Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/c84a4d-9e57-4756-bdbb-01aa056b1f6f/1/XQF1gy_GwOpRDFXNG6GoJ-bdHmU.roa
File: XQF1gy_GwOpRDFXNG6GoJ-bdHmU.roa (raw, json)
Hash identifier: 2eDBAsY9Cf7EZVCxOyjj6e6wsGijuJlQgQ3d0xmYCt4=
Subject key identifier: 5D:01:75:83:2F:C6:C0:EA:51:0C:55:CD:1B:A1:A8:27:E6:DD:1E:65
Certificate issuer: /CN=9bbc4239c9cb981f19a495e633d3bec889fcbe89
Certificate serial: 0194266BA68B00724015A92D32017F0E7AAC
Authority key identifier: 9B:BC:42:39:C9:CB:98:1F:19:A4:95:E6:33:D3:BE:C8:89:FC:BE:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m7xCOcnLmB8ZpJXmM9O-yIn8vok.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/c84a4d-9e57-4756-bdbb-01aa056b1f6f/1/XQF1gy_GwOpRDFXNG6GoJ-bdHmU.roa
Signing time: Thu 02 Jan 2025 09:49:36 +0000
ROA not before: Thu 02 Jan 2025 09:49:36 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 201777
IP address blocks: 185.179.95.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:a6:8b:00:72:40:15:a9:2d:32:01:7f:0e:7a:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bbc4239c9cb981f19a495e633d3bec889fcbe89
Validity
Not Before: Jan 2 09:49:36 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5d0175832fc6c0ea510c55cd1ba1a827e6dd1e65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:e2:9d:3b:55:5f:34:c5:49:fb:62:d1:6e:4c:
5a:1c:c6:fe:08:64:8e:56:76:8a:bd:78:c0:21:8c:
33:9c:5e:fb:f3:13:49:63:04:2f:19:a3:da:e1:c8:
a7:a1:e1:f8:99:57:93:75:72:b1:e3:24:f7:83:70:
9e:78:85:43:64:0b:cb:dc:a6:a0:f7:00:fd:e5:2e:
e1:74:2c:ef:b3:45:a2:c8:0b:b9:dd:f3:c3:02:9b:
ce:25:35:2f:67:05:12:e6:4c:a5:86:6e:ca:2a:48:
78:18:d7:51:a2:9f:5b:32:6e:fb:80:04:82:1b:fc:
df:ff:eb:79:74:99:29:d8:70:22:4b:b0:9b:49:cf:
70:10:24:9f:f8:2e:53:0f:89:69:04:5e:bc:89:c7:
a5:2e:13:15:0c:cf:31:52:d0:44:e5:36:f1:3a:e9:
33:f4:ce:f6:99:13:8b:29:0f:73:23:6e:70:10:5d:
f7:63:2e:be:aa:4d:49:b2:47:29:b8:18:9e:d9:96:
f2:d4:8f:da:87:93:2e:a0:fb:47:e1:33:6e:be:0d:
b9:17:5e:e0:37:39:17:a4:c5:73:9e:15:b9:7f:77:
d0:0f:4d:80:c0:b5:32:76:a5:4e:29:ff:49:92:08:
ea:42:d7:84:74:ba:b4:5f:4a:2e:91:62:3f:3b:99:
ef:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:01:75:83:2F:C6:C0:EA:51:0C:55:CD:1B:A1:A8:27:E6:DD:1E:65
X509v3 Authority Key Identifier:
keyid:9B:BC:42:39:C9:CB:98:1F:19:A4:95:E6:33:D3:BE:C8:89:FC:BE:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m7xCOcnLmB8ZpJXmM9O-yIn8vok.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/c84a4d-9e57-4756-bdbb-01aa056b1f6f/1/XQF1gy_GwOpRDFXNG6GoJ-bdHmU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/c84a4d-9e57-4756-bdbb-01aa056b1f6f/1/m7xCOcnLmB8ZpJXmM9O-yIn8vok.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.179.95.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:cc:b7:06:66:20:ac:78:fd:70:3a:a0:d8:0d:99:65:d9:80:
22:76:b2:1a:81:86:6f:d2:56:e4:2f:98:be:63:da:a2:8f:20:
25:d1:d5:57:6b:a6:de:3a:43:a7:da:58:60:4e:ed:7a:d9:dc:
23:38:a1:60:27:13:b4:0b:a0:7e:f7:28:20:ae:39:c4:f5:9c:
82:71:34:fe:fe:c3:00:19:65:af:48:aa:55:ec:27:20:ea:c5:
68:37:be:5a:94:f2:4e:eb:24:00:04:7c:3b:4b:d1:cc:ba:7c:
35:34:51:7d:c8:74:88:a5:c9:a1:d0:b5:da:7f:41:bb:07:b9:
f9:26:37:5f:cc:87:82:49:78:a5:f6:74:2a:b9:41:9b:4b:67:
7b:32:a4:07:3d:91:f9:a6:c8:1e:31:79:d0:09:cf:22:e8:35:
43:83:ae:d4:a2:0b:d7:d3:37:4b:72:d0:99:7e:5e:7b:23:33:
7a:6f:ac:d1:2a:ea:d5:fd:05:04:0d:d2:56:70:ea:8e:27:95:
d0:32:33:6c:e6:af:b1:34:20:8d:f8:13:d5:df:26:cd:be:f2:
c1:61:3e:db:eb:44:67:ab:ee:b9:c8:5f:8f:c1:ad:17:78:3a:
4a:11:b3:c0:b3:1c:8f:84:4d:18:fb:77:6f:09:41:c4:cb:26:
82:b5:44:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:50 2025 by rpki-client on console.sobornost.net