Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/b416a5-ee4f-4cc7-b0c4-7475f70df9fa/1/E72VdoRs1WH4lPVFyfKcgtxOU8Q.roa
File: E72VdoRs1WH4lPVFyfKcgtxOU8Q.roa (raw, json)
Hash identifier: LmX4spgkKMlRcTCE+F8dcGQpsB1FUNFcfYjRwXtYks0=
Subject key identifier: 13:BD:95:76:84:6C:D5:61:F8:94:F5:45:C9:F2:9C:82:DC:4E:53:C4
Certificate issuer: /CN=ff1f615b91839f51ed3a5b53753b27b02c76da95
Certificate serial: 019425FC383AFCF967B9A43B0B9656EA9B03
Authority key identifier: FF:1F:61:5B:91:83:9F:51:ED:3A:5B:53:75:3B:27:B0:2C:76:DA:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_x9hW5GDn1HtOltTdTsnsCx22pU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/b416a5-ee4f-4cc7-b0c4-7475f70df9fa/1/E72VdoRs1WH4lPVFyfKcgtxOU8Q.roa
Signing time: Thu 02 Jan 2025 07:47:53 +0000
ROA not before: Thu 02 Jan 2025 07:47:53 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215098
IP address blocks: 185.220.194.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fc:38:3a:fc:f9:67:b9:a4:3b:0b:96:56:ea:9b:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff1f615b91839f51ed3a5b53753b27b02c76da95
Validity
Not Before: Jan 2 07:47:53 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=13bd9576846cd561f894f545c9f29c82dc4e53c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:ea:0a:06:4e:ea:3e:b9:c5:2d:ab:3a:ce:d5:
bc:71:af:a0:5e:6f:47:90:c9:ec:48:aa:14:bc:08:
32:6e:a0:8f:e9:12:cf:0e:ee:a2:ae:df:36:2a:80:
58:a6:b7:52:8a:14:cd:ee:ac:a3:6d:21:67:ef:8f:
bb:6f:b2:ee:54:b0:5f:85:6e:6e:b5:b5:93:25:be:
a6:07:88:c6:b1:ce:4d:28:6a:00:1f:3c:74:14:64:
03:d0:0b:65:e5:60:f4:0a:0d:ab:8f:84:4f:f6:c4:
ad:3f:a4:39:fd:e4:4b:b7:48:79:3c:5c:32:ee:36:
79:63:61:26:72:97:86:8a:95:0f:40:2d:da:e4:7d:
57:c0:a6:33:c9:7b:d3:69:8b:34:ba:77:95:f3:43:
e2:27:c8:cb:ce:11:63:ab:6e:b0:83:fe:12:05:63:
df:c3:e6:09:73:04:43:8d:18:54:48:ba:7b:d3:1a:
9c:bf:0e:77:e1:a2:6b:15:ec:de:11:a8:fb:f4:dd:
9a:85:16:15:36:ad:1a:30:e4:86:e4:e6:3e:cd:6f:
41:0b:6e:65:01:b8:ae:58:fc:20:12:9c:b1:e3:f5:
44:38:46:08:ad:57:e6:81:a4:3f:1b:22:1e:9b:75:
e5:96:5b:03:ff:05:7d:d2:02:de:bd:00:4d:d0:84:
9c:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:BD:95:76:84:6C:D5:61:F8:94:F5:45:C9:F2:9C:82:DC:4E:53:C4
X509v3 Authority Key Identifier:
keyid:FF:1F:61:5B:91:83:9F:51:ED:3A:5B:53:75:3B:27:B0:2C:76:DA:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_x9hW5GDn1HtOltTdTsnsCx22pU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/b416a5-ee4f-4cc7-b0c4-7475f70df9fa/1/E72VdoRs1WH4lPVFyfKcgtxOU8Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/b416a5-ee4f-4cc7-b0c4-7475f70df9fa/1/_x9hW5GDn1HtOltTdTsnsCx22pU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.220.194.0/23
Signature Algorithm: sha256WithRSAEncryption
5c:2a:c0:4b:ea:82:59:ff:cb:73:06:e6:7c:55:d3:b7:b0:2f:
1d:4d:3b:59:2d:7e:2e:4f:d9:d8:69:8e:14:a2:a1:a6:51:8d:
2d:5f:f1:19:93:ce:6f:76:29:81:89:18:83:72:9f:af:28:63:
8e:2c:1a:cf:6f:31:8f:09:05:fd:13:f8:49:85:ad:83:20:fd:
d7:58:42:c4:91:c2:d5:e4:1a:cc:af:19:a6:cc:78:21:0d:49:
e0:8b:07:08:78:bf:53:b3:25:09:6c:ab:e5:05:10:3b:2f:95:
f7:7e:7e:a5:da:a7:06:42:a3:b3:f8:f8:1a:fa:40:8e:a6:d8:
af:cd:04:04:6b:ef:33:2b:b7:3d:af:e3:3b:66:bf:a1:86:9a:
26:22:5a:23:58:76:31:cb:54:58:c5:66:b7:cf:c8:f7:a1:0e:
4e:0c:fd:d5:c3:89:bd:45:fc:15:85:bb:f0:f6:fd:c9:db:08:
d2:09:1c:31:1d:05:40:8a:52:82:d5:b6:f0:b9:c0:4f:ce:03:
b8:c3:3e:ff:55:c1:f8:6b:e5:65:6f:fe:58:21:cd:2f:3d:65:
88:65:9d:29:af:a8:fe:19:35:54:ed:bc:e9:e9:86:0e:1d:a9:
26:0c:7d:4b:ba:d6:37:63:3f:c0:d8:f9:bb:b9:0f:85:d9:5a:
c3:46:8c:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:54 2025 by rpki-client on console.sobornost.net