Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/e8f69a-173a-4475-a6fb-011650fbd4c4/1/BLbhril53MDVDeifZO2SL2UKKFM.roa
File: BLbhril53MDVDeifZO2SL2UKKFM.roa (raw, json)
Hash identifier: UsTWzBHrl9dfEtBG/7NjUZNeMJlhyin0Rp6YIFRWYAU=
Subject key identifier: 04:B6:E1:AE:29:79:DC:C0:D5:0D:E8:9F:64:ED:92:2F:65:0A:28:53
Certificate issuer: /CN=d7c148761b67005329aa89135d35ad235173bc48
Certificate serial: 0194214402BD0F37FD98E5C633779FC1B9D9
Authority key identifier: D7:C1:48:76:1B:67:00:53:29:AA:89:13:5D:35:AD:23:51:73:BC:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/18FIdhtnAFMpqokTXTWtI1FzvEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/e8f69a-173a-4475-a6fb-011650fbd4c4/1/BLbhril53MDVDeifZO2SL2UKKFM.roa
Signing time: Wed 01 Jan 2025 09:48:12 +0000
ROA not before: Wed 01 Jan 2025 09:48:12 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 200276
IP address blocks: 81.28.248.0/24 maxlen: 24
81.28.249.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:44:02:bd:0f:37:fd:98:e5:c6:33:77:9f:c1:b9:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d7c148761b67005329aa89135d35ad235173bc48
Validity
Not Before: Jan 1 09:48:12 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=04b6e1ae2979dcc0d50de89f64ed922f650a2853
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:70:73:c9:e7:f4:6d:29:81:01:a7:6e:bf:c4:
cb:f5:e9:44:d0:c3:a3:db:81:ec:0d:02:81:57:ce:
66:02:8d:a4:53:c0:42:e4:8b:aa:1d:b3:fa:fc:f7:
e3:f0:5e:9b:48:71:56:af:9d:cb:02:a1:2a:d5:e6:
36:8e:70:c6:7a:45:01:c7:a6:f4:fa:35:eb:1d:a1:
d6:2f:3c:67:fa:29:fb:1f:70:a4:61:64:37:9a:84:
89:fa:b9:82:ea:c2:9e:d7:b1:9c:13:74:aa:f0:bc:
35:f3:2e:c9:6a:87:3b:b2:9a:83:8f:61:14:c8:69:
50:a6:fd:9f:84:7e:e2:15:84:97:99:9c:47:a2:13:
a1:4c:62:2a:0c:cf:99:ae:5e:84:cb:20:ec:07:03:
91:88:9d:5e:61:fc:26:04:7f:af:bc:3b:79:05:c3:
d7:13:59:4a:76:d4:3b:31:5c:85:6c:1d:55:81:8b:
84:00:49:75:88:9a:53:b5:81:82:26:e8:22:ec:12:
f6:71:67:07:6c:da:d5:23:30:fc:48:e2:dd:05:20:
18:28:30:4f:14:24:79:1b:49:7d:5f:38:c4:7a:4e:
f0:ef:06:c5:52:57:23:78:bb:7d:bb:49:fa:7e:54:
58:01:2d:84:e3:c5:17:1d:13:b3:2a:1f:23:f9:15:
21:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:B6:E1:AE:29:79:DC:C0:D5:0D:E8:9F:64:ED:92:2F:65:0A:28:53
X509v3 Authority Key Identifier:
keyid:D7:C1:48:76:1B:67:00:53:29:AA:89:13:5D:35:AD:23:51:73:BC:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/18FIdhtnAFMpqokTXTWtI1FzvEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/e8f69a-173a-4475-a6fb-011650fbd4c4/1/BLbhril53MDVDeifZO2SL2UKKFM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/e8f69a-173a-4475-a6fb-011650fbd4c4/1/18FIdhtnAFMpqokTXTWtI1FzvEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.28.248.0/23
Signature Algorithm: sha256WithRSAEncryption
a9:fa:c2:62:4e:f7:15:a1:cc:85:21:5b:ae:06:96:a6:f3:ee:
ea:2d:42:1f:84:e7:69:c8:77:2f:2f:51:05:d2:f6:46:3b:1b:
d4:82:d9:f6:0a:31:22:56:b6:67:aa:b3:4e:dd:8b:2d:86:7c:
05:d2:52:d5:0c:35:3e:d8:64:17:ab:ba:a2:76:c0:4d:ba:48:
31:d9:04:e9:dc:45:69:16:df:a9:d7:91:c4:e9:ae:a5:c7:34:
d4:9e:ec:e3:a2:b0:18:ac:33:03:a4:1c:33:19:e0:c1:1f:87:
57:7f:03:f5:49:e9:bf:19:6b:ed:e3:b6:4f:01:79:ef:96:69:
4a:b7:a0:e7:ac:08:b2:5c:2c:df:41:8a:e0:79:3d:5b:cc:83:
82:6c:bf:99:3c:bf:89:8c:a1:f9:c5:6a:cc:5b:38:2d:d1:6d:
e3:bf:12:7e:70:a5:3a:90:de:4e:55:ec:0e:ad:2d:ff:48:5b:
90:8a:6d:8a:b7:9f:b9:60:5a:6d:48:06:39:ef:7c:4d:3b:da:
2c:c5:94:9b:12:64:4b:26:a7:60:f1:a9:8d:ca:1a:ec:2c:a3:
e0:fb:f2:cf:62:34:4c:2d:fd:fa:1c:86:c5:3b:73:eb:fd:f3:
c6:ab:b9:6f:5e:ff:05:c6:6d:05:75:d4:da:af:99:52:6a:f6:
7d:e4:ff:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:34 2025 by rpki-client on console.sobornost.net