Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/df8105-18ee-4172-b6bb-0dc33acc1dba/1/ybYQIpMfde41Tc94ckzGr4yZyvk.roa
File: ybYQIpMfde41Tc94ckzGr4yZyvk.roa (raw, json)
Hash identifier: o6qsKgPuxOXvm5e0AfBzKvfmoP1y9YyfuSfaRj+weT4=
Subject key identifier: C9:B6:10:22:93:1F:75:EE:35:4D:CF:78:72:4C:C6:AF:8C:99:CA:F9
Certificate issuer: /CN=b84785791e07646f5cc58b15e86434cb9c24149d
Certificate serial: 019424B3D5DCE67192778D76997C3A24BF07
Authority key identifier: B8:47:85:79:1E:07:64:6F:5C:C5:8B:15:E8:64:34:CB:9C:24:14:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uEeFeR4HZG9cxYsV6GQ0y5wkFJ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/df8105-18ee-4172-b6bb-0dc33acc1dba/1/ybYQIpMfde41Tc94ckzGr4yZyvk.roa
Signing time: Thu 02 Jan 2025 01:49:12 +0000
ROA not before: Thu 02 Jan 2025 01:49:12 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 62137
IP address blocks: 185.44.36.0/24 maxlen: 24
185.44.37.0/24 maxlen: 24
185.44.38.0/24 maxlen: 24
185.44.39.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:d5:dc:e6:71:92:77:8d:76:99:7c:3a:24:bf:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b84785791e07646f5cc58b15e86434cb9c24149d
Validity
Not Before: Jan 2 01:49:12 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c9b61022931f75ee354dcf78724cc6af8c99caf9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:1a:d3:64:1d:41:9d:74:9b:0c:e3:57:a3:00:
e0:f4:34:6a:cd:be:4b:58:ff:bc:b8:37:10:b4:32:
96:22:2b:aa:a6:cf:7e:43:a8:b9:a8:9c:57:bf:33:
e1:53:15:2f:97:74:c2:1f:fd:bb:37:10:19:53:82:
0b:d2:c9:8e:76:a7:b8:e7:50:99:ef:98:ad:29:78:
bd:fd:de:c0:2b:65:e3:f7:f6:65:87:4b:d0:f5:3f:
be:77:54:d0:0c:36:d0:b4:85:14:0b:9c:e6:0e:f4:
2e:86:82:e3:9b:1c:74:ac:ac:d5:19:ef:15:38:e2:
4c:e8:47:cd:f3:b4:40:43:ed:41:bd:9e:1b:9b:ef:
19:f7:82:d6:32:b0:c4:c3:90:d1:8d:67:f1:62:52:
50:de:78:06:0c:a5:75:39:5e:1f:bb:e3:07:a4:2f:
d3:6e:39:26:68:08:bd:39:58:0e:0c:36:8a:17:49:
1f:e1:9c:32:bd:8c:76:42:3c:a6:da:05:dc:64:bb:
b4:c8:85:65:77:ef:20:1e:01:86:8e:de:5f:50:d4:
a6:d8:ec:cc:14:74:e8:3d:94:f2:ef:67:5d:4e:a6:
e1:74:c2:18:d2:e6:40:d9:f7:a8:1a:8e:04:2f:c3:
5c:36:ce:1d:17:b8:17:e2:a8:72:f6:45:d4:51:6b:
85:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:B6:10:22:93:1F:75:EE:35:4D:CF:78:72:4C:C6:AF:8C:99:CA:F9
X509v3 Authority Key Identifier:
keyid:B8:47:85:79:1E:07:64:6F:5C:C5:8B:15:E8:64:34:CB:9C:24:14:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uEeFeR4HZG9cxYsV6GQ0y5wkFJ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/df8105-18ee-4172-b6bb-0dc33acc1dba/1/ybYQIpMfde41Tc94ckzGr4yZyvk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/df8105-18ee-4172-b6bb-0dc33acc1dba/1/uEeFeR4HZG9cxYsV6GQ0y5wkFJ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.44.36.0/22
Signature Algorithm: sha256WithRSAEncryption
97:50:20:9b:50:0b:ee:bf:91:14:00:da:56:38:ac:ec:b0:53:
0c:ff:21:a0:5b:5e:03:e2:60:0c:35:8d:46:d7:89:e1:ba:1f:
e2:8e:57:12:eb:8c:f6:3e:7c:a2:55:83:ec:57:7f:a1:7e:84:
8a:44:d0:bb:41:60:d7:03:8a:c2:dc:9b:01:67:cf:3e:a7:42:
cc:ba:f5:07:7e:3b:d3:6e:9b:d4:e4:3c:6c:00:c1:0d:1b:77:
58:23:a3:07:45:fe:10:0a:8a:d4:bb:e2:46:7d:a9:24:cb:71:
f2:ac:8d:3b:49:a3:f0:24:12:a3:b4:d2:69:4b:24:46:a9:f0:
d9:d5:39:49:87:a1:ce:69:53:d2:12:8c:39:f5:0c:9f:63:60:
5d:5b:55:3b:68:f1:59:e6:5b:d0:3b:b2:09:10:33:c1:4e:fd:
62:46:5c:13:2d:a9:e9:40:09:c9:20:fa:71:64:f0:f5:ea:b7:
34:31:67:57:df:b6:cb:c9:5e:42:69:15:ab:8f:83:1c:f2:bc:
9c:dd:91:ff:49:ed:74:93:31:81:43:16:25:ea:53:ec:d8:03:
55:5f:0f:b0:04:ef:96:86:89:02:4c:ea:49:cf:30:e8:38:92:
6e:48:8d:91:2d:db:6f:c4:aa:d3:a6:29:ed:ed:e5:3e:ac:cd:
8a:11:2c:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:06 2025 by rpki-client on console.sobornost.net