Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/8d55c0-9aa0-4be7-82a8-dab6b83cf7ec/1/pgzL98bXwq-9exs7N1Aw8lwmeJ8.roa
File: pgzL98bXwq-9exs7N1Aw8lwmeJ8.roa (raw, json)
Hash identifier: xy+0YdokIF7xVDG+fNdt0bMI+vPVGsiM9WuUOpAJvfE=
Subject key identifier: A6:0C:CB:F7:C6:D7:C2:AF:BD:7B:1B:3B:37:50:30:F2:5C:26:78:9F
Certificate issuer: /CN=4c7844abef711c232c84f83c807a420af3804728
Certificate serial: 01942686DF083BD5415BEAB19293797D4631
Authority key identifier: 4C:78:44:AB:EF:71:1C:23:2C:84:F8:3C:80:7A:42:0A:F3:80:47:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/THhEq-9xHCMshPg8gHpCCvOARyg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/8d55c0-9aa0-4be7-82a8-dab6b83cf7ec/1/pgzL98bXwq-9exs7N1Aw8lwmeJ8.roa
Signing time: Thu 02 Jan 2025 10:19:20 +0000
ROA not before: Thu 02 Jan 2025 10:19:20 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 203610
IP address blocks: 185.129.64.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:86:df:08:3b:d5:41:5b:ea:b1:92:93:79:7d:46:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c7844abef711c232c84f83c807a420af3804728
Validity
Not Before: Jan 2 10:19:20 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a60ccbf7c6d7c2afbd7b1b3b375030f25c26789f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:e6:e7:3a:b1:85:49:c7:15:d9:27:15:39:d9:
b2:f1:07:4b:4e:6f:74:46:85:18:15:d6:de:2e:cf:
9b:ae:51:b8:99:dc:10:94:a0:70:81:d2:b2:60:a1:
d9:b1:29:44:ed:6b:5d:14:8c:72:e7:a1:26:58:66:
0b:49:eb:84:b8:5b:e4:ae:42:a7:af:4d:36:b7:08:
2a:bc:0a:01:97:63:f8:a9:87:0e:f9:7d:7d:e0:81:
a8:d5:a5:b2:a1:8c:4e:77:f7:88:5c:df:12:10:31:
20:65:ec:d9:91:17:1a:1a:df:b2:2c:69:e2:d3:e2:
ee:5d:9d:b4:99:fe:65:2c:55:14:dc:df:bc:31:ce:
04:10:74:b7:72:17:0a:d2:4b:f1:ae:50:4a:7d:fc:
88:c8:77:3e:73:fd:8e:00:81:26:fa:28:25:24:7c:
94:c4:88:62:c2:93:04:87:74:eb:78:9c:a2:57:4e:
f7:2d:d5:83:9e:99:86:8d:2f:9b:b4:aa:65:36:a2:
20:36:8a:42:25:80:9c:95:68:43:17:f7:a8:62:82:
ad:c1:53:54:39:54:63:55:ac:e3:36:f7:b0:e5:9b:
72:8b:3f:1e:9e:69:ed:7d:4b:59:08:87:d7:7e:d5:
dd:e9:7c:eb:8e:13:c4:f5:27:3d:41:72:2c:f1:bc:
2b:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:0C:CB:F7:C6:D7:C2:AF:BD:7B:1B:3B:37:50:30:F2:5C:26:78:9F
X509v3 Authority Key Identifier:
keyid:4C:78:44:AB:EF:71:1C:23:2C:84:F8:3C:80:7A:42:0A:F3:80:47:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/THhEq-9xHCMshPg8gHpCCvOARyg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/8d55c0-9aa0-4be7-82a8-dab6b83cf7ec/1/pgzL98bXwq-9exs7N1Aw8lwmeJ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/8d55c0-9aa0-4be7-82a8-dab6b83cf7ec/1/THhEq-9xHCMshPg8gHpCCvOARyg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.129.64.0/22
Signature Algorithm: sha256WithRSAEncryption
12:4a:03:5c:da:91:fd:75:79:17:77:a4:39:e1:08:a3:81:8f:
3e:5a:7c:dc:60:6e:9a:d1:2f:67:3f:c4:f4:36:00:89:3f:d1:
a7:ad:44:1c:63:57:03:0e:1d:d7:65:ca:28:76:04:39:ba:19:
ac:e0:8e:fd:23:2d:08:03:c0:e3:d1:c6:f5:20:74:8d:b5:93:
b9:d9:73:21:02:d2:13:94:8c:be:ce:c1:d1:16:59:82:0d:05:
bd:97:11:e8:7e:54:05:43:ed:70:c8:e9:db:67:7e:f5:1f:1c:
37:0d:b8:f2:4d:b4:dd:b5:ac:3c:71:16:60:8a:fa:ed:02:f5:
24:b9:79:38:dc:d4:dc:a0:d2:88:0a:bb:03:80:5d:3d:4f:85:
6e:51:ed:b2:e3:9a:4d:70:6d:e9:93:9b:9c:5f:ff:5c:8e:3e:
19:2a:75:3c:ba:31:a9:46:da:f3:27:60:c7:ad:d4:3a:41:ae:
64:23:64:5d:08:53:3c:85:11:db:bd:f7:26:c7:b2:85:78:85:
df:27:86:ed:f5:ab:51:b0:df:be:c7:f8:62:30:1c:60:a7:68:
d6:13:d8:a9:92:34:46:38:36:b0:df:84:1f:f2:09:16:de:08:
e2:e4:60:6e:c8:ee:df:24:15:ff:17:6e:a7:7b:28:17:5a:31:
58:8e:19:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:10 2025 by rpki-client on console.sobornost.net