Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/ecaa96-9af6-4b99-957f-6b7599fcdc33/1/CabH8yqn5S_kOgWDLQqFiKvzRos.roa
File: CabH8yqn5S_kOgWDLQqFiKvzRos.roa (raw, json)
Hash identifier: 6ag0+5Ik/WQxtmqQPOIuQwUXIuLv9ELuLcs7tX6aoMI=
Subject key identifier: 09:A6:C7:F3:2A:A7:E5:2F:E4:3A:05:83:2D:0A:85:88:AB:F3:46:8B
Certificate issuer: /CN=810cd50db437c789464cb64dfabfe405ca981b1a
Certificate serial: 0194258F241FE69787E0A952E4D954239A06
Authority key identifier: 81:0C:D5:0D:B4:37:C7:89:46:4C:B6:4D:FA:BF:E4:05:CA:98:1B:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gQzVDbQ3x4lGTLZN-r_kBcqYGxo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/ecaa96-9af6-4b99-957f-6b7599fcdc33/1/CabH8yqn5S_kOgWDLQqFiKvzRos.roa
Signing time: Thu 02 Jan 2025 05:48:45 +0000
ROA not before: Thu 02 Jan 2025 05:48:45 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 196798
IP address blocks: 185.110.208.0/22 maxlen: 22
188.94.224.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:24:1f:e6:97:87:e0:a9:52:e4:d9:54:23:9a:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=810cd50db437c789464cb64dfabfe405ca981b1a
Validity
Not Before: Jan 2 05:48:45 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=09a6c7f32aa7e52fe43a05832d0a8588abf3468b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:0f:7e:ac:a2:b8:84:7f:cd:3b:fb:f8:17:a4:
1d:d3:8e:e7:37:cb:e5:bb:a7:34:68:37:60:88:a3:
c4:92:d9:ca:8e:49:5d:2b:3e:27:38:73:d3:00:5b:
b1:16:da:da:fd:82:a0:ab:a2:75:77:cc:a1:ab:2b:
d0:49:b0:4f:15:29:f3:23:7a:87:6f:8f:dc:1e:4e:
2f:93:ce:7e:ff:03:f7:73:c6:e4:04:92:d5:e8:cf:
ea:21:c9:23:e0:2d:35:94:cd:5d:36:77:ed:81:75:
21:03:66:b3:d0:ad:7a:b0:be:2d:b2:4b:34:9f:14:
a7:a2:5d:b5:35:47:04:a4:2c:89:75:e1:86:b2:6d:
cc:20:8d:45:2c:55:33:35:ac:21:8b:f4:52:50:4a:
00:e3:41:00:54:0b:5a:18:09:59:73:0d:5d:0b:5c:
a9:30:76:09:75:6f:25:c4:5c:55:b4:24:95:38:81:
15:07:33:a1:48:0f:b6:ae:9c:5e:54:b3:64:65:b5:
77:4f:ab:b5:91:e3:92:bb:be:44:e7:f7:36:5a:f9:
65:8a:f6:0b:4e:78:e0:ca:3b:da:35:10:fe:74:c8:
e8:ac:e4:d2:fd:9a:28:ae:bc:30:53:47:d8:d3:fe:
4b:29:7f:b1:84:82:c7:7c:85:54:3c:d1:c8:4e:06:
60:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:A6:C7:F3:2A:A7:E5:2F:E4:3A:05:83:2D:0A:85:88:AB:F3:46:8B
X509v3 Authority Key Identifier:
keyid:81:0C:D5:0D:B4:37:C7:89:46:4C:B6:4D:FA:BF:E4:05:CA:98:1B:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gQzVDbQ3x4lGTLZN-r_kBcqYGxo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/ecaa96-9af6-4b99-957f-6b7599fcdc33/1/CabH8yqn5S_kOgWDLQqFiKvzRos.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/ecaa96-9af6-4b99-957f-6b7599fcdc33/1/gQzVDbQ3x4lGTLZN-r_kBcqYGxo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.110.208.0/22
188.94.224.0/21
Signature Algorithm: sha256WithRSAEncryption
37:3c:0a:cc:2b:d4:a1:c4:19:eb:2d:50:24:98:d9:ff:98:32:
ef:2a:1e:f0:c3:0c:0c:f3:8b:e2:a1:c9:e1:74:de:1d:18:86:
cc:48:12:6e:bb:c9:34:ff:0b:b1:96:ae:d7:07:90:b3:01:89:
c0:bb:60:06:e5:0f:29:d5:7b:ac:fe:0e:86:99:43:97:dd:3d:
8f:79:e9:54:13:ac:61:ac:38:e9:d4:2d:24:c1:90:50:71:84:
18:ca:08:7a:82:dc:6e:c8:ed:0e:bc:86:d0:92:8d:fd:de:46:
bf:75:2e:b6:d9:86:f0:03:0c:c7:fe:f6:c6:8c:3b:c7:e9:75:
f6:f4:be:8d:e1:40:a7:16:8d:7e:76:cb:66:3a:1a:1e:2e:0e:
1e:34:53:50:bc:ff:03:21:8c:5e:2d:da:2d:e7:af:b7:0c:d0:
f1:9d:f3:ac:1c:ac:55:c6:a1:28:69:0a:1e:4e:25:ad:d4:fd:
88:43:95:c9:76:69:44:da:19:f3:19:60:3c:1e:b9:5f:c5:9c:
5e:1e:e0:ac:bb:ea:63:06:8f:f9:7b:19:01:97:25:86:e6:c2:
d0:14:08:62:63:e8:22:7f:7c:25:b5:6b:40:04:03:65:89:17:
c9:73:32:53:2f:f7:48:ff:2d:64:36:c8:02:1a:2c:23:ac:1e:
ef:4f:26:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:32 2025 by rpki-client on console.sobornost.net