Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/5c65af-b3f9-4bb3-a702-2bc90794d38d/1/igy17iTeqaYCdBBLyoPaHClVJqQ.roa
File: igy17iTeqaYCdBBLyoPaHClVJqQ.roa (raw, json)
Hash identifier: B+Liv7dvp/EsH5cWaQvjUo2qiny7+O+NyRrhBkq35hU=
Subject key identifier: 8A:0C:B5:EE:24:DE:A9:A6:02:74:10:4B:CA:83:DA:1C:29:55:26:A4
Certificate issuer: /CN=46ebddae6a7acee83a322a0e743a6759d85365f2
Certificate serial: 019424B3DFC56C6D6D5AE01D1CE496DCF67D
Authority key identifier: 46:EB:DD:AE:6A:7A:CE:E8:3A:32:2A:0E:74:3A:67:59:D8:53:65:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ruvdrmp6zug6MioOdDpnWdhTZfI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/5c65af-b3f9-4bb3-a702-2bc90794d38d/1/igy17iTeqaYCdBBLyoPaHClVJqQ.roa
Signing time: Thu 02 Jan 2025 01:49:15 +0000
ROA not before: Thu 02 Jan 2025 01:49:15 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206944
IP address blocks: 185.171.20.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:df:c5:6c:6d:6d:5a:e0:1d:1c:e4:96:dc:f6:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=46ebddae6a7acee83a322a0e743a6759d85365f2
Validity
Not Before: Jan 2 01:49:15 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8a0cb5ee24dea9a60274104bca83da1c295526a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:fa:2c:50:91:b2:eb:8e:5f:81:57:44:71:ce:
70:c6:55:a3:42:93:21:13:c6:2c:52:56:a3:e1:93:
e4:16:ab:c1:40:f6:f2:e1:50:97:f3:10:25:3a:d5:
ad:e3:84:92:60:d6:ff:da:63:31:47:cd:07:04:3d:
43:61:e7:76:a0:ab:53:b8:58:57:2b:a2:18:4c:13:
96:46:32:0a:a8:77:22:77:b1:a2:7a:8b:7c:4d:bb:
51:9c:0c:6f:7e:4c:f2:ae:07:e2:2b:b8:10:1a:ef:
49:51:a9:fb:f3:d5:62:c0:62:f9:94:c3:36:8f:33:
fe:58:47:ce:a0:bc:75:a4:ed:45:da:d1:44:55:9c:
1a:c9:06:33:70:d0:38:88:ee:a7:be:1c:b8:cb:8f:
14:9c:1c:15:ab:0f:9b:81:a4:43:51:4e:08:c9:0e:
af:ce:5f:34:6f:08:f2:fd:92:7c:85:b6:e5:65:b7:
dd:99:9c:8e:85:1c:24:0b:3b:08:c2:80:fa:5c:5e:
e5:eb:f8:2e:4e:52:71:a9:01:0c:99:05:54:0b:19:
cb:00:7f:45:fb:79:aa:5a:26:a8:ad:0b:1c:c2:50:
31:92:90:42:f5:93:20:14:93:6c:d8:c6:88:c6:27:
c2:a7:d2:43:84:fb:14:4b:b7:24:35:fc:22:38:a9:
a5:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:0C:B5:EE:24:DE:A9:A6:02:74:10:4B:CA:83:DA:1C:29:55:26:A4
X509v3 Authority Key Identifier:
keyid:46:EB:DD:AE:6A:7A:CE:E8:3A:32:2A:0E:74:3A:67:59:D8:53:65:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ruvdrmp6zug6MioOdDpnWdhTZfI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/5c65af-b3f9-4bb3-a702-2bc90794d38d/1/igy17iTeqaYCdBBLyoPaHClVJqQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/5c65af-b3f9-4bb3-a702-2bc90794d38d/1/Ruvdrmp6zug6MioOdDpnWdhTZfI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.171.20.0/23
Signature Algorithm: sha256WithRSAEncryption
5a:63:09:fa:d4:d3:ee:9e:32:77:b7:e2:a0:54:3a:9a:d6:38:
51:b4:a7:e8:2b:9c:60:da:c9:38:b6:11:50:0b:45:1b:9b:18:
d4:cc:43:0b:f8:0d:96:31:11:aa:d2:5d:31:ea:ab:76:0e:e3:
5d:23:25:d5:f6:d9:98:be:47:a9:0b:30:3b:19:92:f6:cf:81:
aa:86:8b:89:59:c0:b4:3f:52:20:c8:f1:bd:27:42:fc:37:31:
23:25:99:93:30:60:14:b4:a0:e8:d7:ca:5a:72:cf:3e:50:e6:
10:86:54:73:94:e0:b1:3f:80:63:30:52:15:a6:6e:39:a5:1f:
88:85:d0:86:eb:7d:d3:81:9b:aa:1a:70:89:e9:9f:ae:6f:dc:
b5:5e:e9:69:67:af:ef:a0:07:24:73:9d:06:e6:9a:41:63:33:
ea:22:82:ac:a1:3f:c7:71:e5:57:31:35:f9:f0:d9:55:b7:8b:
66:fe:ab:07:28:9b:73:9d:d9:45:1e:40:ce:70:6d:70:70:71:
6b:38:4b:11:33:63:b4:21:48:dc:3f:a3:2f:08:5b:2b:c0:95:
83:4b:0b:06:52:c0:d1:1d:2b:17:3d:d3:b7:92:97:43:02:ee:
bb:04:fa:b3:c2:8d:dd:f5:76:57:d5:2c:05:61:00:20:b2:9d:
de:3c:1a:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:31 2025 by rpki-client on console.sobornost.net