Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/f12ba1-d826-4662-bed9-c997b87b4b5f/1/r7S4PGOtYK_PBp7kgURvb3XFM1M.roa
File: r7S4PGOtYK_PBp7kgURvb3XFM1M.roa (raw, json)
Hash identifier: oYqwnDt8x2Fy139phL6QrAYp1Cw9URTCQ1HjbcPByVI=
Subject key identifier: AF:B4:B8:3C:63:AD:60:AF:CF:06:9E:E4:81:44:6F:6F:75:C5:33:53
Certificate issuer: /CN=e2d17ada6439288c29703cf705ef64afb3820ad9
Certificate serial: 01942143E6F70E0E42CA47CE2F816DF50327
Authority key identifier: E2:D1:7A:DA:64:39:28:8C:29:70:3C:F7:05:EF:64:AF:B3:82:0A:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4tF62mQ5KIwpcDz3Be9kr7OCCtk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/f12ba1-d826-4662-bed9-c997b87b4b5f/1/r7S4PGOtYK_PBp7kgURvb3XFM1M.roa
Signing time: Wed 01 Jan 2025 09:48:05 +0000
ROA not before: Wed 01 Jan 2025 09:48:05 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 29644
IP address blocks: 185.69.212.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:43:e6:f7:0e:0e:42:ca:47:ce:2f:81:6d:f5:03:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2d17ada6439288c29703cf705ef64afb3820ad9
Validity
Not Before: Jan 1 09:48:05 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=afb4b83c63ad60afcf069ee481446f6f75c53353
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:74:37:9d:1a:ea:06:cb:64:bc:b5:d2:6c:a2:
8b:f7:46:7a:82:43:8a:0f:a0:d9:f3:97:1c:b6:de:
0e:86:0d:35:ba:d7:b1:d9:9b:fa:49:08:93:fd:5c:
07:5b:5c:85:58:ee:2e:b0:17:ab:04:95:88:0a:11:
b0:ee:bd:4a:ad:c3:cb:29:06:c0:9c:35:d7:41:d4:
d4:7e:e2:a4:f8:cd:f2:23:b4:fc:1d:29:38:e1:30:
42:57:2e:4d:44:26:ba:03:53:aa:36:c3:70:b4:1e:
b9:3d:ac:a7:7e:b5:51:41:0c:5a:2a:31:1a:9c:12:
c5:e6:a8:f2:c2:65:7b:ec:fa:26:2c:59:43:ec:00:
05:7b:4d:8e:4b:f8:f1:f0:13:01:77:83:fd:99:e2:
6f:7e:2d:b4:71:0d:2c:d4:07:be:59:f7:ec:74:41:
13:e6:75:df:8c:15:9f:da:87:7d:75:77:48:53:e4:
13:b9:ca:e9:a6:cf:6d:ca:0a:d9:8f:9a:1e:bd:ba:
e9:6c:43:2b:a1:9c:7c:f8:04:de:0c:47:db:ae:03:
69:6e:04:64:41:b9:ca:1b:bf:10:d6:d2:15:ea:8d:
7d:70:a5:a1:f7:fb:92:f7:87:49:5e:b2:88:37:84:
39:07:be:35:20:32:13:c0:dc:cd:27:19:0e:cb:6e:
a1:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:B4:B8:3C:63:AD:60:AF:CF:06:9E:E4:81:44:6F:6F:75:C5:33:53
X509v3 Authority Key Identifier:
keyid:E2:D1:7A:DA:64:39:28:8C:29:70:3C:F7:05:EF:64:AF:B3:82:0A:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4tF62mQ5KIwpcDz3Be9kr7OCCtk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/f12ba1-d826-4662-bed9-c997b87b4b5f/1/r7S4PGOtYK_PBp7kgURvb3XFM1M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/f12ba1-d826-4662-bed9-c997b87b4b5f/1/4tF62mQ5KIwpcDz3Be9kr7OCCtk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.69.212.0/22
Signature Algorithm: sha256WithRSAEncryption
d7:e8:63:ee:e7:37:78:db:9d:08:a8:7e:a3:f3:4e:bf:e8:e0:
11:bd:4c:45:9f:6b:e8:ec:25:39:55:80:17:72:5d:07:ef:17:
01:5f:0d:52:1f:49:fb:1c:f1:d0:ee:84:16:30:d8:be:48:53:
5c:4d:bc:8d:21:8e:00:24:34:85:b5:24:4c:4a:2a:74:53:3f:
57:b1:e8:26:f4:ef:70:0d:3c:9c:23:c0:d8:04:1b:00:5f:69:
f0:2a:d5:c2:7c:eb:a4:e6:ff:00:5d:3e:87:3a:ad:2c:a1:e7:
d7:9d:26:9d:51:d9:42:ea:b5:82:d0:c2:90:9a:52:0f:9f:49:
9a:30:b9:f0:cc:e8:67:3d:99:b2:c2:51:63:94:31:d6:10:6c:
0a:40:d6:ef:62:65:02:2f:56:d3:f8:19:84:ce:c9:8f:21:b2:
ac:0a:31:51:fc:d8:72:b9:9a:00:e6:c2:b7:98:2b:9d:47:fa:
52:d8:ee:77:1e:a1:4c:9d:f3:63:df:be:be:c6:a0:41:01:1a:
74:1c:8f:68:5b:e9:83:20:ee:f0:72:f5:99:39:ca:d5:c1:fb:
3c:77:36:83:8d:d0:d7:f0:32:9d:54:ba:85:3c:a4:fb:da:4d:
27:2a:20:3a:ed:10:f4:22:b0:9a:02:97:5e:f3:09:fa:b1:b9:
eb:26:53:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:17 2025 by rpki-client on console.sobornost.net