Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/36177f-7cd8-4bd3-8689-213d64beff71/1/CGRTCK3Ge4ADHzCWSkOhJS2ZO-g.roa
File: CGRTCK3Ge4ADHzCWSkOhJS2ZO-g.roa (raw, json)
Hash identifier: qGlSQR4VzbycTQ4yuefrd6Ta0FRZb+PMZoj6HNp+HDk=
Subject key identifier: 08:64:53:08:AD:C6:7B:80:03:1F:30:96:4A:43:A1:25:2D:99:3B:E8
Certificate issuer: /CN=ab9f84c6a48d5c6dfe64149873b148d1120b009b
Certificate serial: 0194221FFC1710A199919C00975805E8BBA8
Authority key identifier: AB:9F:84:C6:A4:8D:5C:6D:FE:64:14:98:73:B1:48:D1:12:0B:00:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q5-ExqSNXG3-ZBSYc7FI0RILAJs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/36177f-7cd8-4bd3-8689-213d64beff71/1/CGRTCK3Ge4ADHzCWSkOhJS2ZO-g.roa
Signing time: Wed 01 Jan 2025 13:48:28 +0000
ROA not before: Wed 01 Jan 2025 13:48:28 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 216066
IP address blocks: 185.187.101.0/24 maxlen: 24
2a0a:47c0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:fc:17:10:a1:99:91:9c:00:97:58:05:e8:bb:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab9f84c6a48d5c6dfe64149873b148d1120b009b
Validity
Not Before: Jan 1 13:48:28 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=08645308adc67b80031f30964a43a1252d993be8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:17:26:ae:bd:05:12:7b:7f:ba:ae:ff:44:3b:
07:87:73:8e:f6:c1:d4:bb:b3:cc:81:cd:c9:00:fb:
94:2a:93:6a:27:a3:67:0c:f5:6f:5d:27:35:2a:79:
c8:1c:e7:4a:35:7c:1d:30:8b:54:b7:7f:cf:13:9c:
83:32:58:4d:02:23:54:38:2a:2e:7e:77:b2:be:b7:
e9:48:54:dc:37:07:ae:63:c0:b9:fa:7a:37:61:fe:
86:cb:00:a9:27:8b:6b:b1:91:d2:87:fc:06:b7:5f:
38:00:02:d5:4f:21:4d:19:3b:ed:54:9d:e5:72:e1:
af:5f:ac:cb:79:4f:f1:62:5d:9c:34:98:08:ec:8b:
12:de:34:58:4a:3a:2a:18:c4:46:b1:e5:2e:da:d9:
35:2a:aa:97:a9:c8:de:12:92:81:7e:f2:e3:7a:0d:
e5:b5:46:1b:21:fc:14:16:c8:16:1a:08:6c:a3:a2:
6f:4a:1f:df:b0:21:a5:26:ba:12:fb:cc:26:68:5a:
6d:74:63:35:c0:11:fc:24:93:b8:40:e9:a9:5b:84:
b8:3f:eb:5c:36:3f:cc:a2:81:22:2a:b5:d1:f7:48:
66:cd:36:a8:ea:a5:50:84:6c:be:f7:c7:70:70:c5:
c8:27:96:77:86:01:70:57:80:15:32:93:e7:d8:ac:
b7:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:64:53:08:AD:C6:7B:80:03:1F:30:96:4A:43:A1:25:2D:99:3B:E8
X509v3 Authority Key Identifier:
keyid:AB:9F:84:C6:A4:8D:5C:6D:FE:64:14:98:73:B1:48:D1:12:0B:00:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q5-ExqSNXG3-ZBSYc7FI0RILAJs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/36177f-7cd8-4bd3-8689-213d64beff71/1/CGRTCK3Ge4ADHzCWSkOhJS2ZO-g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/36177f-7cd8-4bd3-8689-213d64beff71/1/q5-ExqSNXG3-ZBSYc7FI0RILAJs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.187.101.0/24
IPv6:
2a0a:47c0::/29
Signature Algorithm: sha256WithRSAEncryption
72:09:c0:74:ee:9b:db:39:d4:9b:f3:d2:34:f6:2b:d8:d4:6a:
c6:06:e4:eb:ea:4f:a3:24:d7:d0:9f:4a:c5:3e:3b:b4:4d:d3:
e5:fd:29:5e:87:fe:3d:59:d1:e7:5f:5d:fd:a5:d0:87:0a:e8:
a1:35:19:fd:60:4a:68:9e:ba:99:b4:dc:b7:ed:93:ed:93:24:
03:5c:bf:0b:ff:b9:b9:85:7b:b5:13:3a:54:6e:d9:91:80:3e:
0f:88:cc:1b:6d:bb:11:83:a3:87:bc:c2:8b:7f:3a:4a:06:45:
1d:05:44:8c:3a:f5:f6:5e:68:76:b3:3e:ba:37:0f:28:a2:96:
52:db:95:8a:79:4a:b3:98:d4:d7:2b:d9:01:c8:bd:e1:15:f4:
86:81:0b:5d:18:ec:44:18:4f:59:82:17:ef:b7:06:d7:3b:a0:
43:ed:97:0b:e5:96:65:42:5f:9a:cd:86:cf:a0:e8:2d:d5:41:
23:63:e9:fc:c5:58:60:25:e3:a9:8b:14:3b:da:e5:b3:7f:bf:
c3:3e:b6:b9:01:ea:73:ab:71:23:98:11:a7:7f:33:ae:4e:e6:
f6:d2:f7:3b:32:4b:42:1a:8f:f9:73:ab:7d:78:91:fc:1f:80:
29:8f:c2:e6:a6:25:1c:b9:81:e3:74:72:57:e7:4e:9f:a3:75:
17:f6:22:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:01 2025 by rpki-client on console.sobornost.net