Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/da48e2-ff63-4bcd-82a2-d7b8eb4608e2/1/i85p5aRbMq_hdM6cSIQdk4ygpwo.roa
File: i85p5aRbMq_hdM6cSIQdk4ygpwo.roa (raw, json)
Hash identifier: x1h1J7ft54CHUC6kjTSlGgx0DSnPNMMrSgheR8JAqcM=
Subject key identifier: 8B:CE:69:E5:A4:5B:32:AF:E1:74:CE:9C:48:84:1D:93:8C:A0:A7:0A
Certificate issuer: /CN=8f4669216a2078cb024231f4632eab4da7ee4bc1
Certificate serial: 0195F1E324976FCED4355B1EA3BE2EA934DC
Authority key identifier: 8F:46:69:21:6A:20:78:CB:02:42:31:F4:63:2E:AB:4D:A7:EE:4B:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j0ZpIWogeMsCQjH0Yy6rTafuS8E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/da48e2-ff63-4bcd-82a2-d7b8eb4608e2/1/i85p5aRbMq_hdM6cSIQdk4ygpwo.roa
Signing time: Tue 01 Apr 2025 15:05:49 +0000
ROA not before: Tue 01 Apr 2025 15:05:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 57014
IP address blocks: 185.46.114.0/24 maxlen: 24
185.46.115.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:f1:e3:24:97:6f:ce:d4:35:5b:1e:a3:be:2e:a9:34:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f4669216a2078cb024231f4632eab4da7ee4bc1
Validity
Not Before: Apr 1 15:05:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8bce69e5a45b32afe174ce9c48841d938ca0a70a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:08:c8:97:27:82:57:ef:b1:b4:d6:ec:7b:7d:
a9:09:e6:55:05:cb:1d:d6:73:24:3e:f3:b3:42:e3:
76:02:a5:29:73:e0:67:d7:63:32:9c:e7:b5:06:6f:
e1:04:c5:d3:e8:12:07:30:7d:55:6f:b2:c5:f4:b9:
4c:0e:39:32:ec:5b:06:60:a6:7c:3f:e8:91:59:54:
49:7f:d0:c5:8f:f1:c8:c7:8d:d6:72:fb:c6:30:6c:
66:b7:50:52:57:d7:79:86:1f:05:68:1a:52:4c:40:
97:1b:b3:89:92:06:40:9e:f5:71:26:5e:c4:82:31:
37:7f:cc:df:8a:83:79:6a:c6:1a:ae:d2:ed:31:bd:
4d:8f:97:8d:2d:89:4e:a8:e9:be:87:f6:4a:36:fe:
13:84:3d:0f:1a:e7:f0:ec:d6:74:7b:93:b6:7f:00:
27:b7:13:b2:a9:d6:f8:66:07:08:34:0f:8e:82:92:
70:f0:06:49:4d:00:dd:a2:f4:e8:db:f3:1e:56:95:
64:dc:36:47:ef:a8:7c:42:e9:88:40:76:83:6a:4d:
90:66:06:b0:db:1e:2a:e7:00:a9:6f:fc:85:69:5a:
f9:be:d6:ea:33:4b:39:04:0b:20:2c:c4:f5:a4:9b:
1e:dd:5e:a5:e3:45:d0:27:86:90:2d:ed:5d:8c:65:
d7:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:CE:69:E5:A4:5B:32:AF:E1:74:CE:9C:48:84:1D:93:8C:A0:A7:0A
X509v3 Authority Key Identifier:
keyid:8F:46:69:21:6A:20:78:CB:02:42:31:F4:63:2E:AB:4D:A7:EE:4B:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j0ZpIWogeMsCQjH0Yy6rTafuS8E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/da48e2-ff63-4bcd-82a2-d7b8eb4608e2/1/i85p5aRbMq_hdM6cSIQdk4ygpwo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/da48e2-ff63-4bcd-82a2-d7b8eb4608e2/1/j0ZpIWogeMsCQjH0Yy6rTafuS8E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.46.114.0/23
Signature Algorithm: sha256WithRSAEncryption
88:38:05:a2:2f:3d:d0:34:0d:02:ba:53:a5:76:8c:64:a2:01:
30:c6:4e:02:a6:99:92:ce:f3:c5:37:6f:84:c4:12:69:0f:28:
8c:34:b3:85:2f:60:5a:b9:3c:fa:fb:5d:87:28:57:ed:4d:b8:
33:e1:aa:45:aa:92:cb:63:92:71:01:76:52:ca:74:14:e7:72:
df:69:f9:c0:81:01:cc:32:d5:48:d8:7e:9a:80:b4:10:0b:e7:
f5:3e:e1:71:ef:fa:5b:c2:c7:f1:f8:47:74:52:50:53:a3:53:
dc:9a:b5:b3:55:37:f5:1a:02:2c:c0:60:4d:30:41:50:11:72:
de:17:13:4b:3b:2b:f1:35:14:24:36:0b:60:f0:3f:b4:4c:c7:
d1:f4:a0:8c:27:f0:9f:e9:e0:42:4f:de:82:96:28:a8:bd:1f:
6b:51:21:a9:49:d2:9a:7b:fa:60:81:b6:23:a9:12:30:db:ec:
e8:f9:bf:29:34:f5:22:9b:85:ef:b1:21:cf:c9:5f:ae:57:9e:
55:4e:31:d1:a1:24:0e:94:e4:85:3a:44:d7:af:8f:51:89:f4:
55:7e:7e:af:a0:80:5c:fd:1c:c5:37:c0:36:70:b6:b4:31:97:
8d:84:52:de:cc:fd:eb:6f:27:ca:74:a2:9d:89:5c:da:0d:6d:
6a:ea:da:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:55 2025 by rpki-client on console.sobornost.net