Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/731034-5fd5-492b-9daf-6f56e1fa0230/1/2K0uKSMybLcdA8jtmNxG5Ki84QY.roa
File: 2K0uKSMybLcdA8jtmNxG5Ki84QY.roa (raw, json)
Hash identifier: 5mE2Q4t19bkfyumGCGmg6dxDWvIkT1fJkVfrU9nbK78=
Subject key identifier: D8:AD:2E:29:23:32:6C:B7:1D:03:C8:ED:98:DC:46:E4:A8:BC:E1:06
Certificate issuer: /CN=6b71b34938a31a34bf5866a0f3dd78c38aac6119
Certificate serial: 019427B5F9222C915E6474B6361C8C0C63C2
Authority key identifier: 6B:71:B3:49:38:A3:1A:34:BF:58:66:A0:F3:DD:78:C3:8A:AC:61:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a3GzSTijGjS_WGag8914w4qsYRk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/731034-5fd5-492b-9daf-6f56e1fa0230/1/2K0uKSMybLcdA8jtmNxG5Ki84QY.roa
Signing time: Thu 02 Jan 2025 15:50:24 +0000
ROA not before: Thu 02 Jan 2025 15:50:24 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 199479
IP address blocks: 185.14.84.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b5:f9:22:2c:91:5e:64:74:b6:36:1c:8c:0c:63:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b71b34938a31a34bf5866a0f3dd78c38aac6119
Validity
Not Before: Jan 2 15:50:24 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d8ad2e2923326cb71d03c8ed98dc46e4a8bce106
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:99:83:c0:02:96:8e:c9:d3:f6:63:61:bb:33:
51:6e:e0:71:0f:f6:60:71:1d:04:c9:82:ad:9a:01:
31:ae:ca:35:97:9c:56:7f:2e:ec:d2:26:d6:b3:56:
c9:8b:c4:8d:98:e0:58:27:3a:6e:67:36:88:c9:6f:
e3:09:a3:40:1f:23:8a:2a:dd:19:2b:88:96:ae:53:
43:b9:42:e2:14:ec:7c:80:a7:03:24:aa:63:b9:42:
6b:ab:a6:0f:94:e6:95:5d:e6:57:ae:b4:53:ce:68:
5c:f6:4d:25:e5:53:51:6a:c2:b6:47:6f:25:5e:30:
77:2c:c0:ff:3a:0a:ce:0a:56:19:f1:c3:56:ac:49:
0c:39:4a:ba:f4:57:c1:78:c6:1c:16:c0:9e:0e:39:
11:79:93:d6:3b:05:08:51:1b:ae:55:fa:27:c2:75:
de:24:2d:b6:9d:7a:9f:c6:3b:6d:c2:51:b4:1a:9a:
53:74:a6:b5:ff:f9:83:7f:e9:89:16:89:25:33:74:
70:8c:8a:bf:9d:61:cc:93:09:d9:6e:d0:64:81:af:
1b:e0:cd:cb:06:46:91:f4:ab:0b:a9:60:0c:ad:8a:
0c:50:6c:16:f1:49:c1:55:1f:0a:f6:ec:b9:af:e3:
99:26:e3:17:43:67:33:ab:01:24:ab:d1:fd:cf:01:
6d:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:AD:2E:29:23:32:6C:B7:1D:03:C8:ED:98:DC:46:E4:A8:BC:E1:06
X509v3 Authority Key Identifier:
keyid:6B:71:B3:49:38:A3:1A:34:BF:58:66:A0:F3:DD:78:C3:8A:AC:61:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3GzSTijGjS_WGag8914w4qsYRk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/731034-5fd5-492b-9daf-6f56e1fa0230/1/2K0uKSMybLcdA8jtmNxG5Ki84QY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/731034-5fd5-492b-9daf-6f56e1fa0230/1/a3GzSTijGjS_WGag8914w4qsYRk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.14.84.0/22
Signature Algorithm: sha256WithRSAEncryption
5f:9b:e1:8b:3d:34:ec:74:b5:0b:86:41:38:9e:17:80:22:65:
4d:31:b9:a4:5f:3c:ae:44:18:c1:40:19:9d:b0:3b:23:f2:16:
ce:09:cc:14:4f:06:74:92:37:06:d4:c0:44:b7:d2:6a:77:b6:
9b:b6:43:d1:8a:ca:aa:58:27:6a:b9:45:7a:ac:dd:8f:83:60:
e3:d6:b4:36:fd:23:47:9c:ad:79:06:50:bd:7f:8c:4b:a0:1b:
28:64:7a:b8:f7:f3:36:c2:29:f9:1f:23:dd:3e:91:81:f5:b3:
87:c7:46:18:6e:69:44:70:dd:e0:41:48:2e:bb:af:4e:3f:3f:
df:a6:b3:82:cd:95:1e:86:1d:ec:30:58:ec:b5:bf:6b:92:68:
92:03:0c:39:a0:ca:95:5c:85:81:3e:54:25:f6:d4:43:ad:99:
66:11:b6:65:c4:4f:38:cd:7d:e9:db:f3:a5:75:c4:66:d0:ac:
7c:6f:91:0e:6a:b0:b4:75:0a:b0:48:d1:6e:e8:48:dc:2d:ff:
86:2c:a9:79:d5:73:21:9b:4c:17:76:47:79:ca:cd:28:f4:fe:
78:2f:cb:00:d9:cf:f1:76:59:03:f0:2c:0d:05:60:aa:66:75:
87:82:ff:ef:e2:d6:24:2b:8f:82:0e:00:3a:80:a3:50:9c:d7:
43:19:85:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:29 2025 by rpki-client on console.sobornost.net