Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/b25cf4-0a35-4bdb-9dcd-ee16086cfc72/1/TF7nAj58d6ltPhTUNcDwpZ4Ncic.roa
File: TF7nAj58d6ltPhTUNcDwpZ4Ncic.roa (raw, json)
Hash identifier: bLmXSoYJumVpK9YJA9L+Jf2+aVCyzGG5sj4lmj+Mw7M=
Subject key identifier: 4C:5E:E7:02:3E:7C:77:A9:6D:3E:14:D4:35:C0:F0:A5:9E:0D:72:27
Certificate issuer: /CN=1683805319d8485584dc39cf5381583fb6431d7a
Certificate serial: 01941FFA096E9ED803C37E391A993ACA2937
Authority key identifier: 16:83:80:53:19:D8:48:55:84:DC:39:CF:53:81:58:3F:B6:43:1D:7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FoOAUxnYSFWE3DnPU4FYP7ZDHXo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/b25cf4-0a35-4bdb-9dcd-ee16086cfc72/1/TF7nAj58d6ltPhTUNcDwpZ4Ncic.roa
Signing time: Wed 01 Jan 2025 03:47:47 +0000
ROA not before: Wed 01 Jan 2025 03:47:47 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 205189
IP address blocks: 185.226.216.0/24 maxlen: 24
185.226.217.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:09:6e:9e:d8:03:c3:7e:39:1a:99:3a:ca:29:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1683805319d8485584dc39cf5381583fb6431d7a
Validity
Not Before: Jan 1 03:47:47 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4c5ee7023e7c77a96d3e14d435c0f0a59e0d7227
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:0c:66:ab:05:f1:c9:b1:e4:dd:84:bd:ba:83:
b7:7e:71:1e:21:fa:ed:d1:5d:11:7c:29:86:d5:1a:
45:c8:6d:57:52:6b:47:ec:85:7f:19:be:2b:43:89:
9b:bf:78:14:99:3f:ca:4a:0d:f6:36:f9:a7:1c:65:
b9:e2:62:88:d9:53:aa:b5:e1:55:9a:6b:1e:18:c5:
f3:b5:2b:50:c2:1a:cd:af:28:76:88:53:ae:1a:08:
71:17:f9:45:3d:2b:ea:ef:3b:2d:76:bc:28:9f:17:
24:cb:4a:25:a1:28:0c:dc:5f:a7:c0:8d:f0:91:7c:
70:1a:50:85:c2:a9:bc:31:ac:3c:80:29:7a:af:7d:
b9:e8:1b:9b:05:3f:2a:fa:db:79:dd:f9:6f:5e:de:
45:09:5a:7e:47:b2:e3:5b:c1:41:58:31:62:53:a3:
a8:15:7b:79:b4:13:df:74:37:46:4d:b5:cd:7e:88:
0c:32:87:ab:bc:11:f9:33:73:17:38:5e:65:69:94:
73:40:00:c5:ba:f0:f8:bc:f0:13:34:1a:f8:d4:86:
90:82:50:3d:b5:e3:24:5d:85:ee:ee:63:d8:c1:89:
4c:e3:86:2b:0c:7a:eb:33:f1:4a:d6:c0:0c:9d:55:
64:03:02:0b:64:70:1c:4e:af:fe:51:d5:23:31:05:
91:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:5E:E7:02:3E:7C:77:A9:6D:3E:14:D4:35:C0:F0:A5:9E:0D:72:27
X509v3 Authority Key Identifier:
keyid:16:83:80:53:19:D8:48:55:84:DC:39:CF:53:81:58:3F:B6:43:1D:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FoOAUxnYSFWE3DnPU4FYP7ZDHXo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/b25cf4-0a35-4bdb-9dcd-ee16086cfc72/1/TF7nAj58d6ltPhTUNcDwpZ4Ncic.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/b25cf4-0a35-4bdb-9dcd-ee16086cfc72/1/FoOAUxnYSFWE3DnPU4FYP7ZDHXo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.226.216.0/23
Signature Algorithm: sha256WithRSAEncryption
58:0f:84:60:81:f4:8b:41:bd:b1:4b:e3:91:79:ef:56:6c:1e:
79:b8:3c:d1:da:e5:62:a1:3c:98:f2:01:c7:88:a8:60:66:ba:
31:ed:b0:c5:83:73:66:d9:a3:e9:9b:f8:52:32:c8:84:c2:ba:
ac:17:72:8b:cf:84:c3:5f:23:3a:5f:ef:fb:da:96:1c:31:98:
54:57:ed:ec:9a:0a:3c:a1:51:be:fc:d7:86:55:84:6f:67:1b:
66:ad:be:7f:c9:e1:a8:dc:12:a2:3b:eb:20:a0:8f:e4:1e:21:
f0:94:8b:36:5a:82:2c:80:a9:1c:a3:f9:72:c8:39:32:3c:ef:
a4:8d:0a:f0:90:e1:e2:5f:eb:da:07:39:3e:58:e9:e2:58:b6:
57:5f:fc:eb:6f:8b:3b:23:4e:ac:72:22:ab:29:54:cd:db:49:
1c:49:93:b7:2e:c1:f6:68:03:ac:e8:f3:62:ff:fb:69:c0:32:
f1:26:dd:f8:d2:dc:da:2b:b0:5f:0d:b5:2b:38:98:c1:99:6f:
b3:a4:eb:16:60:9c:db:50:9e:80:20:8b:fa:3c:be:fe:d4:cd:
b8:0f:c8:de:50:77:8c:aa:91:e0:8e:d9:0d:2b:89:ee:f3:ce:
ee:f2:1a:d9:17:f3:67:d5:f1:23:80:39:d9:a2:77:ed:05:9a:
37:d2:85:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:43 2025 by rpki-client on console.sobornost.net