Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/31aaba-ac7e-489f-877c-28d5b607a47f/1/jG76lLUgQYaSZsB__7tXEnh7-_I.roa
File: jG76lLUgQYaSZsB__7tXEnh7-_I.roa (raw, json)
Hash identifier: fSIH28hM1SyCenkx+Z6chI8MtQGu7VXq7U7d1upY0CQ=
Subject key identifier: 8C:6E:FA:94:B5:20:41:86:92:66:C0:7F:FF:BB:57:12:78:7B:FB:F2
Certificate issuer: /CN=a7d78de0234e6f99701592f536e45f5f5594eec3
Certificate serial: 01941FFA242377C8976194C155841EBD17A0
Authority key identifier: A7:D7:8D:E0:23:4E:6F:99:70:15:92:F5:36:E4:5F:5F:55:94:EE:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p9eN4CNOb5lwFZL1NuRfX1WU7sM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/31aaba-ac7e-489f-877c-28d5b607a47f/1/jG76lLUgQYaSZsB__7tXEnh7-_I.roa
Signing time: Wed 01 Jan 2025 03:47:54 +0000
ROA not before: Wed 01 Jan 2025 03:47:54 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214724
IP address blocks: 85.222.162.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:24:23:77:c8:97:61:94:c1:55:84:1e:bd:17:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7d78de0234e6f99701592f536e45f5f5594eec3
Validity
Not Before: Jan 1 03:47:54 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8c6efa94b52041869266c07fffbb5712787bfbf2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:be:45:0c:c9:18:27:7f:11:d8:8c:18:20:60:
11:de:9c:64:a6:2d:d5:3f:a3:e8:e4:51:4f:ea:2b:
2c:8f:1e:28:fc:e1:5c:09:85:39:cd:0a:55:0a:5c:
6f:e3:c5:91:8c:bf:b3:ac:c2:c5:f5:f6:45:9a:04:
86:44:c9:4d:5c:a9:f6:16:26:ff:2f:dc:bf:ab:81:
95:18:d6:71:e2:eb:dc:34:cf:2f:ca:73:5a:e9:c6:
11:c2:5b:ec:dd:e1:93:59:54:25:3e:e0:b4:99:41:
53:d4:a9:d2:e5:2b:d7:ea:97:99:67:72:0f:d0:56:
37:43:f3:5e:97:03:73:ee:b4:8a:7a:f7:86:74:3f:
3f:0e:b1:99:5a:4d:ee:c5:4a:f1:ca:87:e6:a9:a2:
82:62:3c:fc:d2:96:01:cc:7b:15:3f:10:52:87:37:
07:b4:9f:9a:95:6a:28:40:19:9f:b2:05:82:90:98:
36:cd:10:de:84:fe:7f:a0:bf:c3:d8:d9:df:b9:af:
64:f1:8a:bb:61:23:cb:1e:87:70:55:70:06:82:92:
c4:8a:57:bc:51:34:3d:53:08:55:d3:13:de:9c:db:
dc:09:d0:51:18:5f:93:c9:d4:33:71:f6:d2:c0:54:
45:70:ee:e7:cc:62:1f:83:30:4c:53:8f:d9:fb:59:
da:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:6E:FA:94:B5:20:41:86:92:66:C0:7F:FF:BB:57:12:78:7B:FB:F2
X509v3 Authority Key Identifier:
keyid:A7:D7:8D:E0:23:4E:6F:99:70:15:92:F5:36:E4:5F:5F:55:94:EE:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p9eN4CNOb5lwFZL1NuRfX1WU7sM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/31aaba-ac7e-489f-877c-28d5b607a47f/1/jG76lLUgQYaSZsB__7tXEnh7-_I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/31aaba-ac7e-489f-877c-28d5b607a47f/1/p9eN4CNOb5lwFZL1NuRfX1WU7sM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.222.162.0/23
Signature Algorithm: sha256WithRSAEncryption
0a:18:25:80:20:ad:20:f1:c2:e2:b8:8f:a2:38:a8:99:e0:5f:
c3:53:a1:35:f0:9f:98:30:d7:c5:a8:af:e1:0a:49:5b:27:c6:
bb:29:94:47:aa:20:fe:c5:df:2b:f8:10:85:da:03:2b:71:62:
57:6a:3d:71:dd:79:c8:15:fc:f7:b5:c3:54:d5:27:43:2e:5b:
77:07:d0:f7:43:98:20:00:6a:24:ad:c6:7e:60:09:3b:d6:a2:
5a:08:8c:b6:7b:ad:b7:70:03:91:e2:73:79:30:1a:47:82:a8:
52:72:bc:e0:76:0f:12:7e:f2:b1:2a:8d:6f:07:98:b9:34:b9:
fd:31:03:5f:81:98:15:73:d7:2d:06:3b:5d:8e:da:30:4b:f2:
dd:c6:6c:a3:fb:3b:c6:6d:b1:f4:27:96:64:67:e6:ac:69:f1:
49:68:7d:20:58:35:2f:ea:32:44:8d:f5:b4:7b:bd:13:3f:9a:
c8:20:95:e4:da:6d:12:5f:0d:a4:b4:42:0e:e9:16:2d:98:24:
d2:a6:c0:bc:d9:3f:ba:45:b3:a9:95:9a:95:29:40:6b:c4:4d:
4a:d6:23:00:89:74:03:c5:49:06:76:01:97:fc:16:a3:53:51:
bb:9f:4a:8f:5b:f2:be:30:ad:bb:df:dc:67:2c:1b:e1:cd:45:
e9:03:f8:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:55 2025 by rpki-client on console.sobornost.net