Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/af1f64-c35f-47e8-87c9-8a11b4719d82/1/5zxlB35EdRdJTCe7m-yZUPRlsZg.roa
File: 5zxlB35EdRdJTCe7m-yZUPRlsZg.roa (raw, json)
Hash identifier: unU/ZcVY/VTIZQHY93UKjeMabLrjeik9JkKxVo8Mckc=
Subject key identifier: E7:3C:65:07:7E:44:75:17:49:4C:27:BB:9B:EC:99:50:F4:65:B1:98
Certificate issuer: /CN=f8ad543624f8d3281ec970458ee752f10a424529
Certificate serial: 0194222026C6FF96D734CD562476F2E42876
Authority key identifier: F8:AD:54:36:24:F8:D3:28:1E:C9:70:45:8E:E7:52:F1:0A:42:45:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-K1UNiT40ygeyXBFjudS8QpCRSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/af1f64-c35f-47e8-87c9-8a11b4719d82/1/5zxlB35EdRdJTCe7m-yZUPRlsZg.roa
Signing time: Wed 01 Jan 2025 13:48:39 +0000
ROA not before: Wed 01 Jan 2025 13:48:39 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 39455
IP address blocks: 185.85.36.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:20:26:c6:ff:96:d7:34:cd:56:24:76:f2:e4:28:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8ad543624f8d3281ec970458ee752f10a424529
Validity
Not Before: Jan 1 13:48:39 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e73c65077e447517494c27bb9bec9950f465b198
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:f4:57:58:11:ab:f6:d0:9e:33:b9:6b:3a:b4:
26:28:24:ff:5c:26:ce:e1:51:0d:5c:1e:35:e5:af:
d5:5e:2a:84:f1:0a:ea:1e:1c:6a:98:8c:e9:22:77:
6b:8d:d7:48:29:37:90:a8:93:8e:d2:e7:da:ef:37:
3d:9d:dd:61:16:bd:27:91:f5:99:6a:34:30:93:32:
89:72:16:ee:db:d0:8b:ca:a0:82:5c:f2:76:7b:5d:
b1:66:28:db:86:1d:21:c7:a6:5c:d6:ea:47:4c:ab:
3d:c4:2b:03:49:e3:ad:9e:6b:f7:ab:fe:84:d8:97:
1b:08:de:f7:81:6c:bf:5b:5e:78:9c:92:5d:f5:86:
7b:24:d4:a2:df:8a:2f:63:9a:55:36:f2:ba:33:8f:
c0:26:a2:ca:d2:70:da:62:45:95:3c:9f:1d:cb:de:
11:c8:8d:bc:01:00:b5:6d:c7:e0:bd:d8:be:4f:83:
38:8f:7f:2f:7a:04:28:d3:ba:1b:84:31:70:c0:53:
44:82:e4:d8:4c:fe:43:c2:42:b5:4a:ce:22:dd:bd:
0b:be:ee:cb:c5:bb:f2:63:3b:c2:89:38:8f:6a:71:
ef:bb:93:ea:de:8a:60:77:d8:8b:04:be:5e:eb:4f:
3f:d6:29:8c:ab:64:e5:e3:22:33:c1:5c:b7:c7:d2:
d0:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:3C:65:07:7E:44:75:17:49:4C:27:BB:9B:EC:99:50:F4:65:B1:98
X509v3 Authority Key Identifier:
keyid:F8:AD:54:36:24:F8:D3:28:1E:C9:70:45:8E:E7:52:F1:0A:42:45:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-K1UNiT40ygeyXBFjudS8QpCRSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/af1f64-c35f-47e8-87c9-8a11b4719d82/1/5zxlB35EdRdJTCe7m-yZUPRlsZg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/af1f64-c35f-47e8-87c9-8a11b4719d82/1/1-K1UNiT40ygeyXBFjudS8QpCRSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.85.36.0/22
Signature Algorithm: sha256WithRSAEncryption
0a:3d:17:c0:f3:09:c6:70:67:ff:80:56:ae:e9:8f:57:9d:79:
05:68:a0:ee:4d:b6:cf:1b:04:5a:02:ca:ed:e4:a1:d0:94:44:
19:19:35:44:2a:23:43:f7:17:31:f7:75:c9:2d:a6:8e:e3:68:
e2:b9:ea:3e:01:4e:9c:56:ad:f5:ff:a1:4b:13:fd:93:3e:25:
c1:9c:f8:d3:85:fb:54:2c:d4:4c:65:52:d6:d4:e6:98:9d:70:
59:ba:33:fd:91:4e:8d:6e:c4:79:e6:07:7f:ab:48:d5:56:85:
6b:4b:e0:bb:99:67:39:8f:44:f8:8b:7e:ac:54:7c:36:c4:e7:
dd:6e:14:63:d1:a3:3b:a9:e2:36:d7:3c:91:94:43:28:5e:bf:
1f:fb:70:73:e4:75:a7:a2:88:ad:ed:44:59:7d:b4:0f:fa:9f:
91:52:f4:a9:cb:c0:2c:e1:e1:3b:fc:9f:4b:b3:10:1f:88:d0:
c6:5c:3e:9d:51:16:7a:e4:8c:3c:bb:87:18:45:60:7a:69:55:
42:3d:f6:07:72:7a:76:31:1f:74:c0:4e:0b:37:26:81:98:35:
2e:80:f2:ff:e4:81:b3:c3:ae:4b:91:aa:4e:0b:f2:1f:4e:dd:
e6:87:26:54:0a:7d:20:ba:94:14:ce:79:1d:2d:be:14:d7:1d:
43:12:0d:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:18 2025 by rpki-client on console.sobornost.net