Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/121447-d2c8-4ca8-96c7-81d10073dee4/1/LbrPw2qHStZqdco2bEzhOUNybWw.roa
File: LbrPw2qHStZqdco2bEzhOUNybWw.roa (raw, json)
Hash identifier: 7tT51i1L51JtsRXjzHib6ZL3MKK3W2gKGrb5rsnLLAg=
Subject key identifier: 2D:BA:CF:C3:6A:87:4A:D6:6A:75:CA:36:6C:4C:E1:39:43:72:6D:6C
Certificate issuer: /CN=64757185472f16d53eeb68a140e3513fa31c31d8
Certificate serial: 0195B7D7383847B4E6365330896A3CF81591
Authority key identifier: 64:75:71:85:47:2F:16:D5:3E:EB:68:A1:40:E3:51:3F:A3:1C:31:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZHVxhUcvFtU-62ihQONRP6McMdg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/121447-d2c8-4ca8-96c7-81d10073dee4/1/LbrPw2qHStZqdco2bEzhOUNybWw.roa
Signing time: Fri 21 Mar 2025 08:34:49 +0000
ROA not before: Fri 21 Mar 2025 08:34:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 208923
IP address blocks: 185.70.224.0/24 maxlen: 24
185.70.226.0/24 maxlen: 24
185.70.227.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:b7:d7:38:38:47:b4:e6:36:53:30:89:6a:3c:f8:15:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64757185472f16d53eeb68a140e3513fa31c31d8
Validity
Not Before: Mar 21 08:34:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2dbacfc36a874ad66a75ca366c4ce13943726d6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:ea:79:71:b8:a8:95:fc:81:bb:c9:91:82:f0:
c3:a5:4f:f5:60:71:bc:a7:ba:b6:47:72:2c:a9:7b:
85:8a:82:7c:83:c2:94:58:f6:9c:32:63:13:2e:0b:
c6:95:be:1e:a8:e0:a7:56:f1:c0:fb:b2:1c:04:cf:
ac:f3:90:47:0c:ed:7e:5d:3c:d1:78:35:02:fc:e4:
5a:f0:cd:19:5d:e6:6c:61:f9:c6:a4:4a:df:bf:24:
38:4f:95:1f:5a:f0:44:26:6e:01:c3:f7:7f:e4:fa:
cf:4a:e9:3d:8b:d2:29:93:4c:91:ff:46:16:4d:64:
5f:8d:3e:ad:75:77:dc:99:96:9a:57:9f:f9:ad:2e:
51:26:7c:c8:0b:78:6b:09:be:db:ea:61:08:49:ca:
74:5b:cd:5c:f8:59:65:d0:3f:20:06:0f:f4:14:32:
d0:5e:ed:4c:dd:dd:c7:3c:c3:d6:59:14:08:31:ca:
00:e5:b2:9f:9d:f3:ed:87:39:c4:32:15:c9:fc:91:
3b:c7:36:aa:1a:95:c2:d5:7e:c9:ce:81:19:93:e6:
88:5b:d5:9b:75:01:d9:d4:4f:72:65:73:0c:d8:2e:
f9:bf:6e:39:e2:cb:94:48:88:4e:28:11:28:13:ec:
14:dd:e8:4d:5f:6e:1e:56:fc:85:83:c2:7d:0f:8e:
e2:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:BA:CF:C3:6A:87:4A:D6:6A:75:CA:36:6C:4C:E1:39:43:72:6D:6C
X509v3 Authority Key Identifier:
keyid:64:75:71:85:47:2F:16:D5:3E:EB:68:A1:40:E3:51:3F:A3:1C:31:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZHVxhUcvFtU-62ihQONRP6McMdg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/121447-d2c8-4ca8-96c7-81d10073dee4/1/LbrPw2qHStZqdco2bEzhOUNybWw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/121447-d2c8-4ca8-96c7-81d10073dee4/1/ZHVxhUcvFtU-62ihQONRP6McMdg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.70.224.0/24
