Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/0CceuujOUN7fI6SJWiU4I3JvZeo.roa
File: 0CceuujOUN7fI6SJWiU4I3JvZeo.roa (raw, json)
Hash identifier: ReNIag9nA9bjr82rfcj5JjzPGdjpj3RK7GRwiAamY6Q=
Subject key identifier: D0:27:1E:BA:E8:CE:50:DE:DF:23:A4:89:5A:25:38:23:72:6F:65:EA
Certificate issuer: /CN=b7bd8eae1669deb3a3fa4186491e05cb32ce092a
Certificate serial: 019423699AC039C335AA4D9AC44069544AFB
Authority key identifier: B7:BD:8E:AE:16:69:DE:B3:A3:FA:41:86:49:1E:05:CB:32:CE:09:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t72OrhZp3rOj-kGGSR4FyzLOCSo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/0CceuujOUN7fI6SJWiU4I3JvZeo.roa
Signing time: Wed 01 Jan 2025 19:48:30 +0000
ROA not before: Wed 01 Jan 2025 19:48:30 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 205010
IP address blocks: 185.226.32.0/22 maxlen: 22
2a0c:2600::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:69:9a:c0:39:c3:35:aa:4d:9a:c4:40:69:54:4a:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b7bd8eae1669deb3a3fa4186491e05cb32ce092a
Validity
Not Before: Jan 1 19:48:30 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d0271ebae8ce50dedf23a4895a253823726f65ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:08:9e:56:b0:0a:ed:bc:84:eb:03:eb:ca:dc:
8e:4e:3a:d3:42:d5:4e:5b:33:65:4a:ed:01:44:0f:
7f:a6:a0:4a:22:f6:8e:13:a1:44:ae:0c:2c:4f:01:
d8:ed:31:8b:ea:42:b3:86:b1:ce:4c:be:b5:3f:2b:
19:29:47:36:43:ce:cb:be:bb:c2:7c:3f:7a:20:13:
19:ea:b1:8b:c3:31:09:d2:e5:a5:d5:50:53:51:bb:
5d:36:37:82:f3:5a:6d:47:08:8e:50:1f:51:28:ee:
87:ca:c5:c4:86:6f:a9:c0:5c:58:a7:f5:bc:79:e4:
ba:dc:5c:de:69:f0:70:75:3c:e4:a9:07:cf:a6:d3:
7c:bc:cd:e4:e3:95:0b:47:ae:6c:07:ca:27:cb:76:
53:27:ce:89:a5:35:b3:e9:d7:a0:d9:7b:56:56:20:
20:d2:3e:f4:70:2d:39:ae:67:c5:b9:1e:8a:36:f8:
83:2b:07:c8:b2:fe:3c:ad:ac:18:c3:6d:58:f0:a4:
8a:fa:0c:b4:15:4d:21:02:d4:bc:9e:1e:6e:bf:d4:
d4:41:9b:6d:e9:36:3c:02:53:31:76:0b:57:7e:d0:
74:1d:5d:f8:2c:8a:e5:5b:43:8a:e4:af:57:b7:e9:
7a:54:3b:21:44:1e:84:7a:ee:2b:f8:f4:4d:bb:28:
fa:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:27:1E:BA:E8:CE:50:DE:DF:23:A4:89:5A:25:38:23:72:6F:65:EA
X509v3 Authority Key Identifier:
keyid:B7:BD:8E:AE:16:69:DE:B3:A3:FA:41:86:49:1E:05:CB:32:CE:09:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t72OrhZp3rOj-kGGSR4FyzLOCSo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/0CceuujOUN7fI6SJWiU4I3JvZeo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.226.32.0/22
IPv6:
2a0c:2600::/29
Signature Algorithm: sha256WithRSAEncryption
7b:0a:ee:6f:1f:01:05:69:a8:8b:1f:7d:09:51:be:98:40:48:
56:96:ac:4d:2f:61:eb:b0:2b:ad:ad:c9:07:59:08:4c:d8:5b:
e4:7c:cf:18:20:e3:e6:1f:12:c0:02:d5:68:ac:d2:28:d7:74:
17:f6:8d:3f:53:c1:cb:28:93:35:fa:0e:bd:8b:02:9f:2b:f1:
a6:8a:06:a9:63:8d:d8:27:3a:72:f8:ae:82:54:32:c6:7f:d3:
1c:c9:b2:28:f0:be:62:1d:3d:0f:de:4b:f2:04:a9:5c:94:c7:
50:b8:72:3c:aa:af:c4:39:4f:6a:c6:3f:e6:d2:1a:85:ff:db:
9b:ba:2d:47:58:4e:e2:0c:f7:56:4f:ec:59:66:1b:39:15:62:
9a:3a:b8:59:57:14:4d:8b:93:38:74:4f:5a:bb:9d:de:0f:61:
7b:10:a8:2f:df:ba:58:f7:bf:22:23:1d:99:47:6f:8a:01:bb:
78:37:3f:6d:62:9d:71:d1:80:07:d3:c2:5c:6a:b2:61:1e:0b:
85:8c:5b:04:93:02:37:48:93:8c:19:8e:ee:b7:0c:a6:02:33:
96:63:a6:1d:36:ef:f3:1c:12:83:a0:25:20:3e:bf:3c:30:16:
6a:f6:a8:b8:9a:4d:a4:b1:7e:c6:4c:82:4c:ec:c8:a9:70:0d:
34:17:fb:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:52 2025 by rpki-client on console.sobornost.net