Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/de0d16-2f24-4c53-84b8-5d97b19fa595/1/5MOhgExuZKrwcKUMPmkmqSgYYV8.roa
File: 5MOhgExuZKrwcKUMPmkmqSgYYV8.roa (raw, json)
Hash identifier: BeNjV3R3WIa+A/yjnQFp45yGVELTOEe4wkt7MNfzXzc=
Subject key identifier: E4:C3:A1:80:4C:6E:64:AA:F0:70:A5:0C:3E:69:26:A9:28:18:61:5F
Certificate issuer: /CN=f94f2f2e21bc98d0c61b2c14c0ee019d331eae58
Certificate serial: 01942821427727ED3154E7382102D458D401
Authority key identifier: F9:4F:2F:2E:21:BC:98:D0:C6:1B:2C:14:C0:EE:01:9D:33:1E:AE:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-U8vLiG8mNDGGywUwO4BnTMerlg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/de0d16-2f24-4c53-84b8-5d97b19fa595/1/5MOhgExuZKrwcKUMPmkmqSgYYV8.roa
Signing time: Thu 02 Jan 2025 17:47:35 +0000
ROA not before: Thu 02 Jan 2025 17:47:35 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 202882
IP address blocks: 185.151.220.0/22 maxlen: 22
2a07:7bc0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:21:42:77:27:ed:31:54:e7:38:21:02:d4:58:d4:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f94f2f2e21bc98d0c61b2c14c0ee019d331eae58
Validity
Not Before: Jan 2 17:47:35 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e4c3a1804c6e64aaf070a50c3e6926a92818615f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:7e:28:f0:a7:f2:99:45:32:78:88:ff:80:64:
78:45:ea:aa:c8:fa:b2:20:89:01:ca:c3:90:67:65:
75:38:02:e7:4f:5e:45:2f:6d:7d:cc:96:01:1b:28:
35:11:2f:ca:4a:fe:c1:f3:e5:4b:6a:aa:56:90:b4:
69:be:80:75:32:1c:3e:97:09:c4:61:53:ef:c0:56:
ce:2d:7f:cf:cb:8f:4e:a4:8e:62:1c:65:5c:5c:d8:
93:c3:f0:6b:27:c8:3d:3d:d6:12:ec:de:04:e7:06:
7d:de:fa:f9:52:37:e6:c5:00:a3:31:dc:a4:7e:10:
38:7f:ce:54:82:f4:27:9a:c0:f8:b2:33:36:08:75:
cd:02:52:4a:a4:89:19:90:9c:f5:58:7d:57:28:63:
dc:50:0d:d6:78:92:91:b0:f4:e1:6d:25:f0:0c:0e:
80:17:f7:66:56:c8:e7:2d:51:0e:04:f8:e7:a5:15:
68:08:27:90:8c:11:b6:7d:1c:1b:91:ae:9c:30:c9:
0e:34:ea:98:46:2f:05:fd:53:e1:76:91:42:ca:3e:
3e:fe:ea:9d:d3:0a:5c:77:1e:24:fa:c3:8e:d5:96:
95:4e:ec:0c:19:1d:34:d3:e0:35:97:14:7c:c7:dd:
e4:17:e1:45:1d:94:f0:72:76:9a:c3:7d:49:c3:0f:
ae:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:C3:A1:80:4C:6E:64:AA:F0:70:A5:0C:3E:69:26:A9:28:18:61:5F
X509v3 Authority Key Identifier:
keyid:F9:4F:2F:2E:21:BC:98:D0:C6:1B:2C:14:C0:EE:01:9D:33:1E:AE:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-U8vLiG8mNDGGywUwO4BnTMerlg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/de0d16-2f24-4c53-84b8-5d97b19fa595/1/5MOhgExuZKrwcKUMPmkmqSgYYV8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/de0d16-2f24-4c53-84b8-5d97b19fa595/1/1-U8vLiG8mNDGGywUwO4BnTMerlg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.151.220.0/22
IPv6:
2a07:7bc0::/29
Signature Algorithm: sha256WithRSAEncryption
05:a9:82:04:15:e3:5d:d7:61:54:5c:96:26:ab:16:11:ec:fd:
bc:7a:d4:97:6d:e6:6f:80:7c:e3:86:25:ad:f5:f0:c8:25:8d:
06:77:eb:f5:fb:90:85:4b:5b:3f:c6:07:34:37:83:dc:05:3e:
11:d1:78:1a:cd:9a:21:2f:31:c8:df:c4:a6:ed:66:7b:14:c5:
f1:ef:7a:ff:f9:b0:f4:2e:6b:fb:d8:70:60:b8:73:8b:9f:37:
25:ec:f2:f4:4f:f9:bd:87:a4:f4:88:d0:3b:8d:05:9b:94:dd:
e9:92:6f:4d:75:7b:c7:d5:8d:05:95:60:a3:3f:3b:c1:d8:da:
22:ee:2c:5e:4b:a1:28:f2:e9:f1:b4:cb:6e:58:f7:01:de:8f:
2c:ed:5f:4d:e6:23:de:19:26:61:6f:d7:7c:17:b6:5f:1b:7d:
9a:d2:9b:65:a4:6c:0d:d6:41:2a:c2:d4:e2:84:e4:9c:ed:e4:
0e:d7:89:64:5e:41:ea:c8:f0:6b:de:5d:4e:61:8e:58:8d:41:
bf:2c:41:21:5d:63:78:89:78:cf:c7:54:05:14:68:fb:84:ff:
ec:b6:8f:18:55:93:48:a2:9a:cb:5d:cb:e4:1b:2e:04:98:40:
2a:94:be:69:be:64:14:fb:df:cf:ac:31:f1:99:05:52:12:3b:
df:87:57:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:10 2025 by rpki-client on console.sobornost.net