Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/1bdbf8-395f-4a85-a44a-b51adffc6eec/1/1DMwz6cy5-zMTggYwJ41QekWZIY.roa
File: 1DMwz6cy5-zMTggYwJ41QekWZIY.roa (raw, json)
Hash identifier: nwmEuQjAVrxnR0Ze+XAFnQ4uH1WM0zEOCcXND1iguH8=
Subject key identifier: D4:33:30:CF:A7:32:E7:EC:CC:4E:08:18:C0:9E:35:41:E9:16:64:86
Certificate issuer: /CN=be1f3dc2295306cc7df872ceeccd6894d0e0eae6
Certificate serial: 019423D6DB661F62F022AC287BEA89695661
Authority key identifier: BE:1F:3D:C2:29:53:06:CC:7D:F8:72:CE:EC:CD:68:94:D0:E0:EA:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vh89wilTBsx9-HLO7M1olNDg6uY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/1bdbf8-395f-4a85-a44a-b51adffc6eec/1/1DMwz6cy5-zMTggYwJ41QekWZIY.roa
Signing time: Wed 01 Jan 2025 21:47:50 +0000
ROA not before: Wed 01 Jan 2025 21:47:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 6750
IP address blocks: 185.130.200.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d6:db:66:1f:62:f0:22:ac:28:7b:ea:89:69:56:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be1f3dc2295306cc7df872ceeccd6894d0e0eae6
Validity
Not Before: Jan 1 21:47:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d43330cfa732e7eccc4e0818c09e3541e9166486
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:90:5a:a4:7d:cb:38:6d:8e:82:2b:b8:cd:9c:
6e:4a:bd:0b:75:44:c0:31:c7:1b:0a:20:9f:b0:b3:
9e:80:41:3a:3e:04:e7:a6:89:d4:7c:7f:e6:35:2a:
f0:e2:cd:2a:97:fe:5f:bd:3d:ce:81:77:cc:33:a6:
03:78:5a:8b:7c:f4:17:2a:f7:10:b3:77:c8:7f:ff:
45:33:21:0a:13:ef:5a:c4:02:3c:8c:1e:07:bc:f2:
3d:be:9e:7e:10:75:b7:75:80:ab:09:83:3a:12:5e:
1f:de:f0:bd:c8:19:91:2c:6a:ac:d2:1d:5c:a7:bb:
b0:5f:97:7b:49:55:1d:a5:22:71:af:51:ce:e0:e3:
12:96:64:61:22:13:0e:0f:07:04:a8:33:8b:c3:70:
99:62:73:e6:a6:8f:8e:7a:42:9b:08:57:d4:4e:dd:
5e:c6:9e:e0:f9:48:91:40:20:4b:02:fc:da:21:92:
ef:e9:4c:80:84:f6:0d:95:37:4b:d9:d8:db:99:47:
eb:03:de:55:18:8b:c3:df:97:5e:a7:e7:d6:f0:19:
a7:ed:e5:6d:f3:63:6c:6b:5f:06:34:73:9e:54:74:
12:17:f1:88:d0:b0:f6:d4:8b:95:55:ca:8e:90:d2:
a1:fa:03:bc:1e:9c:f6:3f:a8:5a:30:a3:2a:a5:0e:
14:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:33:30:CF:A7:32:E7:EC:CC:4E:08:18:C0:9E:35:41:E9:16:64:86
X509v3 Authority Key Identifier:
keyid:BE:1F:3D:C2:29:53:06:CC:7D:F8:72:CE:EC:CD:68:94:D0:E0:EA:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vh89wilTBsx9-HLO7M1olNDg6uY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/1bdbf8-395f-4a85-a44a-b51adffc6eec/1/1DMwz6cy5-zMTggYwJ41QekWZIY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/1bdbf8-395f-4a85-a44a-b51adffc6eec/1/vh89wilTBsx9-HLO7M1olNDg6uY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.130.200.0/22
Signature Algorithm: sha256WithRSAEncryption
2f:49:2c:21:41:1e:5f:3f:ce:6b:ab:4d:00:2c:af:93:34:26:
2a:17:5f:1c:f9:47:60:c5:ac:fc:70:a4:9c:d2:03:a4:b4:79:
67:60:9a:8a:eb:6f:d1:9b:c7:7b:47:8a:fc:9e:a4:50:e4:79:
a2:e6:b9:c2:0b:67:7c:75:88:67:ae:cb:55:ed:af:13:bf:2f:
e8:cd:be:1d:30:8b:b2:d4:7b:7b:60:1a:64:a8:5e:86:cb:3d:
29:29:fb:92:ef:3a:46:2e:61:18:6a:8e:02:c0:fb:25:1a:96:
85:9e:18:9a:e6:e2:cd:c0:27:1f:b6:7d:54:4c:98:22:90:bf:
04:ce:5e:ac:86:41:7f:b2:79:41:71:a9:e9:46:1f:7e:61:05:
23:bb:89:6e:4f:80:18:ae:eb:a5:05:92:2d:77:9f:cc:28:7a:
e7:b7:5d:76:23:ea:b2:54:71:53:cc:d1:da:ac:3a:db:da:41:
ab:fd:d3:da:e7:68:03:52:f3:fd:f4:83:82:7e:17:ee:d1:de:
4c:54:7b:95:c5:b4:9e:01:1e:97:19:f5:85:34:07:f1:28:6d:
17:ad:ed:1f:a1:c9:05:e1:07:28:df:a2:93:ae:39:6f:93:ef:
20:4c:da:7f:60:3a:6e:f8:7a:3e:02:d8:61:d0:9a:76:f0:bb:
bb:f9:62:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:46 2025 by rpki-client on console.sobornost.net