Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/c455bd-b825-4901-8381-04d1247e5d0a/1/ASer5kiqDiVWOaPZMylwsoahAIw.roa
File: ASer5kiqDiVWOaPZMylwsoahAIw.roa (raw, json)
Hash identifier: u7jpBR9dXty+UTW4qdoR89luPMWxLAPFa0EB+Y83dzY=
Subject key identifier: 01:27:AB:E6:48:AA:0E:25:56:39:A3:D9:33:29:70:B2:86:A1:00:8C
Certificate issuer: /CN=ff0ddf3fe5772201aff78c24e97f944c3805ff6b
Certificate serial: 019427B612CB6A8E5009E11D7F3FE1C3A220
Authority key identifier: FF:0D:DF:3F:E5:77:22:01:AF:F7:8C:24:E9:7F:94:4C:38:05:FF:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_w3fP-V3IgGv94wk6X-UTDgF_2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/c455bd-b825-4901-8381-04d1247e5d0a/1/ASer5kiqDiVWOaPZMylwsoahAIw.roa
Signing time: Thu 02 Jan 2025 15:50:31 +0000
ROA not before: Thu 02 Jan 2025 15:50:31 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 20746
IP address blocks: 185.86.60.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b6:12:cb:6a:8e:50:09:e1:1d:7f:3f:e1:c3:a2:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff0ddf3fe5772201aff78c24e97f944c3805ff6b
Validity
Not Before: Jan 2 15:50:31 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0127abe648aa0e255639a3d9332970b286a1008c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:89:47:6b:c8:63:d0:01:aa:e3:14:fb:df:cf:
c7:bb:5a:26:25:97:8d:14:d5:95:c1:1c:58:ca:b2:
de:28:a6:ea:c8:dc:da:69:6c:d5:ce:3c:fe:5d:eb:
9e:b0:4a:eb:da:8f:54:cc:2c:ee:9d:8f:ca:38:f0:
04:b1:03:14:8a:7e:49:e0:3f:c1:6e:e3:71:87:fb:
34:3c:c3:cd:e0:ee:6e:a0:84:d9:ba:63:3a:8a:26:
5c:54:40:f6:69:a8:2d:5f:14:b1:a8:70:64:08:fd:
7f:f0:51:e8:13:10:e9:cf:6e:fc:c9:8b:f3:f7:12:
fb:68:d0:fc:6b:73:27:0e:d6:f7:9e:70:77:37:40:
20:15:16:6f:0b:ad:ad:bb:7e:87:24:f8:85:30:41:
b5:e4:38:19:6e:21:c3:d3:da:27:3e:42:db:85:60:
01:94:60:04:86:02:cd:42:25:fc:7b:c4:70:95:0f:
68:ba:4b:d3:0a:1b:76:36:16:52:fa:63:2e:ba:f5:
9d:82:58:88:98:20:29:fe:98:06:53:95:44:3e:97:
6c:5b:4c:99:8d:7c:5a:9d:34:d4:a7:c8:5c:6f:71:
46:0e:7f:fb:61:d8:93:e5:22:30:58:34:c3:3f:6f:
af:55:b1:81:26:01:db:4c:25:73:3b:a6:72:6f:fc:
d0:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:27:AB:E6:48:AA:0E:25:56:39:A3:D9:33:29:70:B2:86:A1:00:8C
X509v3 Authority Key Identifier:
keyid:FF:0D:DF:3F:E5:77:22:01:AF:F7:8C:24:E9:7F:94:4C:38:05:FF:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_w3fP-V3IgGv94wk6X-UTDgF_2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/c455bd-b825-4901-8381-04d1247e5d0a/1/ASer5kiqDiVWOaPZMylwsoahAIw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/c455bd-b825-4901-8381-04d1247e5d0a/1/_w3fP-V3IgGv94wk6X-UTDgF_2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.86.60.0/24
Signature Algorithm: sha256WithRSAEncryption
74:8a:d8:8f:ab:ce:ed:fa:c4:ba:4f:52:58:e1:0d:ca:9a:93:
b2:45:bb:15:4a:55:ef:b3:61:88:ca:ea:f9:4e:42:06:b8:14:
32:8f:6e:c5:15:9f:1f:4a:57:17:9c:6c:92:16:29:0d:52:5a:
80:bc:30:48:4d:b6:7f:19:00:f6:cd:32:36:cf:94:d8:ba:29:
e6:be:16:37:e0:f8:3b:cc:58:cc:2e:2a:d1:8f:2c:fb:00:c3:
c5:0a:eb:a5:0a:47:a6:4e:f9:f4:83:97:1c:59:b0:3c:2d:7f:
b9:8b:7e:f7:1c:7b:77:11:45:ae:af:2d:a1:48:54:b5:f5:07:
84:d7:e0:92:a1:1f:89:4c:91:d0:2b:20:7b:ff:5c:d9:d6:8f:
03:4f:45:41:b6:8d:94:b4:80:7c:6a:48:97:f0:ec:62:34:02:
72:1a:09:8b:20:f7:37:af:91:a0:4e:3c:a5:00:cd:fc:83:fb:
07:e5:49:a6:96:0d:85:93:49:8a:1a:1d:52:9c:67:f8:92:51:
b9:82:e9:8a:05:91:fd:8f:ca:6c:4d:8d:b4:40:6b:cc:bd:12:
d7:4f:21:77:f5:c8:40:3c:53:99:9a:2a:8e:c2:75:82:bf:75:
45:26:ae:c6:82:6a:54:0a:6e:15:8f:ce:bb:89:5f:8c:dc:5d:
c8:fb:b3:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:02 2025 by rpki-client on console.sobornost.net