Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/011ef2-7012-4a6e-8a1c-0e0e137e5591/1/tZVX3qYygm8mhqLKvtgCUl1qics.roa
File: tZVX3qYygm8mhqLKvtgCUl1qics.roa (raw, json)
Hash identifier: C3pcGXYwCjQl9eRypOyqTAkBmg+sjPi6ucd+K6cZcQw=
Subject key identifier: B5:95:57:DE:A6:32:82:6F:26:86:A2:CA:BE:D8:02:52:5D:6A:89:CB
Certificate issuer: /CN=e520446f79ffc2d7c3a9ef340ce9de25723a719a
Certificate serial: 01942444B2DD37E5EE81D1D7DC833E719F97
Authority key identifier: E5:20:44:6F:79:FF:C2:D7:C3:A9:EF:34:0C:E9:DE:25:72:3A:71:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5SBEb3n_wtfDqe80DOneJXI6cZo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/011ef2-7012-4a6e-8a1c-0e0e137e5591/1/tZVX3qYygm8mhqLKvtgCUl1qics.roa
Signing time: Wed 01 Jan 2025 23:47:49 +0000
ROA not before: Wed 01 Jan 2025 23:47:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 60681
IP address blocks: 185.27.80.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:44:b2:dd:37:e5:ee:81:d1:d7:dc:83:3e:71:9f:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e520446f79ffc2d7c3a9ef340ce9de25723a719a
Validity
Not Before: Jan 1 23:47:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b59557dea632826f2686a2cabed802525d6a89cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:ba:5d:f0:d3:d5:88:3b:67:28:1c:16:f5:14:
31:a7:54:e0:4f:ca:a0:f3:b8:4c:6f:2d:c2:4a:42:
ae:72:9a:7a:41:00:a7:cf:8d:d9:a2:1a:0a:97:94:
29:5d:a9:0f:1a:60:32:61:79:a7:fa:02:26:4d:f3:
27:ab:de:e9:96:4c:9f:fc:15:55:20:45:6b:5a:60:
ee:ab:2f:3e:1a:52:d0:60:e9:f5:3a:53:a2:b8:35:
2f:e2:69:b9:18:2f:c3:cb:41:ef:ff:84:12:7a:ad:
ab:d3:9a:2b:ac:cb:4a:c5:df:68:8b:69:24:ba:94:
22:04:db:6f:ac:6f:13:8c:fe:65:3a:ce:34:65:11:
b7:ab:8b:24:b0:75:6c:a0:ff:af:0c:91:45:62:a3:
dd:f3:f8:eb:f4:b3:93:82:d5:6a:52:3a:a8:f3:58:
8c:47:8c:90:94:43:ed:5b:51:91:11:33:b9:01:0d:
6d:91:fc:c9:0f:d8:f2:e1:28:2e:8f:8b:b1:40:40:
18:6c:12:2e:f3:0e:71:d1:c0:ad:df:b0:57:3c:ae:
63:77:d5:a1:c0:22:4f:af:c7:6e:b1:7a:fa:ee:5f:
dc:e6:86:a7:28:d1:03:da:86:6c:70:63:b6:27:03:
a0:be:8c:6f:8f:1d:33:56:de:3e:98:e8:ec:12:11:
40:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:95:57:DE:A6:32:82:6F:26:86:A2:CA:BE:D8:02:52:5D:6A:89:CB
X509v3 Authority Key Identifier:
keyid:E5:20:44:6F:79:FF:C2:D7:C3:A9:EF:34:0C:E9:DE:25:72:3A:71:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5SBEb3n_wtfDqe80DOneJXI6cZo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/011ef2-7012-4a6e-8a1c-0e0e137e5591/1/tZVX3qYygm8mhqLKvtgCUl1qics.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/011ef2-7012-4a6e-8a1c-0e0e137e5591/1/5SBEb3n_wtfDqe80DOneJXI6cZo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.27.80.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:04:4a:52:5e:6f:07:ca:2a:ee:d7:87:16:50:db:fb:f8:23:
71:94:a5:4d:a4:f0:fa:2b:be:91:5f:7f:5f:59:6d:f9:7d:07:
e9:0f:16:d6:88:1a:4b:1b:96:72:ce:8b:e2:44:4b:92:8b:ae:
18:6d:be:9f:e0:48:ae:84:11:61:7f:e7:33:d1:82:35:fb:fe:
3e:3a:23:9e:52:a7:18:00:0e:a2:64:c8:10:60:38:f9:75:5e:
9d:83:1f:0b:8f:c4:d6:f0:a5:d5:1e:45:80:6c:05:cf:24:82:
39:86:94:f1:44:65:5d:b1:d6:02:89:3c:2c:22:6d:60:ac:63:
d5:36:08:12:39:d8:fe:e2:80:e9:3e:81:f6:68:05:61:c1:c2:
85:87:8a:54:2b:9c:75:ef:80:a3:40:e1:80:70:a0:5a:04:a3:
3c:ea:32:b1:1b:c1:6f:7c:33:e5:c4:e0:89:93:4b:2a:a4:12:
4f:44:c6:4b:7e:04:33:00:e1:d3:b8:44:2a:9d:28:3d:b8:bc:
90:35:23:e9:a0:97:f3:8e:c3:4b:eb:b8:75:e7:dd:09:5d:74:
b4:b4:9c:c9:22:a2:f4:2e:80:ab:20:c9:70:09:ac:19:d5:9e:
cb:d9:df:72:fa:8b:8f:3f:80:5f:25:76:c4:fc:28:0f:92:14:
e3:69:13:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:46 2025 by rpki-client on console.sobornost.net