Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/t0JEi5tAyOuZ0MYKRdDLjBPqRBg.roa
File: t0JEi5tAyOuZ0MYKRdDLjBPqRBg.roa (raw, json)
Hash identifier: VXqIfsexZ/PHzMIp0Rdxa9+6+t4R6H3VkdD7odrOOU0=
Subject key identifier: B7:42:44:8B:9B:40:C8:EB:99:D0:C6:0A:45:D0:CB:8C:13:EA:44:18
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 019423D7C098035C281797E284A22EE21A52
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/t0JEi5tAyOuZ0MYKRdDLjBPqRBg.roa
Signing time: Wed 01 Jan 2025 21:48:49 +0000
ROA not before: Wed 01 Jan 2025 21:48:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 216271
IP address blocks: 185.168.28.0/22 maxlen: 22
185.201.136.0/22 maxlen: 22
2a06:b3c0::/29 maxlen: 29
2a06:b440::/29 maxlen: 29
2a06:cac0::/29 maxlen: 29
2a0a:e2c0::/29 maxlen: 29
2a0e:7780::/29 maxlen: 29
2a0f:d480::/29 maxlen: 29
2a0f:e000::/29 maxlen: 29
2a11:1140::/29 maxlen: 29
2a11:2f40::/29 maxlen: 29
2a11:3b40::/29 maxlen: 29
2a11:7240::/29 maxlen: 29
2a11:9600::/29 maxlen: 29
2a11:dcc0::/29 maxlen: 29
2a11:f140::/29 maxlen: 29
2a12:440::/29 maxlen: 29
2a12:ec0::/29 maxlen: 29
2a12:1900::/29 maxlen: 29
2a12:28c0::/29 maxlen: 29
2a12:6640::/29 maxlen: 29
2a12:6740::/29 maxlen: 29
2a12:6b80::/29 maxlen: 29
2a12:6f40::/29 maxlen: 29
2a12:8ec0::/29 maxlen: 29
2a12:ccc0::/29 maxlen: 29
2a12:e240::/29 maxlen: 29
2a12:f0c0::/29 maxlen: 29
2a13:ba00::/29 maxlen: 29
2a13:dac0::/29 maxlen: 29
2a14:c0::/29 maxlen: 29
2a14:140::/29 maxlen: 29
2a14:1c0::/29 maxlen: 29
2a14:800::/29 maxlen: 29
2a14:f40::/29 maxlen: 29
2a14:7e00::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:c0:98:03:5c:28:17:97:e2:84:a2:2e:e2:1a:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: Jan 1 21:48:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b742448b9b40c8eb99d0c60a45d0cb8c13ea4418
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:b5:07:e7:8c:a1:53:10:ce:32:4f:21:77:90:
6a:90:ef:3d:34:8d:fc:e3:8c:a6:2b:3f:a5:82:d0:
0e:ce:ef:6b:d3:60:99:78:fb:f3:60:a6:de:30:37:
af:ec:b0:4c:f5:49:08:fb:b8:c0:16:39:61:fb:0a:
f1:be:88:5f:0f:59:c7:29:cf:67:3c:37:91:b1:b7:
22:ad:3f:d5:73:cc:b5:b9:72:93:23:3d:41:7d:c3:
1a:7d:21:f8:06:3b:2f:26:2a:b4:e3:2d:07:28:e3:
42:91:e2:c8:78:10:af:ee:75:60:31:e5:15:5a:e5:
b8:68:16:a8:42:e2:80:49:f0:3f:23:55:10:1a:a6:
ad:18:20:78:60:1d:14:8a:d6:48:7c:c8:b3:c0:99:
98:ab:1b:0d:a6:c5:c1:4c:49:4d:cd:65:c6:87:f6:
29:f2:cc:1e:24:a4:8a:d1:8b:40:8e:42:f4:80:5b:
be:49:5d:69:29:03:14:10:e2:a1:7b:43:8a:b0:96:
82:ec:22:07:43:ef:fa:43:74:18:f6:ef:e1:6e:2f:
d0:e2:a6:87:22:75:25:1e:04:5c:0b:a5:34:2b:d8:
1c:3b:05:f6:57:ad:27:1c:65:3a:71:9d:38:a1:a0:
73:2d:9a:10:85:e2:e7:7a:b1:17:48:31:29:66:fd:
68:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:42:44:8B:9B:40:C8:EB:99:D0:C6:0A:45:D0:CB:8C:13:EA:44:18
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/t0JEi5tAyOuZ0MYKRdDLjBPqRBg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.168.28.0/22
185.201.136.0/22
IPv6:
2a06:b3c0::/29
2a06:b440::/29
2a06:cac0::/29
2a0a:e2c0::/29
2a0e:7780::/29
2a0f:d480::/29
2a0f:e000::/29
2a11:1140::/29
2a11:2f40::/29
2a11:3b40::/29
2a11:7240::/29
2a11:9600::/29
2a11:dcc0::/29
2a11:f140::/29
2a12:440::/29
2a12:ec0::/29
2a12:1900::/29
2a12:28c0::/29
2a12:6640::/29
2a12:6740::/29
2a12:6b80::/29
2a12:6f40::/29
2a12:8ec0::/29
2a12:ccc0::/29
2a12:e240::/29
2a12:f0c0::/29
2a13:ba00::/29
2a13:dac0::/29
2a14:c0::/29
2a14:140::/29
2a14:1c0::/29
2a14:800::/29
2a14:f40::/29
2a14:7e00::/29
Signature Algorithm: sha256WithRSAEncryption
47:f8:9e:03:f9:25:7f:78:3b:4d:7e:af:2d:d6:6c:5c:e2:89:
e4:99:2a:e8:1a:6d:c0:43:8b:83:a6:ba:73:4c:d1:ff:fb:c8:
8a:37:75:78:62:32:a5:73:83:44:77:64:71:59:90:40:e8:7b:
92:9b:9f:67:b4:d7:14:b4:36:40:f5:f2:a5:0b:b6:e4:c8:99:
10:e6:c3:1a:b6:c9:02:82:36:dc:60:e7:c1:7d:e8:7b:9f:69:
de:f0:21:0b:5f:d1:b6:d1:5a:62:fa:b2:0d:38:b0:68:aa:da:
5e:a7:73:2b:ee:10:a6:df:cc:4b:8c:19:5c:17:83:02:ce:d6:
a3:fd:9c:af:8d:78:60:9e:72:d1:f1:39:8f:58:a2:d5:08:59:
24:e7:82:0e:92:96:68:1a:24:63:1b:b2:03:b5:15:8f:05:86:
6f:54:e0:02:b0:6f:e2:a3:7e:6c:8a:2c:a5:c7:1f:ab:19:ad:
e0:e6:da:15:3a:c2:91:d5:f5:e7:ac:1d:97:fb:f4:29:ca:4b:
43:5a:a3:68:1f:86:af:18:29:98:65:9b:d6:fc:e5:c9:a3:72:
c7:4c:5b:7e:fd:68:74:4e:fd:5f:a1:47:b1:d6:22:d8:93:99:
c5:ec:e0:2d:9e:b7:54:ff:d1:b8:05:90:e9:e4:20:de:35:76:
75:c5:93:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 23 15:46:31 2025 by rpki-client on console.sobornost.net