Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/f09788-9869-4f12-9f1e-ac4de169adce/1/7H5MwTgN1OYiRCO4mG4ENm-WPD0.roa
File: 7H5MwTgN1OYiRCO4mG4ENm-WPD0.roa (raw, json)
Hash identifier: /sYr4Nv4zqcEaNJCLCU0HKPHMEqgFJB/Zeuuas/Ouic=
Subject key identifier: EC:7E:4C:C1:38:0D:D4:E6:22:44:23:B8:98:6E:04:36:6F:96:3C:3D
Certificate issuer: /CN=5e6c64fc20ce1d972f5e3474319048a2ac656df1
Certificate serial: 019420D65B9166054E67D1AE578EA79BF51C
Authority key identifier: 5E:6C:64:FC:20:CE:1D:97:2F:5E:34:74:31:90:48:A2:AC:65:6D:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xmxk_CDOHZcvXjR0MZBIoqxlbfE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/f09788-9869-4f12-9f1e-ac4de169adce/1/7H5MwTgN1OYiRCO4mG4ENm-WPD0.roa
Signing time: Wed 01 Jan 2025 07:48:26 +0000
ROA not before: Wed 01 Jan 2025 07:48:26 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 204566
IP address blocks: 185.243.208.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d6:5b:91:66:05:4e:67:d1:ae:57:8e:a7:9b:f5:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e6c64fc20ce1d972f5e3474319048a2ac656df1
Validity
Not Before: Jan 1 07:48:26 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ec7e4cc1380dd4e6224423b8986e04366f963c3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:6d:e1:ef:21:04:d6:b2:45:95:ad:4a:ff:3c:
f8:90:e7:e5:9f:71:ab:2d:58:49:85:98:13:f8:d8:
9b:7d:cf:66:3c:13:88:25:f9:13:ca:3e:cc:f6:39:
06:fc:30:52:33:3d:dd:40:52:2b:ae:a1:91:ef:37:
1d:e6:f1:de:2e:81:ea:15:35:69:74:5b:6b:05:52:
29:e7:49:ed:0e:af:46:69:d6:d6:ae:7a:20:dc:a9:
e3:91:04:4e:d7:51:d6:97:3f:ba:ce:50:1b:43:2a:
3a:21:a7:78:a0:b6:6f:88:5c:3d:d8:17:30:ff:5d:
6a:c8:6c:29:f7:a9:1c:fd:6a:f1:e8:2a:f7:47:f8:
5b:f0:e8:68:90:db:58:02:1f:89:86:37:8f:aa:dd:
3c:47:f7:f0:16:b8:00:25:d3:73:a4:8f:8f:31:3e:
20:7b:c7:5d:bd:9c:55:ff:4a:3a:a7:1c:6e:70:eb:
58:aa:a0:e5:29:dc:e5:be:24:51:97:de:7e:bb:f2:
69:bb:ec:be:5d:a2:9f:d3:21:81:1a:36:d9:f7:20:
88:c4:5f:f6:ea:36:3e:40:3a:2c:4c:3f:d6:60:ec:
80:6a:a9:5b:83:50:7a:5d:c5:2f:5b:5f:d7:22:9a:
3e:5f:37:71:83:95:9d:c8:ea:a3:97:06:29:02:83:
dc:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:7E:4C:C1:38:0D:D4:E6:22:44:23:B8:98:6E:04:36:6F:96:3C:3D
X509v3 Authority Key Identifier:
keyid:5E:6C:64:FC:20:CE:1D:97:2F:5E:34:74:31:90:48:A2:AC:65:6D:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xmxk_CDOHZcvXjR0MZBIoqxlbfE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/f09788-9869-4f12-9f1e-ac4de169adce/1/7H5MwTgN1OYiRCO4mG4ENm-WPD0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/f09788-9869-4f12-9f1e-ac4de169adce/1/Xmxk_CDOHZcvXjR0MZBIoqxlbfE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.243.208.0/22
Signature Algorithm: sha256WithRSAEncryption
95:bb:7f:8e:4e:d3:0d:e8:a1:c5:1c:5e:87:6e:e1:33:d8:84:
2b:b2:06:44:b3:3f:ef:0d:46:fe:4e:d2:d2:f3:12:b7:1a:c8:
5e:21:de:7a:1e:92:25:92:c7:9a:fb:70:5d:41:23:91:d2:04:
70:cd:6c:c7:ac:97:f8:a6:e1:09:7d:e2:32:50:6d:f7:82:3d:
e3:01:2a:f2:32:d5:f8:fc:2e:b9:f8:d8:8d:30:d9:1b:8d:a8:
95:5e:d3:b8:c6:4e:c3:2f:08:16:31:d0:1f:0c:0b:9c:c1:dc:
75:c6:f8:9e:6f:05:07:a6:af:57:d7:52:95:c2:b3:33:2c:ef:
45:3f:59:c7:02:0c:38:be:22:3e:f9:a5:58:dd:ee:a4:81:58:
61:93:f0:d2:cb:7a:06:59:1b:e4:ba:75:96:8e:89:5d:99:cd:
5d:13:27:79:d1:00:c5:33:ac:00:00:a0:15:aa:86:d4:23:a5:
10:d7:30:9b:fc:6d:73:35:6b:fe:0b:05:03:63:c4:18:e1:55:
df:69:49:38:22:68:e5:f6:e3:f8:82:be:6e:d3:9d:2c:d6:98:
30:f8:7b:4d:80:b2:68:6c:09:46:27:83:25:55:a0:ff:39:a7:
2b:1a:a4:6a:60:18:b1:75:0f:79:bb:64:3c:5f:78:fe:bf:ac:
a1:f9:6e:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:39 2025 by rpki-client on console.sobornost.net