Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/538194-7560-4456-b45c-ca26c22cfafd/1/xXvpynv9RLlNuhH_ScFehFzRtz4.roa
File: xXvpynv9RLlNuhH_ScFehFzRtz4.roa (raw, json)
Hash identifier: QSdQRW1EuXcu0ntbVvgh9fj5LXlqpMEhY2XBCGX6qp8=
Subject key identifier: C5:7B:E9:CA:7B:FD:44:B9:4D:BA:11:FF:49:C1:5E:84:5C:D1:B7:3E
Certificate issuer: /CN=8a695b3aba1ea4e654788c51641458cc99578040
Certificate serial: 01941FFA8A9AF1EE07E2DF1F2E1F9EE097CC
Authority key identifier: 8A:69:5B:3A:BA:1E:A4:E6:54:78:8C:51:64:14:58:CC:99:57:80:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/imlbOroepOZUeIxRZBRYzJlXgEA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/538194-7560-4456-b45c-ca26c22cfafd/1/xXvpynv9RLlNuhH_ScFehFzRtz4.roa
Signing time: Wed 01 Jan 2025 03:48:20 +0000
ROA not before: Wed 01 Jan 2025 03:48:20 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 42874
IP address blocks: 185.81.72.0/24 maxlen: 24
185.81.73.0/24 maxlen: 24
185.81.74.0/24 maxlen: 24
185.81.75.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:8a:9a:f1:ee:07:e2:df:1f:2e:1f:9e:e0:97:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a695b3aba1ea4e654788c51641458cc99578040
Validity
Not Before: Jan 1 03:48:20 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c57be9ca7bfd44b94dba11ff49c15e845cd1b73e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:5d:1d:b0:4c:53:02:69:1a:c9:d8:56:7a:77:
f3:59:00:1a:fe:de:94:84:bb:81:b4:f3:67:7d:80:
19:be:e8:df:a7:6c:53:27:e6:6c:9b:9c:e1:af:f2:
4d:e3:f0:0c:76:e1:ac:ac:be:fb:a1:66:a0:c6:ea:
2b:15:40:ff:21:30:fd:31:2c:af:57:1e:fc:3d:c6:
92:38:9f:fc:4d:bc:94:45:9f:8c:a6:3c:50:dd:33:
a4:53:67:51:0d:9c:51:06:bf:f1:d8:0e:8d:b0:2b:
f7:1d:25:fd:3b:1d:6f:2b:e5:aa:72:fa:5e:96:af:
84:3a:64:d5:29:0f:ce:d8:85:7d:ee:c6:05:b5:5d:
16:b0:74:4a:b6:73:ec:86:1f:99:e3:8a:7c:28:53:
95:fa:ba:cb:c6:dc:e2:a3:84:03:1f:25:c4:79:91:
26:03:88:81:c7:d2:09:d0:75:16:69:ef:30:f2:44:
64:32:29:bb:f6:48:aa:34:f0:56:a2:fd:65:71:88:
72:29:47:38:eb:e4:2a:c7:b7:d6:2d:9d:64:17:76:
b3:1f:23:64:cf:03:6a:a8:7f:a5:e8:44:2f:92:e2:
be:6c:58:89:6a:e1:34:4d:e5:8f:52:d9:38:f1:3e:
24:bb:65:c0:02:3c:a7:16:b5:73:b8:f9:9f:9e:a3:
c5:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:7B:E9:CA:7B:FD:44:B9:4D:BA:11:FF:49:C1:5E:84:5C:D1:B7:3E
X509v3 Authority Key Identifier:
keyid:8A:69:5B:3A:BA:1E:A4:E6:54:78:8C:51:64:14:58:CC:99:57:80:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/imlbOroepOZUeIxRZBRYzJlXgEA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/538194-7560-4456-b45c-ca26c22cfafd/1/xXvpynv9RLlNuhH_ScFehFzRtz4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/538194-7560-4456-b45c-ca26c22cfafd/1/imlbOroepOZUeIxRZBRYzJlXgEA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.81.72.0/22
Signature Algorithm: sha256WithRSAEncryption
4b:89:5e:e0:97:e6:2c:65:fd:ad:5e:e3:84:89:46:23:6b:3e:
13:c2:a2:b8:52:81:c0:a6:3a:4a:77:e7:e8:8c:c6:4f:4d:33:
db:d7:53:21:9c:2b:d5:c2:3d:df:5b:5b:e7:3f:e4:52:9d:d9:
29:10:67:b8:08:b2:ab:da:8f:14:86:78:0e:00:b0:50:c3:f8:
e1:4c:22:bb:7c:a5:5b:42:ed:66:d6:1d:76:28:0a:e0:d4:91:
a6:63:96:1e:e7:06:de:a7:b3:60:aa:84:39:79:73:ea:d8:e1:
e6:0e:5b:8d:2a:ea:cb:e0:c8:97:b6:ac:ad:61:e3:92:51:ad:
b8:78:a0:c4:ff:85:6b:01:f8:29:ca:50:f9:c2:d1:db:4c:a2:
95:a6:27:12:12:04:73:f8:02:2b:55:0d:a7:29:f4:bd:b2:5f:
e7:90:c6:77:57:78:80:fd:69:c4:89:b4:f4:a5:57:4a:9d:6b:
75:6e:89:b8:7c:19:e9:40:34:1a:1b:1a:b6:da:81:89:01:c2:
61:47:46:13:9e:e5:4f:e2:46:42:07:79:56:74:c7:80:a0:1a:
80:85:ec:4c:a2:23:d1:f1:fb:30:c6:d7:01:2d:d6:c5:31:da:
d4:31:e2:5a:cc:9e:cb:5c:f2:d3:35:22:41:50:37:12:b3:e5:
d3:7f:18:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:35 2025 by rpki-client on console.sobornost.net