Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/b7a249-1552-4f10-b008-1f66faab4ab5/1/sQzmhjMqbnYxePAUvm9cNK1Tjw4.roa
File: sQzmhjMqbnYxePAUvm9cNK1Tjw4.roa (raw, json)
Hash identifier: tJJ1LdtYmxN6Mm4HIKko/zr0MUnt+0ElprJSwioZ+lk=
Subject key identifier: B1:0C:E6:86:33:2A:6E:76:31:78:F0:14:BE:6F:5C:34:AD:53:8F:0E
Certificate issuer: /CN=30d8a64903cfa217379749f18b7fdcea1dab6db4
Certificate serial: 01942823E6D39D0CABBADD06089EA3951ED0
Authority key identifier: 30:D8:A6:49:03:CF:A2:17:37:97:49:F1:8B:7F:DC:EA:1D:AB:6D:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MNimSQPPohc3l0nxi3_c6h2rbbQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/b7a249-1552-4f10-b008-1f66faab4ab5/1/sQzmhjMqbnYxePAUvm9cNK1Tjw4.roa
Signing time: Thu 02 Jan 2025 17:50:28 +0000
ROA not before: Thu 02 Jan 2025 17:50:28 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 202032
IP address blocks: 185.54.80.0/22 maxlen: 24
2a02:4460::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:23:e6:d3:9d:0c:ab:ba:dd:06:08:9e:a3:95:1e:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30d8a64903cfa217379749f18b7fdcea1dab6db4
Validity
Not Before: Jan 2 17:50:28 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b10ce686332a6e763178f014be6f5c34ad538f0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:7f:b0:17:ac:4b:84:a9:13:1e:b0:39:6b:41:
3d:cd:1a:2f:36:6a:9a:2d:a3:3b:ea:5c:6c:03:bd:
71:65:3f:63:d7:ff:48:6f:ea:ac:b5:d4:64:5b:8b:
a2:3f:88:61:ec:82:46:bd:2a:c6:38:18:58:02:fa:
31:86:35:a6:10:17:f0:ba:ca:19:bc:93:45:e9:99:
80:ea:77:14:bb:32:49:b1:bb:a6:f1:f5:ed:71:02:
df:3b:39:d4:fb:83:6d:19:ed:25:b1:6d:13:b4:68:
39:11:49:90:c4:4e:02:70:23:91:00:a8:62:6c:2f:
61:c1:8e:7f:14:af:df:72:9b:1c:f2:6c:d9:a3:f5:
6b:7c:f1:da:01:9c:00:0a:ba:73:c5:39:85:66:50:
d4:49:1f:2c:c4:cb:0b:01:23:7d:e1:68:12:9c:36:
7f:a4:54:d0:34:fb:1f:44:9b:89:aa:58:50:7b:2f:
8d:59:ca:8a:f6:a8:aa:e2:1c:ab:40:b9:42:13:c1:
74:d1:a7:5f:08:da:03:64:2e:a3:8e:4e:14:eb:08:
b0:23:cf:2f:96:57:cf:6d:ab:32:2d:17:9d:76:03:
bb:65:59:ff:23:71:24:ce:e8:aa:20:23:aa:d9:2f:
fe:20:8f:ab:f3:88:31:df:cc:ac:9b:f3:7e:97:6c:
db:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:0C:E6:86:33:2A:6E:76:31:78:F0:14:BE:6F:5C:34:AD:53:8F:0E
X509v3 Authority Key Identifier:
keyid:30:D8:A6:49:03:CF:A2:17:37:97:49:F1:8B:7F:DC:EA:1D:AB:6D:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MNimSQPPohc3l0nxi3_c6h2rbbQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b7a249-1552-4f10-b008-1f66faab4ab5/1/sQzmhjMqbnYxePAUvm9cNK1Tjw4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b7a249-1552-4f10-b008-1f66faab4ab5/1/MNimSQPPohc3l0nxi3_c6h2rbbQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.54.80.0/22
IPv6:
2a02:4460::/32
Signature Algorithm: sha256WithRSAEncryption
00:c6:5d:de:49:d4:10:07:5d:22:b3:c8:50:d1:7b:5a:77:a6:
7b:7c:5a:da:ee:fc:fb:bf:79:03:d0:23:19:f2:80:b8:0c:b7:
30:c7:b9:c7:f5:5d:f8:48:a7:b1:93:f1:7d:6f:c3:db:fe:68:
d0:1c:8f:54:50:61:a0:e0:1c:73:60:bb:b0:98:e2:48:3b:15:
5a:64:77:be:6d:89:eb:82:65:ac:ac:2f:84:c0:b1:9a:86:87:
80:5c:f3:f9:7d:0c:6e:18:e7:27:0e:1e:d6:6b:33:bd:13:03:
25:3a:1c:6e:e1:ac:58:9e:cf:c3:77:4f:b9:6e:07:3d:15:c2:
28:d3:57:7c:29:61:12:84:78:9a:c7:5d:e4:d3:58:32:d3:62:
bd:6d:8b:5c:26:a3:1d:c7:9b:68:7f:f8:fb:d8:6b:af:f5:88:
78:1a:ee:cb:7b:4f:31:91:67:01:bc:8e:3a:2d:ff:4f:79:da:
ae:b8:23:e2:97:90:dc:0d:9f:27:7a:48:14:b1:9c:4e:a6:d8:
f9:88:de:a8:ed:cb:61:9d:7d:22:3a:60:7f:a9:57:ba:3d:67:
ba:19:70:32:e6:d1:ab:29:53:53:f1:62:19:a3:6d:5f:d8:13:
a3:e1:33:9d:2d:f0:1a:e2:9e:40:17:b6:ce:03:50:0e:f0:4c:
58:24:63:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:51 2025 by rpki-client on console.sobornost.net