Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/fe71b6-6aaa-4bd4-8661-6998ab7edf7a/1/yETJRCulpX8WNZcfOAFqy72Srf8.roa
File: yETJRCulpX8WNZcfOAFqy72Srf8.roa (raw, json)
Hash identifier: mwiJGcKb2MAwWuqaRGZUo2KeH/efjz418z+bxhMih0M=
Subject key identifier: C8:44:C9:44:2B:A5:A5:7F:16:35:97:1F:38:01:6A:CB:BD:92:AD:FF
Certificate issuer: /CN=705526f9ab0dd276823fc1f0ebaa1de63b7d656c
Certificate serial: 01942444E5C6D66D3CF5B52BA9EC4C6C9793
Authority key identifier: 70:55:26:F9:AB:0D:D2:76:82:3F:C1:F0:EB:AA:1D:E6:3B:7D:65:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cFUm-asN0naCP8Hw66od5jt9ZWw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/fe71b6-6aaa-4bd4-8661-6998ab7edf7a/1/yETJRCulpX8WNZcfOAFqy72Srf8.roa
Signing time: Wed 01 Jan 2025 23:48:02 +0000
ROA not before: Wed 01 Jan 2025 23:48:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 210129
IP address blocks: 185.94.132.0/22 maxlen: 22
185.227.120.0/22 maxlen: 22
2a0d:52c0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:44:e5:c6:d6:6d:3c:f5:b5:2b:a9:ec:4c:6c:97:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=705526f9ab0dd276823fc1f0ebaa1de63b7d656c
Validity
Not Before: Jan 1 23:48:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c844c9442ba5a57f1635971f38016acbbd92adff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:a4:45:6e:0b:ef:b5:37:40:38:4b:59:28:67:
9b:f4:f2:ad:b7:eb:a4:e9:32:d3:18:9f:2b:dd:88:
66:05:a5:69:09:ff:39:58:ce:87:2b:14:0b:b1:75:
0d:4e:92:aa:4d:fa:2b:b9:fe:00:09:64:a3:d5:1d:
28:a7:14:db:b3:96:51:5e:ea:96:71:f0:23:7d:29:
1f:f0:21:07:61:f4:78:02:ca:3f:06:c1:68:85:18:
60:2c:1f:1e:4a:ef:b2:fd:f2:f0:27:d9:15:f5:fb:
21:63:f4:52:02:78:52:c0:e8:bb:99:48:8b:ee:20:
58:29:cf:cf:93:71:06:06:84:77:3f:3b:da:00:d0:
aa:69:c8:25:a0:ae:02:af:53:e0:3d:2d:c8:07:16:
2b:93:2c:8c:9a:26:28:01:bb:29:d9:02:fe:13:f0:
f8:95:8c:f2:25:c1:01:42:d5:17:ff:d9:8e:25:e1:
f6:d5:a3:78:e9:80:7f:b7:a9:7d:26:eb:a5:b1:1a:
9e:fe:cd:13:e7:da:9d:54:b3:93:cd:28:02:d8:97:
d7:40:db:f6:5d:61:94:bb:86:63:9b:ce:9c:44:60:
db:30:63:7e:b4:a0:49:c4:17:ee:20:c6:5f:b1:af:
df:71:54:33:de:36:90:07:1a:b1:3b:a0:4d:7b:b8:
22:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:44:C9:44:2B:A5:A5:7F:16:35:97:1F:38:01:6A:CB:BD:92:AD:FF
X509v3 Authority Key Identifier:
keyid:70:55:26:F9:AB:0D:D2:76:82:3F:C1:F0:EB:AA:1D:E6:3B:7D:65:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cFUm-asN0naCP8Hw66od5jt9ZWw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/fe71b6-6aaa-4bd4-8661-6998ab7edf7a/1/yETJRCulpX8WNZcfOAFqy72Srf8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/fe71b6-6aaa-4bd4-8661-6998ab7edf7a/1/cFUm-asN0naCP8Hw66od5jt9ZWw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.94.132.0/22
185.227.120.0/22
IPv6:
2a0d:52c0::/29
Signature Algorithm: sha256WithRSAEncryption
a9:c7:5d:d2:91:98:74:c2:b4:49:c0:6f:fe:89:47:d3:6f:68:
10:ae:3e:60:a7:91:38:c5:4b:b9:2c:96:2f:81:5c:d3:f8:ff:
5e:ce:8c:43:62:71:5a:73:cf:26:91:3c:10:ec:80:be:af:6a:
bf:ea:75:7f:d7:5f:6c:c4:19:b2:34:33:8e:9c:34:58:4a:23:
68:5d:3c:75:81:94:86:2f:61:eb:50:1b:70:d5:77:0d:25:ce:
02:e7:7b:cb:ad:f8:c9:18:55:ad:52:4b:f9:3e:0c:ba:b0:6c:
df:88:ac:7b:fe:ae:f4:fa:2d:d2:46:d7:59:d8:3e:50:2a:66:
e7:3e:59:a1:93:1a:1c:00:e3:a3:04:94:f9:5e:53:e3:82:fd:
bf:a7:25:b4:ba:f0:11:ed:eb:60:1f:85:5f:0d:f6:73:56:3d:
c5:5e:09:d9:d2:5e:d9:fe:f4:2e:d1:42:90:15:46:80:1a:87:
da:38:6f:08:9d:8f:82:c7:3f:b6:9a:24:32:de:14:84:1f:6e:
33:8b:54:57:3f:d8:32:87:29:4d:8e:dd:ea:ee:52:29:b8:b8:
55:01:59:39:d3:0c:d1:fa:72:4d:f2:8f:32:8e:5f:0a:40:68:
df:4a:90:c0:b4:f7:b8:52:51:54:26:cc:59:4a:99:91:4c:08:
6a:23:09:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:35 2025 by rpki-client on console.sobornost.net