Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/FCW2bGoLdcM6i-Jx_GrHtMzXAlk.roa
File: FCW2bGoLdcM6i-Jx_GrHtMzXAlk.roa (raw, json)
Hash identifier: WJgWrgAT99wsdStIPz/Fl698liisGeyhumyE7tw/O7c=
Subject key identifier: 14:25:B6:6C:6A:0B:75:C3:3A:8B:E2:71:FC:6A:C7:B4:CC:D7:02:59
Certificate issuer: /CN=90c00137ee6dfaeb4ea4823bc173c3bc00031df9
Certificate serial: 01942521691D0EA48B50293EB506E047EBE9
Authority key identifier: 90:C0:01:37:EE:6D:FA:EB:4E:A4:82:3B:C1:73:C3:BC:00:03:1D:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kMABN-5t-utOpII7wXPDvAADHfk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/FCW2bGoLdcM6i-Jx_GrHtMzXAlk.roa
Signing time: Thu 02 Jan 2025 03:48:54 +0000
ROA not before: Thu 02 Jan 2025 03:48:54 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 12479
IP address blocks: 80.251.64.0/20 maxlen: 24
185.124.20.0/22 maxlen: 24
217.173.112.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:69:1d:0e:a4:8b:50:29:3e:b5:06:e0:47:eb:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90c00137ee6dfaeb4ea4823bc173c3bc00031df9
Validity
Not Before: Jan 2 03:48:54 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1425b66c6a0b75c33a8be271fc6ac7b4ccd70259
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:46:52:6c:9a:f3:7a:39:f3:ad:13:12:ff:a9:
7b:b9:b4:3a:d9:a8:17:58:29:25:c3:9a:b1:34:b2:
54:e7:95:39:dc:17:6a:c4:19:f4:8c:52:be:ee:5b:
22:86:26:47:29:4d:cb:7d:c5:cd:84:e5:07:99:05:
46:c0:b6:22:d7:12:7d:0b:b2:fd:eb:f7:f4:d3:c9:
86:32:8a:5a:92:ad:59:b4:21:21:15:3e:91:b9:3a:
24:7e:d2:da:a8:84:a8:ac:01:60:80:b3:df:73:d8:
0a:29:63:37:14:d5:2f:c4:61:5c:1f:bd:ac:29:9f:
07:52:39:43:a6:0d:20:f8:77:4d:9c:d4:75:7a:f3:
dc:79:fe:15:5d:6b:33:e3:32:b1:0c:a9:b4:bd:47:
60:e8:75:a7:d0:61:89:45:a9:9e:ae:c2:e6:18:b4:
19:5e:55:d7:f9:c3:73:ca:73:ba:b5:4e:88:c4:b0:
1e:eb:7c:bd:11:66:b3:42:9f:40:d3:b5:d0:fd:25:
16:6b:7d:80:f2:48:62:98:0e:fe:db:31:92:4c:dc:
fb:66:f6:ef:2e:d4:24:f7:47:b8:fc:93:4e:84:e0:
fa:88:16:37:13:33:67:64:0c:cc:55:88:ad:72:d6:
82:30:5b:b8:68:af:c4:cd:b3:13:9c:78:36:e4:5f:
a0:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:25:B6:6C:6A:0B:75:C3:3A:8B:E2:71:FC:6A:C7:B4:CC:D7:02:59
X509v3 Authority Key Identifier:
keyid:90:C0:01:37:EE:6D:FA:EB:4E:A4:82:3B:C1:73:C3:BC:00:03:1D:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kMABN-5t-utOpII7wXPDvAADHfk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/FCW2bGoLdcM6i-Jx_GrHtMzXAlk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.251.64.0/20
185.124.20.0/22
217.173.112.0/20
Signature Algorithm: sha256WithRSAEncryption
1e:79:48:bb:43:0e:55:48:2c:ec:10:fe:97:c5:35:21:d7:ea:
11:72:08:f8:58:d2:e5:de:33:6f:f7:ab:8f:eb:ad:cf:68:13:
83:2c:bb:bc:50:d0:27:29:26:1b:d1:09:cb:dc:01:7c:ba:a8:
af:53:65:27:05:f8:e0:59:41:94:39:f5:22:bb:00:a8:b9:77:
3a:a3:9b:e4:97:71:8b:1c:ad:50:b5:36:91:a3:b6:d4:be:c7:
07:f8:bd:5d:ac:f3:09:1e:88:5a:61:89:3e:69:9c:28:f3:0d:
aa:90:fa:4a:b6:5e:05:07:2d:d8:36:07:09:cc:72:16:51:01:
47:d9:af:c5:54:60:2a:88:63:9a:ac:b4:0f:13:25:02:2c:25:
b8:23:8d:34:c1:a9:6b:21:51:c0:c4:0d:91:9e:88:8e:28:84:
5b:ef:8d:bb:1e:57:a2:28:5e:73:4e:05:8d:74:06:f9:ac:98:
77:0d:c4:6f:db:e8:f7:cc:04:71:90:b5:e2:f8:4b:c9:48:33:
e5:6a:55:53:45:e2:74:80:78:f9:b5:fd:75:24:44:26:1c:f5:
0c:f1:35:65:61:f7:a0:f6:10:aa:96:d8:90:fd:ce:9e:be:04:
84:88:72:db:a4:47:3b:0b:a1:59:3e:66:6d:60:f5:fd:c8:6d:
89:78:dd:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:39 2025 by rpki-client on console.sobornost.net