Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/8d939f-9ef9-4076-a8f3-7a70b787d2ef/1/GxL8fwk7MmwPNTtCp-ZrLwDGehU.roa
File: GxL8fwk7MmwPNTtCp-ZrLwDGehU.roa (raw, json)
Hash identifier: lyYJo+TOxOK6xLDSZatPtZ0yRjTCazkuCS6AXT1948U=
Subject key identifier: 1B:12:FC:7F:09:3B:32:6C:0F:35:3B:42:A7:E6:6B:2F:00:C6:7A:15
Certificate issuer: /CN=e9bfd0410c7bf3bb1d75b18acb1e96393ad21b26
Certificate serial: 01955FEA84A02349BA9B2B8A03DDC27783CB
Authority key identifier: E9:BF:D0:41:0C:7B:F3:BB:1D:75:B1:8A:CB:1E:96:39:3A:D2:1B:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6b_QQQx787sddbGKyx6WOTrSGyY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/8d939f-9ef9-4076-a8f3-7a70b787d2ef/1/GxL8fwk7MmwPNTtCp-ZrLwDGehU.roa
Signing time: Tue 04 Mar 2025 06:49:19 +0000
ROA not before: Tue 04 Mar 2025 06:49:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 16086
IP address blocks: 185.196.4.0/22 maxlen: 24
2a0a:62c0::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:5f:ea:84:a0:23:49:ba:9b:2b:8a:03:dd:c2:77:83:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9bfd0410c7bf3bb1d75b18acb1e96393ad21b26
Validity
Not Before: Mar 4 06:49:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1b12fc7f093b326c0f353b42a7e66b2f00c67a15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:dc:a3:25:a5:1b:25:31:ec:66:45:36:6d:90:
7e:4a:af:0b:dd:eb:ea:26:8d:44:ee:db:9f:a1:d8:
9c:46:2f:03:64:5e:8b:a9:46:72:64:8f:ef:ab:48:
34:a9:1e:2a:2b:c1:57:69:c4:cd:36:5c:92:77:75:
d3:4e:ad:71:06:ec:4e:ce:17:ae:f7:cc:3e:8b:c3:
d2:22:59:d2:41:74:1a:c7:ac:bd:41:aa:cd:e7:e3:
cc:d8:f8:ae:09:93:93:08:55:5b:a0:7e:12:9e:a4:
6e:a8:f9:5b:6e:8c:3f:c1:87:0a:e8:8d:d9:3d:82:
1b:c4:c3:b1:1a:c2:bb:42:9b:16:19:f5:d7:fb:b5:
13:33:9f:76:20:ac:3c:e3:78:93:4a:11:87:11:00:
1c:bc:fb:b5:1d:14:26:a0:6b:60:8a:74:c5:7f:df:
d5:51:b8:f7:13:d5:78:df:96:12:2d:85:f0:a7:e5:
56:49:1c:1e:c9:7d:4c:16:fa:69:36:e1:62:50:cb:
72:6d:94:6b:6e:19:8a:1d:c3:38:8b:73:21:3f:38:
4c:e7:cd:39:54:15:2b:e0:08:21:8e:91:88:b4:3c:
e2:4f:19:b5:48:17:fc:24:d9:81:e3:df:d1:1a:cd:
10:f7:07:fe:c1:e2:05:76:90:72:7b:f6:54:78:bf:
0f:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:12:FC:7F:09:3B:32:6C:0F:35:3B:42:A7:E6:6B:2F:00:C6:7A:15
X509v3 Authority Key Identifier:
keyid:E9:BF:D0:41:0C:7B:F3:BB:1D:75:B1:8A:CB:1E:96:39:3A:D2:1B:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b_QQQx787sddbGKyx6WOTrSGyY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/8d939f-9ef9-4076-a8f3-7a70b787d2ef/1/GxL8fwk7MmwPNTtCp-ZrLwDGehU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/8d939f-9ef9-4076-a8f3-7a70b787d2ef/1/6b_QQQx787sddbGKyx6WOTrSGyY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.196.4.0/22
IPv6:
2a0a:62c0::/32
Signature Algorithm: sha256WithRSAEncryption
92:8b:e0:31:8b:ea:3c:e5:59:1a:99:4e:cb:d4:a9:cd:67:54:
c2:39:4f:16:b8:db:ca:58:f6:95:94:39:59:25:39:32:4f:c4:
1c:48:41:fc:05:bc:25:69:80:a4:e0:ec:a0:73:22:6b:c6:c4:
22:01:78:86:bc:9c:15:22:aa:48:1c:77:f4:94:d4:05:dc:71:
08:17:ae:af:3b:dc:7e:05:bc:0f:a8:af:0b:97:46:d7:f1:bb:
ba:47:87:b7:7d:b6:59:5b:79:28:26:5a:cb:1f:e4:ab:85:36:
b0:52:30:0e:7b:b9:9c:fa:75:22:17:27:9f:11:47:b7:bf:e2:
84:a5:66:06:51:53:c8:3e:83:10:20:d5:6e:c5:0a:61:86:7d:
78:85:f9:f2:ae:29:ac:53:03:ec:99:da:8d:16:ce:77:fb:3d:
fa:48:48:da:99:4f:08:29:9d:7d:3b:c5:f3:e2:69:1f:4c:2e:
b0:0a:53:45:87:5b:f8:f5:ba:ee:38:2e:ea:af:91:b5:28:7a:
07:e6:0b:08:0f:8c:f8:89:32:db:3c:de:38:df:55:1e:5b:6e:
54:d0:6d:41:6c:a4:40:69:84:dc:e3:c2:04:69:37:d1:2c:1e:
ba:c9:7b:3d:f8:05:1c:bf:2c:b4:15:3b:52:6a:21:83:3e:1b:
1d:a9:ab:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:52 2025 by rpki-client on console.sobornost.net