Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/0a4c1e-1fc5-407a-bd08-0717da053585/1/dX70ap0ffv2FBe6b9Bt26afmx5k.roa
File: dX70ap0ffv2FBe6b9Bt26afmx5k.roa (raw, json)
Hash identifier: cA6YfbXERPxQEeXnO3dLN4qw3GbtwfitkG8Nn52ipuk=
Subject key identifier: 75:7E:F4:6A:9D:1F:7E:FD:85:05:EE:9B:F4:1B:76:E9:A7:E6:C7:99
Certificate issuer: /CN=9b792de70f33b82882542bef23b18da97538ca04
Certificate serial: 0194266AD153A0B8F83805AB5B929D3FD006
Authority key identifier: 9B:79:2D:E7:0F:33:B8:28:82:54:2B:EF:23:B1:8D:A9:75:38:CA:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m3kt5w8zuCiCVCvvI7GNqXU4ygQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/0a4c1e-1fc5-407a-bd08-0717da053585/1/dX70ap0ffv2FBe6b9Bt26afmx5k.roa
Signing time: Thu 02 Jan 2025 09:48:42 +0000
ROA not before: Thu 02 Jan 2025 09:48:42 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 207495
IP address blocks: 185.228.52.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6a:d1:53:a0:b8:f8:38:05:ab:5b:92:9d:3f:d0:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b792de70f33b82882542bef23b18da97538ca04
Validity
Not Before: Jan 2 09:48:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=757ef46a9d1f7efd8505ee9bf41b76e9a7e6c799
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:23:b2:8e:fc:eb:4f:4d:89:b4:34:d8:15:b1:
ba:db:f5:1f:07:21:69:db:03:47:26:91:78:90:ae:
c5:10:d8:06:bd:e0:8f:f7:cb:26:f3:3b:8d:aa:0d:
34:74:4d:ad:b6:50:00:51:a7:cf:12:04:f7:87:11:
bb:17:47:ab:4f:65:4c:4d:f5:f4:77:40:bb:0a:3e:
ae:f7:99:c0:00:9e:2b:f4:4b:0b:3c:2d:1b:eb:8e:
31:50:57:0a:d4:6f:b1:e5:d6:a8:1a:c0:74:d1:0d:
39:5b:ff:17:c5:c9:8c:05:3d:57:62:07:d8:9a:43:
6a:a4:1e:00:c4:45:17:a1:d3:01:44:b6:ff:ad:e9:
75:ed:e3:47:4b:7d:92:fb:52:0c:02:22:f4:62:b0:
46:e9:fa:1c:21:85:49:e9:f7:75:f1:ab:63:67:55:
d8:e7:a3:cd:84:58:f9:bb:24:f6:f9:1c:46:e3:67:
8d:6f:a3:55:1c:a6:a0:00:7b:1f:32:14:81:92:6a:
c8:84:43:15:f1:49:e5:3a:10:84:64:0a:62:c8:56:
e1:94:40:74:4a:57:3b:ec:22:2e:24:6f:48:98:24:
42:1f:77:49:52:67:35:46:c7:3b:33:97:0f:45:93:
f6:5f:12:fa:d4:69:6d:b9:e0:db:05:f3:91:94:22:
04:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:7E:F4:6A:9D:1F:7E:FD:85:05:EE:9B:F4:1B:76:E9:A7:E6:C7:99
X509v3 Authority Key Identifier:
keyid:9B:79:2D:E7:0F:33:B8:28:82:54:2B:EF:23:B1:8D:A9:75:38:CA:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m3kt5w8zuCiCVCvvI7GNqXU4ygQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/0a4c1e-1fc5-407a-bd08-0717da053585/1/dX70ap0ffv2FBe6b9Bt26afmx5k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/0a4c1e-1fc5-407a-bd08-0717da053585/1/m3kt5w8zuCiCVCvvI7GNqXU4ygQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.228.52.0/22
Signature Algorithm: sha256WithRSAEncryption
95:91:cb:62:c6:c8:d5:32:bd:e3:e0:15:35:78:a2:07:50:2d:
c1:cb:2a:d5:43:72:08:81:6b:7a:bb:83:d1:24:fa:09:03:be:
36:cd:74:d4:e9:18:cd:21:8b:03:e4:88:f6:8a:73:60:dd:5c:
1b:54:c5:b5:44:d9:22:04:d5:07:ea:80:f5:5c:41:93:83:06:
d2:da:dd:b6:06:e3:20:7c:5b:6c:13:cd:23:86:83:38:6b:96:
5c:d9:2f:0c:e3:24:30:9c:6f:e8:e6:21:88:8e:a4:4e:2b:b1:
84:2b:35:17:b9:f7:c2:72:ed:e3:1c:fd:ba:5d:2c:eb:32:c3:
56:11:48:62:0d:9d:0c:fa:20:66:22:ef:b7:d3:7a:a0:4f:b3:
98:7c:c9:a4:23:8e:ae:0d:2b:50:3b:b8:25:e4:26:a3:ee:ac:
36:df:d9:d0:f6:db:34:03:e8:3f:18:1f:60:c2:60:d5:04:6a:
97:32:d2:72:02:fc:6d:16:2e:68:c4:f7:cf:59:90:b2:b6:49:
f7:b9:11:d0:70:ef:3b:05:21:0d:1f:57:ae:59:4c:08:0b:b6:
bf:ba:92:b1:2c:2c:02:45:1d:5e:9f:e2:7f:1d:b7:ea:31:77:
fd:7a:a6:d4:d3:5e:1c:a1:12:05:74:36:35:08:32:06:7f:9e:
fd:41:a4:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:00 2025 by rpki-client on console.sobornost.net