Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/e5a2c7-0453-48ba-b10c-0ba9679de2e6/1/vyiJ9VgxunO1beL-TLp8DQho0z4.roa
File: vyiJ9VgxunO1beL-TLp8DQho0z4.roa (raw, json)
Hash identifier: ThIUsMZZykRqe6AuoTNCl3LT/Ty2lekPXvQyW0X+N8o=
Subject key identifier: BF:28:89:F5:58:31:BA:73:B5:6D:E2:FE:4C:BA:7C:0D:08:68:D3:3E
Certificate issuer: /CN=5fc24743304b7fd9a065d22cd89cda95045e269c
Certificate serial: 01942827223F50156A0079C59F299BEE0B69
Authority key identifier: 5F:C2:47:43:30:4B:7F:D9:A0:65:D2:2C:D8:9C:DA:95:04:5E:26:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X8JHQzBLf9mgZdIs2JzalQReJpw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/e5a2c7-0453-48ba-b10c-0ba9679de2e6/1/vyiJ9VgxunO1beL-TLp8DQho0z4.roa
Signing time: Thu 02 Jan 2025 17:54:00 +0000
ROA not before: Thu 02 Jan 2025 17:54:00 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 201659
IP address blocks: 185.61.160.0/22 maxlen: 22
2a02:7ae0::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:27:22:3f:50:15:6a:00:79:c5:9f:29:9b:ee:0b:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5fc24743304b7fd9a065d22cd89cda95045e269c
Validity
Not Before: Jan 2 17:54:00 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=bf2889f55831ba73b56de2fe4cba7c0d0868d33e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:24:eb:ba:a9:e1:dc:89:be:dd:36:50:5f:28:
44:a6:f3:9d:67:d3:85:b5:97:91:fe:2f:7f:8f:dd:
70:6c:12:9a:2e:a5:79:29:65:4c:46:22:a5:5d:c0:
b1:f0:c8:95:e6:40:8e:e4:2c:fd:31:55:56:db:1d:
9f:77:0a:75:0a:10:8e:8a:95:25:2b:70:a6:12:01:
fc:a7:76:02:87:85:04:be:a1:0d:16:50:cc:8f:f5:
b3:3a:57:2e:73:eb:e5:d1:48:ba:5d:20:de:05:6a:
8c:b5:1a:eb:03:11:01:32:e6:7c:b5:bf:c5:79:a3:
33:07:35:ac:1d:08:dc:38:8f:26:fc:6f:58:23:02:
a0:04:c2:dc:01:4c:51:76:dc:db:c5:41:01:f3:6d:
3c:60:d8:4b:3d:e3:d4:68:ab:85:fe:11:be:73:e4:
34:92:38:ea:6d:68:ec:82:bd:5c:a8:3d:80:4f:3e:
de:56:f5:f3:63:81:02:db:0a:0a:f9:c6:20:55:4e:
22:31:6c:33:12:ba:be:26:06:4a:18:fd:c6:c0:17:
9d:34:8d:78:d7:a3:04:dd:e9:5b:53:e5:e7:20:2b:
3d:fd:21:15:99:8c:8a:e3:57:13:b8:13:3d:b0:96:
b7:49:2d:c2:ba:b3:62:d5:08:f7:f5:81:7c:97:8f:
0e:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:28:89:F5:58:31:BA:73:B5:6D:E2:FE:4C:BA:7C:0D:08:68:D3:3E
X509v3 Authority Key Identifier:
keyid:5F:C2:47:43:30:4B:7F:D9:A0:65:D2:2C:D8:9C:DA:95:04:5E:26:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X8JHQzBLf9mgZdIs2JzalQReJpw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/e5a2c7-0453-48ba-b10c-0ba9679de2e6/1/vyiJ9VgxunO1beL-TLp8DQho0z4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/e5a2c7-0453-48ba-b10c-0ba9679de2e6/1/X8JHQzBLf9mgZdIs2JzalQReJpw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.61.160.0/22
IPv6:
2a02:7ae0::/32
Signature Algorithm: sha256WithRSAEncryption
0e:3b:c9:14:f0:c9:26:4a:12:b5:a2:d4:b8:52:69:49:e9:e5:
0c:1a:23:4e:75:45:f0:01:d1:04:3f:7a:46:59:eb:69:78:69:
a1:e1:57:9e:55:16:83:d3:bd:d0:0a:cd:fa:db:d1:7d:b7:05:
d7:4e:e1:78:e0:29:40:fa:65:89:7b:e0:2a:01:72:d7:11:d4:
95:84:26:24:3c:88:dc:f4:84:76:13:76:4a:44:93:1c:a4:c5:
bf:23:51:ad:60:f3:b5:28:89:78:93:22:86:f7:0a:3a:b4:04:
6b:27:b3:cc:0b:29:ba:19:cd:dc:a1:30:32:75:7f:45:5b:b2:
62:4e:b2:82:16:bd:00:dd:2c:30:fa:07:d9:36:e1:3d:bb:62:
9f:07:94:18:c5:5a:ed:ee:8d:e6:83:b3:38:13:be:6a:86:82:
d8:7d:49:7c:83:39:a8:fb:1d:6a:d8:46:d9:5f:27:76:5e:e0:
52:62:aa:74:02:47:0b:b6:b7:0b:b4:78:49:ec:dc:bb:69:8d:
3d:1d:74:f2:f6:d2:87:f2:e8:ad:84:2b:b4:9c:86:ca:d6:71:
8a:27:b3:cc:9e:33:58:81:31:b5:1e:ba:66:1f:da:06:ed:9b:
04:4f:50:66:ef:37:52:23:be:85:a5:8b:f7:46:ee:ec:69:5f:
0e:eb:5e:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:35 2025 by rpki-client on console.sobornost.net