Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/bd9ca8-179b-4322-a094-50dd3a58154b/1/IZobsVo8D0iMLl6R0arb5_tQtNA.roa
File: IZobsVo8D0iMLl6R0arb5_tQtNA.roa (raw, json)
Hash identifier: k9u6wYsejWLpFpy4B5EqE+Go9z1mManh6wvsZ38Rnrc=
Subject key identifier: 21:9A:1B:B1:5A:3C:0F:48:8C:2E:5E:91:D1:AA:DB:E7:FB:50:B4:D0
Certificate issuer: /CN=e8bd26dce48161c7fbf9ff67b907f1e605c25a66
Certificate serial: 0195F7D099BBDD41D994AEDAF1462BAE5D84
Authority key identifier: E8:BD:26:DC:E4:81:61:C7:FB:F9:FF:67:B9:07:F1:E6:05:C2:5A:66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6L0m3OSBYcf7-f9nuQfx5gXCWmY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/bd9ca8-179b-4322-a094-50dd3a58154b/1/IZobsVo8D0iMLl6R0arb5_tQtNA.roa
Signing time: Wed 02 Apr 2025 18:43:17 +0000
ROA not before: Wed 02 Apr 2025 18:43:17 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213687
IP address blocks: 185.0.27.0/24 maxlen: 24
2001:7f8:15e::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:f7:d0:99:bb:dd:41:d9:94:ae:da:f1:46:2b:ae:5d:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8bd26dce48161c7fbf9ff67b907f1e605c25a66
Validity
Not Before: Apr 2 18:43:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=219a1bb15a3c0f488c2e5e91d1aadbe7fb50b4d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:72:9e:51:e2:ce:90:8e:75:27:9f:05:6c:29:
93:5a:21:20:52:18:e0:db:ac:71:dd:93:fb:7f:c9:
8b:cb:b2:10:0a:7c:9a:e8:59:3e:fe:58:cb:d5:86:
39:fd:23:27:3c:fb:cd:d4:ed:26:61:5a:aa:c2:84:
a6:f6:4f:7e:74:1c:27:ae:d9:df:41:5f:87:7a:e7:
b8:ae:17:68:b8:59:ee:b6:a2:e6:d7:54:05:2a:d5:
4c:74:6e:19:33:33:98:81:76:d4:17:e7:bc:02:f3:
c7:c8:c8:72:3b:ab:82:ea:06:84:4c:20:37:63:de:
7d:95:84:c7:6b:a0:59:56:70:45:ba:8e:86:40:39:
45:22:b6:d0:fb:4c:d9:9e:03:12:e9:b0:44:b1:24:
3b:1b:2d:2e:85:70:97:95:6e:95:5a:8c:fa:5b:74:
ff:60:75:d8:6a:7d:9a:2d:ed:ff:df:dc:ff:28:f1:
77:92:16:4e:72:b3:b9:eb:c0:05:a3:d5:5c:c3:f4:
20:b5:3e:25:0d:74:55:62:ca:cd:24:ef:02:c7:50:
c9:b5:58:e3:dc:8c:d4:4a:5f:e6:39:d5:dc:e1:53:
17:41:73:bb:8d:e4:02:4c:21:14:5c:9d:0d:69:49:
4e:c3:fa:04:4c:21:c1:f7:24:e5:5a:22:6b:b4:35:
4c:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:9A:1B:B1:5A:3C:0F:48:8C:2E:5E:91:D1:AA:DB:E7:FB:50:B4:D0
X509v3 Authority Key Identifier:
keyid:E8:BD:26:DC:E4:81:61:C7:FB:F9:FF:67:B9:07:F1:E6:05:C2:5A:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6L0m3OSBYcf7-f9nuQfx5gXCWmY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/bd9ca8-179b-4322-a094-50dd3a58154b/1/IZobsVo8D0iMLl6R0arb5_tQtNA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/bd9ca8-179b-4322-a094-50dd3a58154b/1/6L0m3OSBYcf7-f9nuQfx5gXCWmY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.0.27.0/24
IPv6:
2001:7f8:15e::/48
Signature Algorithm: sha256WithRSAEncryption
18:0b:35:b3:7d:14:07:9a:32:50:dc:e3:47:ce:ef:7c:a7:ee:
a5:01:bf:c1:d8:6c:56:99:ad:ba:71:80:27:5d:7f:61:69:b0:
c6:e2:45:64:5f:0c:62:c3:e3:ca:9f:b3:0b:55:17:8a:df:d9:
d8:5a:f0:d2:21:28:df:7b:30:97:fa:ea:9b:aa:c6:21:44:20:
af:ad:0f:bc:8f:1e:82:1d:0d:f7:a4:f6:6d:be:d6:af:0b:7c:
9d:8d:9a:c0:2e:b0:2d:64:ca:af:0a:ef:a3:ba:79:c5:3c:52:
27:18:87:ff:e1:0d:d1:c1:45:30:fc:f8:b2:c2:6f:f3:87:b1:
9e:6e:26:ca:83:96:68:fd:62:c7:f5:00:7b:85:36:00:35:8a:
3d:4a:99:71:8f:13:1c:07:60:51:35:77:a1:bb:92:c4:36:56:
48:f5:08:a0:a5:4e:92:8e:01:6a:25:d8:ef:42:4e:92:43:f7:
98:b8:b1:00:91:e2:c3:ee:61:08:3f:29:12:d3:c4:0e:91:1a:
b7:65:bb:59:c5:61:7f:cb:00:57:40:52:42:ce:bb:d9:eb:39:
32:a8:b6:66:bd:99:38:31:09:54:b9:2a:56:8e:cd:57:d3:c4:
ce:e9:99:1f:7f:ea:d0:75:ad:8f:1d:b9:bd:6c:49:25:d1:08:
d2:63:f1:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:01 2025 by rpki-client on console.sobornost.net