Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/7db3b3-2f8a-47c7-bb8c-3a3034a39ea5/1/bIU1r6-kNYCwjKpYb1XeOOaMSrk.roa
File: bIU1r6-kNYCwjKpYb1XeOOaMSrk.roa (raw, json)
Hash identifier: 6q2rVSVFi3ovtZSljouoEUOq4a8bSKXzuMgOvNyKriw=
Subject key identifier: 6C:85:35:AF:AF:A4:35:80:B0:8C:AA:58:6F:55:DE:38:E6:8C:4A:B9
Certificate issuer: /CN=2d43689a7638ff737591ff3b251918862349695c
Certificate serial: 01941F8C244B9ADFB58096161DD446B3ECAC
Authority key identifier: 2D:43:68:9A:76:38:FF:73:75:91:FF:3B:25:19:18:86:23:49:69:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LUNomnY4_3N1kf87JRkYhiNJaVw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/7db3b3-2f8a-47c7-bb8c-3a3034a39ea5/1/bIU1r6-kNYCwjKpYb1XeOOaMSrk.roa
Signing time: Wed 01 Jan 2025 01:47:45 +0000
ROA not before: Wed 01 Jan 2025 01:47:45 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 51815
IP address blocks: 185.152.213.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:24:4b:9a:df:b5:80:96:16:1d:d4:46:b3:ec:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d43689a7638ff737591ff3b251918862349695c
Validity
Not Before: Jan 1 01:47:45 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6c8535afafa43580b08caa586f55de38e68c4ab9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:15:15:e6:17:2d:9f:61:77:3e:2b:c0:c3:a4:
ea:f3:1a:a2:79:f7:42:44:05:5d:84:22:fc:d3:f5:
2d:c6:9b:35:c4:b2:5f:79:dc:13:d8:26:a2:7d:a7:
ac:4a:34:96:2f:89:b5:bd:03:5f:8e:5d:88:eb:4f:
1c:8e:d8:4c:25:e2:6d:52:0d:6d:87:6f:f4:a2:b5:
dd:b5:d1:b7:f5:c9:25:f8:bc:fe:3b:f6:a7:2b:33:
a0:04:a4:49:f3:ae:d0:2a:e5:c0:8d:02:63:72:9f:
e5:1c:07:a7:82:a0:b5:71:e7:a4:75:40:ed:cb:85:
3b:5f:a2:ae:8d:70:ad:70:89:ed:b5:b7:66:9a:2e:
b6:ee:88:8d:f7:40:82:55:50:4b:5b:15:c0:a7:88:
e0:2e:14:1e:ef:6a:61:60:00:15:29:6c:45:c0:29:
d0:2f:e5:e1:46:31:7d:c4:f4:f1:2f:e3:fc:90:15:
3f:e0:f6:d2:1e:e1:c7:2a:ad:b5:4f:45:83:22:dd:
1b:3d:7d:0c:c3:e2:0b:e3:0b:b8:86:e8:28:6e:e2:
1c:c1:14:bb:eb:51:f8:e7:06:9b:f8:85:97:bd:d2:
d8:42:6c:9f:96:31:0f:e4:44:1f:c4:d4:33:a0:02:
a9:72:1f:09:19:cc:30:da:30:e0:11:a1:a0:b3:af:
2d:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:85:35:AF:AF:A4:35:80:B0:8C:AA:58:6F:55:DE:38:E6:8C:4A:B9
X509v3 Authority Key Identifier:
keyid:2D:43:68:9A:76:38:FF:73:75:91:FF:3B:25:19:18:86:23:49:69:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LUNomnY4_3N1kf87JRkYhiNJaVw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/7db3b3-2f8a-47c7-bb8c-3a3034a39ea5/1/bIU1r6-kNYCwjKpYb1XeOOaMSrk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/7db3b3-2f8a-47c7-bb8c-3a3034a39ea5/1/LUNomnY4_3N1kf87JRkYhiNJaVw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.152.213.0/24
Signature Algorithm: sha256WithRSAEncryption
81:e9:42:1e:f4:70:f3:85:20:7b:e6:9e:35:65:d1:7f:a1:b0:
55:e6:11:66:88:9b:f7:e9:26:05:87:cc:05:8d:d1:f9:46:12:
eb:cb:24:85:96:a0:5a:79:fa:ad:09:07:1b:9b:57:aa:23:4b:
e2:d4:c3:d6:06:94:49:09:f1:7a:63:65:f7:94:7e:c8:93:ed:
23:27:7a:f1:38:79:b2:28:44:cb:0b:3c:35:99:a9:c6:7a:17:
a3:9b:d2:f7:fe:59:de:2e:fa:f2:83:c3:c4:23:41:a5:93:7d:
74:e3:49:cb:6f:11:f2:3b:00:79:56:ed:a1:f0:9a:41:e6:8d:
08:5a:e3:dc:74:9a:df:c6:a4:66:6b:2c:11:67:3d:8a:00:1c:
d4:6c:8e:00:87:0d:7e:41:53:2e:95:b8:3e:c8:36:9e:79:95:
8b:ff:41:5e:7b:c7:ea:32:b0:3d:84:d1:4f:cb:f3:35:d7:51:
a4:dd:a5:cd:6d:57:72:89:16:cc:88:5f:70:53:92:b8:b6:69:
33:68:23:a1:35:2e:f9:e6:22:b2:5d:af:63:4d:c4:7a:36:02:
6b:4c:96:06:5e:e3:a8:84:9f:ca:df:59:52:54:1f:2c:d1:89:
4a:f3:ee:ba:ac:4c:97:5f:3d:fb:d0:0c:0d:09:31:ea:91:86:
22:e6:0a:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:34 2025 by rpki-client on console.sobornost.net