Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/af1f64-c35f-47e8-87c9-8a11b4719d82/1/ku9pGx_s_uNGA4P-l6uSYVb3Uis.roa
File: ku9pGx_s_uNGA4P-l6uSYVb3Uis.roa (raw, json)
Hash identifier: Ec0Pa020pgxE201VKRA5WvEkhNSTtanwIM+0UgcAx7U=
Subject key identifier: 92:EF:69:1B:1F:EC:FE:E3:46:03:83:FE:97:AB:92:61:56:F7:52:2B
Certificate issuer: /CN=f8ad543624f8d3281ec970458ee752f10a424529
Certificate serial: 01942220272BA878E40D620A10750A36B9E7
Authority key identifier: F8:AD:54:36:24:F8:D3:28:1E:C9:70:45:8E:E7:52:F1:0A:42:45:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-K1UNiT40ygeyXBFjudS8QpCRSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/af1f64-c35f-47e8-87c9-8a11b4719d82/1/ku9pGx_s_uNGA4P-l6uSYVb3Uis.roa
Signing time: Wed 01 Jan 2025 13:48:40 +0000
ROA not before: Wed 01 Jan 2025 13:48:40 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 197412
IP address blocks: 185.230.172.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:20:27:2b:a8:78:e4:0d:62:0a:10:75:0a:36:b9:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8ad543624f8d3281ec970458ee752f10a424529
Validity
Not Before: Jan 1 13:48:40 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=92ef691b1fecfee3460383fe97ab926156f7522b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:6c:51:bf:9b:b0:93:20:99:ca:1f:ed:dd:e5:
c5:39:7e:4c:4a:79:30:27:8f:72:a9:f9:a6:11:ab:
3f:1e:d5:6a:a8:8c:50:dd:53:01:b9:7a:b6:8e:da:
4c:78:ec:f6:9d:ee:e4:f0:bc:cf:51:c2:95:ac:5d:
df:05:72:1f:72:4a:fd:24:53:11:ef:83:33:7b:b8:
1c:9c:a9:e3:f5:df:90:be:95:3e:ad:69:f9:41:52:
5d:1f:71:00:12:1a:b0:cc:d3:dd:f4:f1:fb:46:00:
56:ae:15:ef:d5:ac:55:26:e8:9b:f0:2a:83:ba:55:
70:30:a8:3e:bb:aa:1c:47:ee:df:4a:f2:27:eb:7f:
94:15:ff:c0:01:36:b8:a6:dc:99:b7:4f:00:88:aa:
5d:b0:29:19:d8:c7:91:fd:4b:8d:49:80:b5:37:fb:
6a:e3:d0:fe:92:3f:fd:aa:08:e1:6a:d3:31:f5:23:
12:16:3d:c1:8e:ac:36:46:0d:fe:ee:9b:48:83:0b:
9f:b7:a6:ae:98:54:f7:8c:90:f0:95:bf:7c:02:9a:
ec:d2:83:bf:57:73:a9:aa:e1:f9:6a:40:fb:d5:c8:
e3:10:f6:6a:2a:4d:38:79:f1:f0:4d:d8:81:61:fc:
ee:09:2a:7d:cb:4d:8e:37:73:76:0f:96:07:c0:3b:
40:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:EF:69:1B:1F:EC:FE:E3:46:03:83:FE:97:AB:92:61:56:F7:52:2B
X509v3 Authority Key Identifier:
keyid:F8:AD:54:36:24:F8:D3:28:1E:C9:70:45:8E:E7:52:F1:0A:42:45:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-K1UNiT40ygeyXBFjudS8QpCRSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/af1f64-c35f-47e8-87c9-8a11b4719d82/1/ku9pGx_s_uNGA4P-l6uSYVb3Uis.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/af1f64-c35f-47e8-87c9-8a11b4719d82/1/1-K1UNiT40ygeyXBFjudS8QpCRSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.230.172.0/22
Signature Algorithm: sha256WithRSAEncryption
18:22:1b:99:11:e2:14:f0:42:dd:b9:ca:ed:72:88:7e:56:58:
46:57:0b:ad:b7:bf:26:c3:46:30:7c:88:38:b6:84:dd:41:a1:
79:0d:f6:67:36:fc:e9:2c:a8:00:79:5e:2c:4f:be:e9:ac:e1:
23:91:b3:07:a1:71:e4:40:dc:f0:4a:ea:39:1c:14:04:32:fe:
4e:98:69:bc:9e:b7:3b:40:70:6c:7a:2a:ec:9b:9c:b2:6e:b9:
01:af:99:eb:33:13:b4:05:ad:38:c1:0e:ba:11:37:98:bd:52:
f0:d3:26:9b:15:f9:db:09:db:52:9f:6b:7c:0b:a7:8f:dd:a9:
24:c1:2e:f5:da:b7:d3:0d:0e:49:eb:10:fc:f8:cd:ad:db:d4:
29:e7:f3:6a:c4:ca:93:90:1d:a0:da:e4:ad:95:db:1f:ed:31:
ca:7d:84:21:72:e8:19:29:0e:1c:a0:41:94:78:e4:4e:eb:f2:
40:19:91:ee:dc:46:52:77:59:72:60:e0:47:4e:64:ac:cd:61:
c5:61:0d:6c:1c:2f:90:7c:2a:96:69:68:5d:49:e3:a0:5a:19:
18:b1:71:73:ae:a0:0b:63:72:45:cc:28:ae:4e:74:4b:cc:e2:
30:0e:7f:62:39:d6:36:8d:f1:00:83:48:ac:3c:60:fd:f6:90:
dd:2d:c0:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:18 2025 by rpki-client on console.sobornost.net