Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/4f8514-2e20-4935-995c-a084f76c8e2b/1/8tP5koea75iLq4fzJTwOilUzRew.roa
File: 8tP5koea75iLq4fzJTwOilUzRew.roa (raw, json)
Hash identifier: nuWcmB+t6L5mbRuVr1gjXyaKkJjO2CWP61eKOZ9j5qA=
Subject key identifier: F2:D3:F9:92:87:9A:EF:98:8B:AB:87:F3:25:3C:0E:8A:55:33:45:EC
Certificate issuer: /CN=92f4b1c0bfbad46b811eee568a18fbaa14a9d687
Certificate serial: 0194266B47BD5AAFB68D8CEBD9ED96EC68DE
Authority key identifier: 92:F4:B1:C0:BF:BA:D4:6B:81:1E:EE:56:8A:18:FB:AA:14:A9:D6:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kvSxwL-61GuBHu5Wihj7qhSp1oc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/4f8514-2e20-4935-995c-a084f76c8e2b/1/8tP5koea75iLq4fzJTwOilUzRew.roa
Signing time: Thu 02 Jan 2025 09:49:12 +0000
ROA not before: Thu 02 Jan 2025 09:49:12 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 200953
IP address blocks: 81.177.185.0/24 maxlen: 24
81.177.193.0/24 maxlen: 24
213.59.140.0/22 maxlen: 22
213.59.140.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:47:bd:5a:af:b6:8d:8c:eb:d9:ed:96:ec:68:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92f4b1c0bfbad46b811eee568a18fbaa14a9d687
Validity
Not Before: Jan 2 09:49:12 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f2d3f992879aef988bab87f3253c0e8a553345ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:9b:35:e2:58:27:75:4f:59:95:49:9a:bd:f6:
84:d8:92:f3:28:c4:4d:f2:41:9f:4c:1c:a2:aa:1b:
2a:71:96:40:39:80:b7:73:67:56:21:3a:16:ff:01:
e7:d8:9f:04:77:ac:51:fe:dc:30:44:eb:61:a2:2b:
cf:1e:35:52:9a:56:46:9b:17:1e:01:f5:ac:f3:0a:
51:35:9c:a3:ea:e0:9f:38:81:1d:3e:94:b0:3a:a8:
e9:55:0f:88:59:c1:11:d7:5c:cf:2b:80:74:cd:a9:
41:c3:4a:bd:50:cd:b9:91:c5:51:f4:6d:10:57:64:
c8:2d:d0:c4:d7:50:47:31:da:9b:31:9b:07:b9:30:
0b:31:15:fa:d0:e5:de:e5:b4:3d:02:c2:72:8e:2c:
2e:95:28:65:2f:0f:51:f9:67:82:e2:37:2a:aa:9d:
e0:09:30:6a:35:df:10:fc:77:e8:88:58:f4:c3:af:
35:d4:6d:ea:5d:2d:45:02:b8:d0:33:a5:d6:39:e1:
2f:51:aa:76:d9:9a:35:67:c9:46:14:bf:86:c5:21:
71:f1:65:32:fb:b2:b0:f9:b0:cd:9b:72:2d:4b:2c:
1f:fa:56:09:5a:9a:60:d9:2c:51:6b:81:81:49:b7:
9c:57:3d:09:69:31:74:53:a9:43:83:2e:28:5a:3b:
04:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:D3:F9:92:87:9A:EF:98:8B:AB:87:F3:25:3C:0E:8A:55:33:45:EC
X509v3 Authority Key Identifier:
keyid:92:F4:B1:C0:BF:BA:D4:6B:81:1E:EE:56:8A:18:FB:AA:14:A9:D6:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kvSxwL-61GuBHu5Wihj7qhSp1oc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/4f8514-2e20-4935-995c-a084f76c8e2b/1/8tP5koea75iLq4fzJTwOilUzRew.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/4f8514-2e20-4935-995c-a084f76c8e2b/1/kvSxwL-61GuBHu5Wihj7qhSp1oc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.177.185.0/24
81.177.193.0/24
213.59.140.0/22
Signature Algorithm: sha256WithRSAEncryption
ad:d8:0a:46:98:c0:01:6c:80:e0:5f:51:cf:81:60:ba:df:09:
6d:ef:34:cd:fc:7b:f9:8b:7b:69:29:65:ca:b1:39:1f:20:b1:
05:59:3b:cb:7b:36:15:22:0e:65:13:f4:53:08:3e:0b:a9:73:
f2:ac:55:46:5e:2d:b3:4f:7d:bf:0a:f7:59:ff:8b:6f:e6:4a:
4c:f0:6b:21:ef:d4:3b:5e:da:22:89:a0:a7:18:3a:86:79:a9:
4c:f4:8e:a6:eb:5e:5a:bf:7e:92:69:58:d8:b8:62:5f:e2:63:
ff:ec:e4:c5:33:20:6d:25:b3:84:3c:cd:dd:8b:29:1a:ef:a8:
7a:96:f3:bc:58:ba:94:9f:a4:6b:e6:db:ed:a4:00:2a:ce:e9:
e7:0d:d4:fa:00:0a:6a:9e:52:f5:0a:76:42:96:d0:fd:c0:b2:
d9:3b:7e:f4:1b:fc:9d:e7:78:71:98:a3:5e:71:6c:b9:80:54:
d8:c1:76:07:56:d4:21:2e:0a:be:60:68:f8:e5:cc:6e:e4:d3:
f9:96:2c:72:dc:b4:7c:3f:cb:48:95:01:4f:f2:39:13:95:66:
e8:74:b2:9a:e9:16:21:93:a7:0b:49:1d:f0:f5:1c:1d:55:cb:
29:94:b2:cc:58:60:81:b5:14:1a:ec:65:aa:a6:a1:08:d5:6b:
b4:04:4b:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:02 2025 by rpki-client on console.sobornost.net