Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/49f40c-5448-4217-956f-ccf9b0f0e227/1/ABnX77DVikk7gn2fQ6SCyXZp5CY.roa
File: ABnX77DVikk7gn2fQ6SCyXZp5CY.roa (raw, json)
Hash identifier: tGweD2UyMDN3jg0C7H8c7WDDk9iUdxSAoQTdTpfDf5g=
Subject key identifier: 00:19:D7:EF:B0:D5:8A:49:3B:82:7D:9F:43:A4:82:C9:76:69:E4:26
Certificate issuer: /CN=8260152edd476b31708404452958615b65ddcb0a
Certificate serial: 019425FC0B11B9F23734E7C368495A55B4DA
Authority key identifier: 82:60:15:2E:DD:47:6B:31:70:84:04:45:29:58:61:5B:65:DD:CB:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gmAVLt1HazFwhARFKVhhW2Xdywo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/49f40c-5448-4217-956f-ccf9b0f0e227/1/ABnX77DVikk7gn2fQ6SCyXZp5CY.roa
Signing time: Thu 02 Jan 2025 07:47:42 +0000
ROA not before: Thu 02 Jan 2025 07:47:42 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 25540
IP address blocks: 185.126.244.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fc:0b:11:b9:f2:37:34:e7:c3:68:49:5a:55:b4:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8260152edd476b31708404452958615b65ddcb0a
Validity
Not Before: Jan 2 07:47:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0019d7efb0d58a493b827d9f43a482c97669e426
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:92:9a:d2:8f:67:99:bf:47:8a:a9:b1:8c:80:
f5:db:19:60:6f:82:95:68:a0:30:36:d3:7a:7b:51:
63:fb:3c:92:43:bc:90:63:e1:69:ee:38:a5:bc:87:
15:72:63:6f:eb:c7:62:41:9c:ee:af:1c:ed:8f:de:
5c:87:1d:a9:6e:53:91:02:29:a0:aa:a7:cc:2d:8e:
00:4b:d5:d6:d1:64:fc:c2:82:99:dc:ee:af:bd:7c:
75:0f:03:a9:cb:d1:14:7a:c8:f0:48:83:ae:59:c5:
9c:fe:af:03:ed:f4:3f:37:2d:c2:88:6b:ae:b8:b2:
7a:09:51:ad:85:3c:1e:ce:b5:f4:17:cd:0a:b5:eb:
52:4d:1a:74:14:33:cf:52:90:f9:90:49:b5:b0:f9:
80:c1:f3:6e:8c:f0:a8:40:bf:43:e7:ba:37:8f:c5:
6b:4b:81:58:5d:55:71:b3:e4:9e:df:f5:8b:e5:29:
28:64:c5:9f:ce:c9:5d:ea:3f:b8:e3:76:ec:50:96:
46:b6:56:fd:b0:40:f2:6a:a9:fd:0e:b2:f6:ac:bd:
b9:7b:e5:34:2d:69:b9:eb:7f:5b:b9:5e:06:11:52:
e7:ed:64:aa:e9:f5:24:d9:0c:15:42:74:d3:3c:db:
23:77:b1:52:07:33:1e:af:af:09:fd:7b:7f:02:37:
f3:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:19:D7:EF:B0:D5:8A:49:3B:82:7D:9F:43:A4:82:C9:76:69:E4:26
X509v3 Authority Key Identifier:
keyid:82:60:15:2E:DD:47:6B:31:70:84:04:45:29:58:61:5B:65:DD:CB:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gmAVLt1HazFwhARFKVhhW2Xdywo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/49f40c-5448-4217-956f-ccf9b0f0e227/1/ABnX77DVikk7gn2fQ6SCyXZp5CY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/49f40c-5448-4217-956f-ccf9b0f0e227/1/gmAVLt1HazFwhARFKVhhW2Xdywo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.126.244.0/22
Signature Algorithm: sha256WithRSAEncryption
20:69:11:72:a1:09:72:41:17:b4:f4:75:8b:8c:b2:36:b1:22:
18:73:84:9e:c9:ca:7a:ae:52:23:a7:b9:8b:93:02:be:fd:81:
ea:7d:28:b1:9a:a6:34:13:4b:ac:53:32:61:e2:a9:8d:e5:dd:
90:89:33:7b:7e:e4:29:0b:ae:31:18:e7:16:97:20:5c:9e:7f:
66:f8:03:81:3c:f8:ca:4f:70:e2:13:af:9c:7b:1a:97:7e:ca:
16:75:64:e5:f5:5e:dd:3c:5d:82:44:48:5e:49:27:e7:7a:71:
42:99:8f:6a:f1:b4:e3:5d:01:56:6f:ad:7a:20:c3:c4:5d:9d:
56:a6:a0:18:dd:d4:eb:b8:ec:16:1c:c0:bb:37:92:ce:c4:a1:
19:0f:59:92:9b:5b:70:d6:3b:0a:34:72:05:d3:be:78:ca:3d:
cf:13:80:72:15:2f:a0:c0:34:e7:90:04:06:64:11:7d:6c:a8:
a2:47:c8:16:98:3d:e1:bd:ba:de:e7:5d:33:c4:99:10:19:18:
a3:17:e3:86:f3:6e:64:59:d9:39:3c:8d:40:bb:a5:a1:da:49:
66:6e:92:3d:be:28:92:32:4c:35:be:c9:9f:fa:0b:e8:ac:b3:
78:a8:18:63:87:65:fe:e5:13:95:2a:30:97:b6:8c:1b:66:90:
fa:36:73:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:03 2025 by rpki-client on console.sobornost.net