Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/s84uwW_-i_SHLp2X5wNbbXCbos0.roa
File: s84uwW_-i_SHLp2X5wNbbXCbos0.roa (raw, json)
Hash identifier: XmZwP1Dphpy/OpROhUP0RXS2PeMw5xbgxdsjXIheFhc=
Subject key identifier: B3:CE:2E:C1:6F:FE:8B:F4:87:2E:9D:97:E7:03:5B:6D:70:9B:A2:CD
Certificate issuer: /CN=5f7da568ad027b9e249c13e223d322769881a29f
Certificate serial: 0194266BF3F21A3EA08C5CF9E6A46E3F7034
Authority key identifier: 5F:7D:A5:68:AD:02:7B:9E:24:9C:13:E2:23:D3:22:76:98:81:A2:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X32laK0Ce54knBPiI9MidpiBop8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/s84uwW_-i_SHLp2X5wNbbXCbos0.roa
Signing time: Thu 02 Jan 2025 09:49:56 +0000
ROA not before: Thu 02 Jan 2025 09:49:56 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 59828
IP address blocks: 185.70.36.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:f3:f2:1a:3e:a0:8c:5c:f9:e6:a4:6e:3f:70:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f7da568ad027b9e249c13e223d322769881a29f
Validity
Not Before: Jan 2 09:49:56 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b3ce2ec16ffe8bf4872e9d97e7035b6d709ba2cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:26:b4:4b:7c:cf:79:70:94:29:b2:56:4e:ab:
1c:f1:6d:26:e7:c6:19:88:f0:a1:0c:2a:3c:2d:c0:
7a:cc:66:11:43:2b:fa:a8:f4:ad:ae:29:e3:29:f1:
0a:96:13:81:2b:9f:2b:6b:11:2f:89:58:87:17:49:
97:48:de:d5:28:7e:8d:38:e9:53:9e:97:df:31:88:
36:86:6c:b8:fe:8c:f3:05:ed:1f:dd:8d:3f:99:98:
15:01:c2:4b:ee:19:b7:f6:be:7c:71:d0:e6:bd:5a:
10:bc:41:4b:3e:8e:01:e8:c8:8a:11:6e:ae:19:e8:
90:de:99:db:b0:f1:20:e2:60:03:7c:ac:e3:e0:a0:
7b:d2:6e:2d:65:cf:6a:04:a9:0c:c6:5f:fc:58:ef:
4a:09:d6:99:2f:cc:cd:3e:e2:e4:28:ea:8a:03:81:
8b:cc:46:31:60:25:6b:58:91:6c:ca:88:13:8e:77:
e2:2c:06:11:14:2d:54:d3:f6:9e:eb:f3:03:cc:a1:
91:a3:c6:62:be:ee:16:f0:f6:ba:92:db:24:56:cf:
05:43:4c:d6:bd:01:66:01:fa:47:2a:9f:76:ae:69:
e3:ca:d3:81:f8:bc:f6:0b:62:66:43:8a:d1:97:85:
31:d2:9f:99:1a:4e:9d:40:79:14:32:eb:d2:50:28:
05:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:CE:2E:C1:6F:FE:8B:F4:87:2E:9D:97:E7:03:5B:6D:70:9B:A2:CD
X509v3 Authority Key Identifier:
keyid:5F:7D:A5:68:AD:02:7B:9E:24:9C:13:E2:23:D3:22:76:98:81:A2:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X32laK0Ce54knBPiI9MidpiBop8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/s84uwW_-i_SHLp2X5wNbbXCbos0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/X32laK0Ce54knBPiI9MidpiBop8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.70.36.0/22
Signature Algorithm: sha256WithRSAEncryption
51:a2:e4:7a:f5:ff:93:cb:07:5f:33:d8:e6:69:7a:1a:bf:51:
97:3e:bf:d7:bc:64:0e:6a:3f:46:b9:9b:7c:74:b4:1b:f5:6f:
e4:91:c4:09:da:36:8f:43:bd:43:cf:45:52:b2:45:3f:ab:2a:
bd:76:b3:05:06:0c:70:7d:ee:ff:ec:bd:92:14:55:d1:ec:07:
d7:cd:3b:40:f8:bd:35:03:f6:f4:60:24:94:7a:0e:bd:fa:8c:
cb:18:82:02:ce:db:14:6a:f3:41:b1:c8:cb:37:2c:03:5e:7b:
02:52:b5:27:18:78:e3:28:4a:91:a3:1f:82:85:f3:23:ea:3f:
48:7a:cb:94:7a:4c:ad:f0:70:1b:23:57:2b:54:f8:1f:ed:10:
cd:45:11:ee:bf:9a:a7:06:93:a9:3d:ee:78:87:fc:c8:9f:db:
1a:bc:c9:24:7b:8f:23:20:f0:9a:f9:b6:23:2b:33:d9:4a:3a:
49:a8:bd:1b:91:ed:dd:a0:06:ea:4c:5b:cd:c6:63:c1:c9:10:
e4:3d:eb:42:44:07:be:82:99:d4:e9:29:36:50:d3:61:d1:da:
6b:d2:83:d8:a2:be:74:88:f0:ea:29:32:12:0e:cc:28:50:bb:
63:0e:61:9c:a8:5d:79:3d:5f:8b:4d:a4:0d:3c:2d:0b:12:a9:
1a:38:9a:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:49 2025 by rpki-client on console.sobornost.net