Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/e813d4-4126-4ca1-90d6-45d05a4b1d99/1/7221QtQkpZ5fYG5uSqjd2485FGI.roa
File: 7221QtQkpZ5fYG5uSqjd2485FGI.roa (raw, json)
Hash identifier: qWfFUUJnuvb44KA8Ta3mXVGgM6VvJjf6ZydNkx5R4C0=
Subject key identifier: EF:6D:B5:42:D4:24:A5:9E:5F:60:6E:6E:4A:A8:DD:DB:8F:39:14:62
Certificate issuer: /CN=64bb22f822db7451fe1e2196cac63c5647fb1ad5
Certificate serial: 0194228DE79CEB47EEF9529B61470F8B060E
Authority key identifier: 64:BB:22:F8:22:DB:74:51:FE:1E:21:96:CA:C6:3C:56:47:FB:1A:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZLsi-CLbdFH-HiGWysY8Vkf7GtU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/e813d4-4126-4ca1-90d6-45d05a4b1d99/1/7221QtQkpZ5fYG5uSqjd2485FGI.roa
Signing time: Wed 01 Jan 2025 15:48:32 +0000
ROA not before: Wed 01 Jan 2025 15:48:32 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 198004
IP address blocks: 185.234.240.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:e7:9c:eb:47:ee:f9:52:9b:61:47:0f:8b:06:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64bb22f822db7451fe1e2196cac63c5647fb1ad5
Validity
Not Before: Jan 1 15:48:32 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ef6db542d424a59e5f606e6e4aa8dddb8f391462
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:f8:34:50:f9:5a:a3:e1:a0:75:b3:34:ca:7b:
19:c2:76:cc:63:15:93:95:4a:8d:f6:db:09:38:c1:
65:86:66:d9:c1:03:78:de:32:9b:3e:2d:79:a9:9c:
10:57:41:08:ab:76:37:c3:3a:e4:89:57:a2:03:fc:
e8:eb:c4:64:b6:4f:8e:8c:d7:4a:4d:2c:1a:1d:ac:
27:79:e5:85:5a:30:4f:d0:e6:4e:44:2f:c2:ae:3d:
34:6a:34:be:ba:98:8a:3b:9a:f6:2f:1e:d3:58:7f:
04:0c:70:1d:62:35:40:08:58:74:40:76:0b:4d:e7:
1b:d4:73:15:80:6f:fa:f4:05:38:91:af:e6:4c:d1:
21:eb:fa:d6:bc:1a:b9:d8:9f:3f:f2:ff:87:bf:83:
27:3a:12:c4:5d:48:88:76:20:ec:eb:0b:1d:e2:29:
83:04:27:a2:01:5c:ce:aa:1f:ac:d1:dd:6d:47:d3:
a9:b2:37:9c:43:4f:2f:f8:bf:11:d5:62:b2:ff:61:
5a:71:70:40:2a:3b:4b:cf:3d:dc:70:b9:0d:44:9e:
58:e8:60:7b:57:0a:45:19:97:3a:d8:18:4a:7d:a8:
0f:8c:62:e9:c4:48:ba:f1:c5:b5:92:ab:d2:6e:db:
eb:e2:f8:26:ac:ae:6b:bb:50:1e:d3:7f:8b:b1:90:
c5:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:6D:B5:42:D4:24:A5:9E:5F:60:6E:6E:4A:A8:DD:DB:8F:39:14:62
X509v3 Authority Key Identifier:
keyid:64:BB:22:F8:22:DB:74:51:FE:1E:21:96:CA:C6:3C:56:47:FB:1A:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZLsi-CLbdFH-HiGWysY8Vkf7GtU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/e813d4-4126-4ca1-90d6-45d05a4b1d99/1/7221QtQkpZ5fYG5uSqjd2485FGI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/e813d4-4126-4ca1-90d6-45d05a4b1d99/1/ZLsi-CLbdFH-HiGWysY8Vkf7GtU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.234.240.0/22
Signature Algorithm: sha256WithRSAEncryption
44:36:0c:f2:1c:b8:50:02:d9:ab:83:40:7b:2e:c6:d2:93:0f:
c3:e4:48:55:c1:64:ae:50:f7:12:f4:b6:a5:5b:10:aa:ae:a6:
68:9d:a1:e6:3e:87:f3:44:56:42:26:5d:23:cd:9c:69:ab:e0:
32:e6:3e:cf:09:d3:ab:72:89:e7:d6:f2:b2:7f:cd:0a:fc:48:
f8:b3:71:35:ba:43:56:d2:c4:c5:1c:73:35:35:b4:a1:06:e3:
33:7a:f0:e5:fa:cd:b8:d6:74:53:a9:26:ef:94:19:9a:e4:20:
65:57:17:3e:40:25:b6:d6:2e:5a:fe:ca:89:3f:07:80:32:2a:
79:d3:f8:f1:23:ce:a9:80:1c:a0:8f:d7:c4:63:32:a6:1f:6b:
2c:ea:f1:09:66:c4:e9:a3:55:60:b1:ed:f5:18:09:08:4e:2f:
40:14:7d:23:57:e6:f7:6b:6d:19:9f:5e:3c:db:1b:a6:cf:63:
79:94:87:d4:d9:89:0d:e6:95:c2:4b:7a:21:90:df:9f:85:90:
6c:47:55:33:a1:d1:ec:f7:15:dc:80:8f:89:9c:6a:86:5f:ad:
7b:f8:7d:65:42:3f:b3:1f:4b:27:b1:14:02:c6:33:34:c4:b3:
99:c9:a3:58:8a:1b:47:47:9b:75:7e:66:64:7c:4e:32:14:3c:
93:3b:71:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:16 2025 by rpki-client on console.sobornost.net