Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/8b2Sz4cL93cXk3-Io7s2vbwBznU.roa
File: 8b2Sz4cL93cXk3-Io7s2vbwBznU.roa (raw, json)
Hash identifier: OdYsHSgXYM8f8BmJb0rgKjd3SquS1uJD7loVl2Lg/xI=
Subject key identifier: F1:BD:92:CF:87:0B:F7:77:17:93:7F:88:A3:BB:36:BD:BC:01:CE:75
Certificate issuer: /CN=025a8122c247d3efbbd2f6a814a5f687454188df
Certificate serial: 019424B2DBF058BDD216019213C41FD411F7
Authority key identifier: 02:5A:81:22:C2:47:D3:EF:BB:D2:F6:A8:14:A5:F6:87:45:41:88:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AlqBIsJH0--70vaoFKX2h0VBiN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/8b2Sz4cL93cXk3-Io7s2vbwBznU.roa
Signing time: Thu 02 Jan 2025 01:48:09 +0000
ROA not before: Thu 02 Jan 2025 01:48:09 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 61380
IP address blocks: 185.8.156.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b2:db:f0:58:bd:d2:16:01:92:13:c4:1f:d4:11:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=025a8122c247d3efbbd2f6a814a5f687454188df
Validity
Not Before: Jan 2 01:48:09 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f1bd92cf870bf77717937f88a3bb36bdbc01ce75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:92:7c:f1:af:30:7c:1c:1e:66:6a:e4:65:a1:
e9:f0:b0:ee:fa:67:e2:36:3e:ba:7b:39:c2:49:9f:
59:6a:ac:5f:d9:ff:9a:47:00:f2:e7:03:24:85:2c:
3d:66:37:3a:a5:0f:8e:ea:97:c8:35:0d:d7:1c:78:
b9:53:32:49:db:7b:4f:a0:58:7d:69:bf:0f:89:0f:
03:9d:ec:c5:25:d4:01:9c:c4:cf:b2:66:f8:77:02:
9f:83:e7:d6:c6:9a:db:93:53:66:cc:7b:29:93:eb:
24:90:5d:5c:d7:d1:d0:d7:c0:4a:b4:97:92:3d:ff:
d6:68:b8:fd:b0:37:61:e3:6f:93:fe:d8:7b:6e:07:
c6:57:aa:35:96:b8:82:2e:8b:66:09:c4:09:e7:1f:
7d:33:d4:31:98:81:18:ae:40:ff:9a:0a:8b:1f:19:
17:f1:fd:7c:5f:e2:a7:51:33:b4:40:50:eb:fa:16:
87:5b:c3:d9:95:e3:53:77:97:86:dc:22:32:f3:bb:
da:a0:70:bc:39:c4:a0:04:1c:6c:2d:16:31:dd:b1:
0f:6c:f1:8d:ca:be:31:63:93:40:74:70:1a:f8:6e:
a8:0e:59:5d:40:75:33:ff:c3:55:6c:f7:4b:02:3d:
21:57:7e:41:bb:63:78:20:f9:fe:70:4b:04:e9:ab:
da:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:BD:92:CF:87:0B:F7:77:17:93:7F:88:A3:BB:36:BD:BC:01:CE:75
X509v3 Authority Key Identifier:
keyid:02:5A:81:22:C2:47:D3:EF:BB:D2:F6:A8:14:A5:F6:87:45:41:88:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AlqBIsJH0--70vaoFKX2h0VBiN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/8b2Sz4cL93cXk3-Io7s2vbwBznU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/e2991a-db0f-4c3f-bc08-1b3e3595101b/1/AlqBIsJH0--70vaoFKX2h0VBiN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.8.156.0/22
Signature Algorithm: sha256WithRSAEncryption
42:32:4f:3a:fe:c0:d4:7c:0c:42:fb:f7:e6:98:f2:7c:1f:4d:
da:20:e4:40:f2:10:ff:d4:d0:52:14:a3:cd:c1:c8:9b:7f:4d:
ec:e8:ef:91:e6:32:4a:51:1e:cc:c0:78:33:02:63:6f:b8:c5:
8d:29:fa:51:2d:9b:69:70:d8:a8:5a:55:12:10:bb:d3:94:9d:
ee:85:cd:c4:b7:a0:14:f0:d8:6a:9e:75:5f:0e:7b:fa:1b:14:
28:ad:53:38:a3:c3:1c:9b:b3:84:26:f1:ff:a6:97:c5:fa:2b:
6e:c8:54:83:ee:5f:8b:c4:48:62:8f:36:ba:f9:cb:08:f8:d6:
50:2c:d2:e4:50:b5:10:fb:6d:53:c8:08:02:9b:34:18:ce:ae:
58:ad:f6:3a:12:4c:9c:f4:f0:c0:2b:19:fc:5f:8c:48:25:27:
74:0f:21:91:bc:70:f7:57:98:fe:d1:5f:3f:9e:2b:6d:49:41:
d6:da:0b:5c:98:24:ed:b3:8c:91:ab:71:8d:48:4e:cb:87:fb:
d3:3b:af:e8:c2:e4:f5:e8:78:5b:5b:ac:cc:b3:85:5b:26:53:
77:d1:7e:cb:f5:c6:f0:eb:49:b0:05:ac:a6:f5:a0:da:bc:52:
3b:1b:38:c7:35:6d:4c:93:5e:a5:c3:8c:1b:71:a8:5b:23:a3:
0b:d1:e8:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:21 2025 by rpki-client on console.sobornost.net