Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/d73ac9-3d65-4e2d-8bbf-e034f65e7f60/1/vn_6MTwelLUlLNDCZO0aRScUDTY.roa
File: vn_6MTwelLUlLNDCZO0aRScUDTY.roa (raw, json)
Hash identifier: nZ+qSFZb5cEckLJHgsHRLeTqOf+uDgCygsG9DhaI2LA=
Subject key identifier: BE:7F:FA:31:3C:1E:94:B5:25:2C:D0:C2:64:ED:1A:45:27:14:0D:36
Certificate issuer: /CN=644cdbae84b26a8484b10c00ebfdfbcb4990c157
Certificate serial: 019426D9464AFC468D0EE527B74B39954299
Authority key identifier: 64:4C:DB:AE:84:B2:6A:84:84:B1:0C:00:EB:FD:FB:CB:49:90:C1:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZEzbroSyaoSEsQwA6_37y0mQwVc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/d73ac9-3d65-4e2d-8bbf-e034f65e7f60/1/vn_6MTwelLUlLNDCZO0aRScUDTY.roa
Signing time: Thu 02 Jan 2025 11:49:21 +0000
ROA not before: Thu 02 Jan 2025 11:49:21 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 31167
IP address blocks: 185.244.18.0/24 maxlen: 24
185.244.19.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:46:4a:fc:46:8d:0e:e5:27:b7:4b:39:95:42:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=644cdbae84b26a8484b10c00ebfdfbcb4990c157
Validity
Not Before: Jan 2 11:49:21 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=be7ffa313c1e94b5252cd0c264ed1a4527140d36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:52:09:9b:f8:3f:93:4a:e4:88:63:bb:f1:3f:
8d:6f:34:c1:2c:6d:29:3b:96:74:f5:7c:e6:0d:74:
3b:ed:34:0e:91:38:a1:81:30:71:a2:6f:04:95:83:
03:2a:b8:58:96:fd:b9:da:bc:4b:88:88:28:a7:77:
1a:1c:1c:dc:66:90:73:50:b0:fb:21:48:51:bb:4f:
8d:bd:d5:80:b5:00:b0:e1:34:c6:63:b6:a0:d3:48:
34:ca:da:e4:ad:39:4b:0a:4e:a7:96:bd:aa:aa:ad:
63:d2:33:d5:da:3a:95:db:38:33:64:72:23:97:60:
4e:7b:53:1c:84:23:6a:7a:51:01:f9:52:58:c3:e0:
c2:cf:c7:f8:81:2c:b6:34:7b:15:c6:72:d0:fe:74:
40:33:01:e2:1e:9c:cd:46:e0:c4:e5:e7:97:f8:00:
0e:e1:51:9b:b8:4e:2e:39:cb:2d:99:4b:fb:ad:2f:
5e:8b:69:35:f6:31:cf:64:35:4b:0c:9d:56:41:4a:
67:49:61:7d:06:e9:1e:49:e7:76:60:3b:39:82:4b:
9b:dc:0b:e5:b9:60:02:47:9e:56:7e:36:ef:a1:9f:
00:27:3f:18:4b:92:55:77:cb:96:8b:f0:3d:78:d8:
3a:83:d3:bf:80:59:48:54:5e:dc:49:58:22:c2:a5:
82:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:7F:FA:31:3C:1E:94:B5:25:2C:D0:C2:64:ED:1A:45:27:14:0D:36
X509v3 Authority Key Identifier:
keyid:64:4C:DB:AE:84:B2:6A:84:84:B1:0C:00:EB:FD:FB:CB:49:90:C1:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZEzbroSyaoSEsQwA6_37y0mQwVc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/d73ac9-3d65-4e2d-8bbf-e034f65e7f60/1/vn_6MTwelLUlLNDCZO0aRScUDTY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/d73ac9-3d65-4e2d-8bbf-e034f65e7f60/1/ZEzbroSyaoSEsQwA6_37y0mQwVc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.244.18.0/23
Signature Algorithm: sha256WithRSAEncryption
0a:c0:3f:a8:91:0b:17:eb:3d:7c:c2:1a:cb:24:39:22:e2:e6:
48:20:1c:70:3e:79:04:36:64:78:da:d7:9e:ca:98:38:6e:c6:
00:c2:35:10:98:e8:db:5f:79:39:1f:b5:6d:f4:42:1c:20:a2:
b9:99:03:cc:99:dc:81:e6:b3:7c:1c:d3:ad:6d:aa:25:4e:80:
00:39:98:f0:79:cd:4a:41:fb:c4:3f:fb:59:7b:32:e5:60:ae:
88:34:6e:65:65:f4:dd:c4:e9:c5:bc:84:5d:ae:07:bb:2c:28:
7d:ce:ff:72:10:61:a7:e7:98:ac:f3:00:e3:1b:fa:a8:62:61:
c0:32:fa:a8:11:cb:45:4d:8f:00:4e:84:4f:73:7e:5a:21:0e:
e7:ee:ed:c0:77:12:e7:e0:fc:56:2c:a5:d2:d8:e5:18:e9:db:
15:7d:0b:aa:e3:b5:38:5d:f0:e8:fb:24:cb:a3:dc:6e:de:3d:
24:65:bc:52:29:3c:f1:e9:a5:67:5b:27:fb:32:0d:a7:dc:d4:
f9:19:ae:0a:7e:1e:5f:13:3a:e2:2d:80:0d:95:56:17:3b:bd:
87:74:07:5c:65:c6:e9:bf:2e:af:60:35:e5:b2:af:67:c7:f2:
0a:08:e2:b3:cc:4e:fe:5b:6d:c8:e2:3e:a5:1b:bc:af:69:7e:
8d:f3:0b:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:34 2025 by rpki-client on console.sobornost.net