Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/3b27b0-a1a7-4bf5-8cdd-595bfa1e1a9b/1/bFcn9mPyZL-HWvCUmkD4imPT9lE.roa
File: bFcn9mPyZL-HWvCUmkD4imPT9lE.roa (raw, json)
Hash identifier: nx+SWfL7k2gx1ajS+PvhXlizAfJ85BOfaRSOtzLsX5U=
Subject key identifier: 6C:57:27:F6:63:F2:64:BF:87:5A:F0:94:9A:40:F8:8A:63:D3:F6:51
Certificate issuer: /CN=f90e719baa4c8310483679fb6a3cb4ce9ac00c09
Certificate serial: 0194258F93890CB47771D224BA81110C1AA9
Authority key identifier: F9:0E:71:9B:AA:4C:83:10:48:36:79:FB:6A:3C:B4:CE:9A:C0:0C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-Q5xm6pMgxBINnn7ajy0zprADAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/3b27b0-a1a7-4bf5-8cdd-595bfa1e1a9b/1/bFcn9mPyZL-HWvCUmkD4imPT9lE.roa
Signing time: Thu 02 Jan 2025 05:49:13 +0000
ROA not before: Thu 02 Jan 2025 05:49:13 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 205244
IP address blocks: 185.224.100.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:93:89:0c:b4:77:71:d2:24:ba:81:11:0c:1a:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f90e719baa4c8310483679fb6a3cb4ce9ac00c09
Validity
Not Before: Jan 2 05:49:13 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6c5727f663f264bf875af0949a40f88a63d3f651
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:38:c7:78:ff:0d:ff:79:1e:37:d3:bb:ba:ad:
14:cc:c5:8c:30:5e:86:2d:ad:3c:fb:70:88:48:7f:
8c:16:22:85:42:6a:60:66:c7:e0:d6:3c:27:37:be:
52:38:49:56:6c:ab:63:dc:85:55:53:78:5b:78:50:
8c:30:bc:13:f7:91:fe:0a:91:39:1c:d2:70:e1:21:
10:9f:eb:0c:05:6a:ac:91:da:bd:b5:37:fe:42:1e:
7e:8f:c6:a2:46:89:23:d8:7b:06:e0:40:85:84:10:
d7:57:50:42:f2:7c:06:8e:99:81:ab:25:43:32:4b:
8f:05:9f:84:78:d1:c3:3b:70:1c:7a:a7:1a:05:67:
5b:ee:1e:5c:8b:26:80:0f:b2:b5:97:e8:00:f6:0a:
8c:36:50:8e:11:46:ed:f3:62:2e:43:67:20:70:94:
da:17:7d:71:72:e9:19:f8:2a:d0:1e:a9:81:cc:9d:
e5:a2:91:90:f6:51:8e:f8:31:3d:1f:1d:d3:d5:f9:
54:05:c7:2a:cc:d7:f4:85:b7:c4:1b:75:e7:d9:d3:
c0:0a:f5:e3:73:73:79:67:2f:f4:a4:8e:0f:0f:2b:
d1:d6:e8:bf:46:e6:09:b7:94:46:5d:e2:9f:e3:b9:
70:7c:9d:d7:df:db:dd:27:0c:c9:49:64:cf:68:b0:
0c:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:57:27:F6:63:F2:64:BF:87:5A:F0:94:9A:40:F8:8A:63:D3:F6:51
X509v3 Authority Key Identifier:
keyid:F9:0E:71:9B:AA:4C:83:10:48:36:79:FB:6A:3C:B4:CE:9A:C0:0C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-Q5xm6pMgxBINnn7ajy0zprADAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/3b27b0-a1a7-4bf5-8cdd-595bfa1e1a9b/1/bFcn9mPyZL-HWvCUmkD4imPT9lE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/3b27b0-a1a7-4bf5-8cdd-595bfa1e1a9b/1/1-Q5xm6pMgxBINnn7ajy0zprADAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.224.100.0/22
Signature Algorithm: sha256WithRSAEncryption
96:26:b5:2d:f3:a4:90:df:1d:c4:a9:81:e4:26:2d:83:a5:81:
ad:a5:78:8b:d2:67:2d:be:44:ad:ff:1f:09:8c:6f:ca:83:0e:
fd:8d:ee:c9:fe:17:f3:df:87:1f:27:31:3a:ab:a6:c7:eb:ff:
78:fd:90:64:06:6c:70:9f:5b:49:36:8f:a2:ec:31:19:5f:3b:
09:65:f3:fa:6f:11:9f:5d:9a:9b:a4:ed:a9:53:1f:b3:21:5c:
d9:7f:61:bf:57:7b:a1:12:f1:35:47:35:ab:72:bf:5d:1c:78:
39:7b:c0:19:f0:9d:1f:f1:62:34:df:e7:0c:e8:93:ab:e2:15:
86:7d:aa:dd:d9:85:01:34:31:4b:fd:da:67:3b:2f:ed:e0:bb:
38:0f:3d:34:86:9a:b0:91:a4:85:e6:c5:70:43:e4:fb:9a:5e:
c5:1e:f1:0c:99:58:53:07:8a:4a:e1:2c:71:4e:c2:26:b9:40:
20:a4:16:da:fe:42:d7:38:79:be:10:10:58:a3:0b:24:dd:78:
ad:6b:ff:7b:94:3a:6d:65:c5:37:01:8a:9a:1a:ff:58:8d:be:
06:08:1b:13:e6:d9:76:32:3c:60:b4:17:03:12:3d:69:30:b3:
dc:47:32:d8:14:75:c3:03:ed:cc:33:5f:80:c4:66:be:5a:e4:
58:f8:07:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 25 18:54:22 2025 by rpki-client on console.sobornost.net