ed:14:77:51:0d:aa:ca:39:da:51:69:0e:f1:09:68:
40:0c:80:0d:78:8f:17:2c:a1:ae:b2:c6:f6:20:b6:76:4f:31:
8b:e8:a6:c5:f5:91:b1:24:4b:7c:e7:85:9f:55:21:7c:1d:b5:
a8:9b:3d:6a:a3:00:5d:18:cc:22:50:68:c8:1c:eb:ab:b9:26:
7f:fc:d5:59:b1:f8:4a:b5:23:90:df:9a:2c:da:c8:5c:d1:91:
1a:1a:46:d6:86:b9:10:8a:c4:1b:74:0e:20:b6:4c:47:4f:01:
80:33:9c:99:85:3e:5b:ef:a8:8c:e8:2f:90:2e:91:60:32:3d:
e6:06:4b:f1:8d:15:38:19:69:d4:f6:0a:22:18:d8:1a:92:70:
9e:71:09:3c:b6:3b:e6:98:ae:ce:85:df:5b:1e:02:cb:d0:44:
25:29:2f:3d:ca:01:d1:f2:83:40:be:b8:6e:fb:65:d0:fa:f4:
b4:a5:3b:b0:41:57:2b:fd:f7:04:bb:70:bf:14:8d:b7:d2:30:
d1:25:95:15:4f:39:57:42:04:19:1f:7e:1c:b6:82:2c:43:4f:
1e:e4:89:3e:40:f6:6d:94:d4:6a:8c:8e:14:e8:54:a2:ab:29:
b1:91:eb:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:34 2025 by rpki-client on console.sobornost.net