185.70.226.0/23
Signature Algorithm: sha256WithRSAEncryption
77:cc:d4:5b:f1:64:cd:0a:a8:56:e2:a2:b5:90:dc:06:f5:06:
68:d5:71:08:f4:1c:96:b8:b1:0a:fe:7f:d0:c8:03:d9:65:fa:
b3:36:b2:65:2a:68:1b:57:e1:2e:29:e1:34:f4:7c:86:2b:e4:
f6:ef:ea:12:fa:34:90:1c:e6:03:29:6c:4e:35:d3:6c:2f:62:
56:df:6a:3b:01:f8:e1:fe:5d:3b:54:8f:63:4c:3d:fe:4b:48:
ac:58:f4:89:c0:d4:99:b2:a6:27:fb:2d:45:ac:34:e4:47:d7:
25:ac:23:ec:f6:1f:30:42:04:27:92:2f:da:cf:e7:f5:2a:6b:
fe:3e:e7:bb:d0:00:6e:a0:95:4e:fd:7e:a3:33:78:af:43:fa:
dc:02:30:37:e7:ee:82:dc:fd:93:04:e0:e9:12:e6:b2:73:bc:
1f:fe:84:18:ac:6b:35:02:48:6f:ba:99:27:de:cb:71:5f:87:
af:c9:c2:76:82:41:56:09:10:d7:ff:39:3c:cc:c2:06:a5:f0:
e1:66:c4:53:96:2e:36:a3:62:b6:aa:93:13:db:9f:c5:26:01:
4e:7e:4d:a3:17:12:29:3f:12:7d:aa:2b:a4:e6:e8:b2:00:44:
04:c6:b6:33:38:20:1a:8d:e1:aa:ab:0a:ab:7b:35:74:5c:5f:
bc:88:1d:79
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZW31zg4R7TmNlMwiWo8+BWRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY0NzU3MTg1NDcyZjE2ZDUzZWViNjhhMTQwZTM1MTNmYTMx
YzMxZDgwHhcNMjUwMzIxMDgzNDQ5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZGJhY2ZjMzZhODc0YWQ2NmE3NWNhMzY2YzRjZTEzOTQzNzI2ZDZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4+p5cbiolfyBu8mRgvDDpU/1YHG8
p7q2R3IsqXuFioJ8g8KUWPacMmMTLgvGlb4eqOCnVvHA+7IcBM+s85BHDO1+XTzR
eDUC/ORa8M0ZXeZsYfnGpErfvyQ4T5UfWvBEJm4Bw/d/5PrPSuk9i9Ipk0yR/0YW
TWRfjT6tdXfcmZaaV5/5rS5RJnzIC3hrCb7b6mEIScp0W81c+Fll0D8gBg/0FDLQ
Xu1M3d3HPMPWWRQIMcoA5bKfnfPthznEMhXJ/JE7xzaqGpXC1X7JzoEZk+aIW9Wb
dQHZ1E9yZXMM2C75v2454suUSIhOKBEoE+wU3ehNX24eVvyFg8J9D47idwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFC26z8Nqh0rWanXKNmxM4TlDcm1sMB8GA1UdIwQY
MBaAFGR1cYVHLxbVPutooUDjUT+jHDHYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWkhWeGhVY3ZGdFUtNjJpaFFPTlJQNk1jTWRnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi8xMjE0NDctZDJjOC00Y2E4LTk2Yzct
ODFkMTAwNzNkZWU0LzEvTGJyUHcycUhTdFpxZGNvMmJFemhPVU55Yld3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYi8xMjE0NDctZDJjOC00Y2E4LTk2YzctODFkMTAwNzNkZWU0
LzEvWkhWeGhVY3ZGdFUtNjJpaFFPTlJQNk1jTWRnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAuUbgAwQB
uUbiMA0GCSqGSIb3DQEBCwUAA4IBAQB3zNRb8WTNCqhW4qK1kNwG9QZo1XEI9ByW
uLEK/n/QyAPZZfqzNrJlKmgbV+EuKeE09HyGK+T27+oS+jSQHOYDKWxONdNsL2JW
32o7Afjh/l07VI9jTD3+S0isWPSJwNSZsqYn+y1FrDTkR9clrCPs9h8wQgQnki/a
z+f1Kmv+Pue70ABuoJVO/X6jM3ivQ/rcAjA35+6C3P2TBODpEuayc7wf/oQYrGs1
Akhvupkn3stxX4evycJ2gkFWCRDX/zk8zMIGpfDhZsRTli42o2K2qpMT25/FJgFO
fk2jFxIpPxJ9qiuk5uiyAEQExrYzOCAajeGqqwqrezV0XF+8iB15
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:30 2025 by rpki-client on console.sobornost.net