Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/f5c96a-b70f-419e-826f-15398ba5b0e7/1/FFFlJ1ntZuYfKnoxbFz369bHbCY.roa
File: FFFlJ1ntZuYfKnoxbFz369bHbCY.roa (raw, json)
Hash identifier: OzHlJ3L/Uq51e4UIV4xO7NIltGOZNXtcjik1Syg/eD0=
Subject key identifier: 14:51:65:27:59:ED:66:E6:1F:2A:7A:31:6C:5C:F7:EB:D6:C7:6C:26
Certificate issuer: /CN=5c68a279769d193df3f9781d2ba4c1d9277b4fd6
Certificate serial: 0195FB96F91D8FDFB96C1E4B335EC462F953
Authority key identifier: 5C:68:A2:79:76:9D:19:3D:F3:F9:78:1D:2B:A4:C1:D9:27:7B:4F:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XGiieXadGT3z-XgdK6TB2Sd7T9Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/f5c96a-b70f-419e-826f-15398ba5b0e7/1/FFFlJ1ntZuYfKnoxbFz369bHbCY.roa
Signing time: Thu 03 Apr 2025 12:18:50 +0000
ROA not before: Thu 03 Apr 2025 12:18:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206487
IP address blocks: 185.176.180.0/23 maxlen: 23
185.176.183.0/24 maxlen: 24
2a0b:3780::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:fb:96:f9:1d:8f:df:b9:6c:1e:4b:33:5e:c4:62:f9:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c68a279769d193df3f9781d2ba4c1d9277b4fd6
Validity
Not Before: Apr 3 12:18:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1451652759ed66e61f2a7a316c5cf7ebd6c76c26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:29:26:8e:f5:31:b9:56:04:90:e9:6d:aa:1e:
29:91:84:14:b7:76:88:6e:ca:08:09:4d:ee:96:6a:
d2:4e:3d:a1:19:fb:1c:07:78:20:df:6e:2b:6f:a3:
40:d4:b9:7f:f0:f9:18:2e:61:90:85:90:ae:19:5d:
f3:7c:f8:30:a1:2b:ff:19:f4:07:a1:5e:29:09:66:
7b:8e:0b:2b:14:87:47:26:d6:eb:31:8d:84:e5:af:
d5:30:cf:87:a0:b0:fb:ab:81:c9:17:d0:83:6b:fb:
b6:da:99:e7:d7:68:75:9d:53:ab:2e:3e:61:eb:d1:
6e:2a:a3:1a:75:3d:63:73:f2:c4:f1:ce:e9:58:a6:
fa:55:c1:c9:21:1f:fd:4d:13:16:23:d2:66:ab:a7:
67:b5:2c:91:6a:b3:c0:16:38:fc:48:f7:4a:cc:3e:
ef:05:78:7f:e2:e0:92:c3:3e:d7:58:ec:33:0b:d3:
88:51:51:d2:e1:4f:cd:9d:13:8f:1c:3c:e2:fe:9b:
6f:38:8d:4c:d1:2f:f2:b7:d2:49:5a:5e:20:3a:d4:
29:c3:c5:07:af:4c:43:d1:0a:9c:f3:df:cc:1e:b4:
7f:04:da:71:58:3e:6f:38:20:7a:61:1d:e5:00:61:
b8:2d:ca:69:19:b2:f5:94:cb:57:83:7f:4b:50:c1:
10:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:51:65:27:59:ED:66:E6:1F:2A:7A:31:6C:5C:F7:EB:D6:C7:6C:26
X509v3 Authority Key Identifier:
keyid:5C:68:A2:79:76:9D:19:3D:F3:F9:78:1D:2B:A4:C1:D9:27:7B:4F:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XGiieXadGT3z-XgdK6TB2Sd7T9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f5c96a-b70f-419e-826f-15398ba5b0e7/1/FFFlJ1ntZuYfKnoxbFz369bHbCY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f5c96a-b70f-419e-826f-15398ba5b0e7/1/XGiieXadGT3z-XgdK6TB2Sd7T9Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.176.180.0/23
185.176.183.0/24
IPv6:
2a0b:3780::/32
Signature Algorithm: sha256WithRSAEncryption
42:39:30:69:3a:0c:e9:e7:bf:40:83:16:66:6e:06:e8:e8:32:
0e:4d:be:5b:2a:d3:b0:19:34:24:50:f9:c2:af:94:8e:02:f1:
bd:5a:15:74:a8:7f:06:98:7b:7d:6b:b5:bc:76:bc:4a:30:27:
64:57:98:71:04:39:e1:b8:25:b7:19:f5:66:e3:ae:a1:2f:84:
a6:5f:4b:8f:4d:1b:46:ef:d1:bd:7c:57:ed:99:87:0a:64:47:
5d:e2:e4:ba:94:ff:61:74:38:d0:2b:c4:78:86:a6:53:77:21:
9c:a8:25:bb:13:9a:57:61:fd:2c:17:0d:fa:d7:b9:3f:b7:d9:
20:c5:d7:2d:bb:5e:65:cf:b2:6e:1f:59:82:c0:47:e6:93:b1:
fd:36:e0:67:a2:6a:82:bc:41:1a:51:77:49:68:10:8b:a1:ab:
e3:5c:56:1e:87:14:41:40:9b:09:1c:a1:88:fb:34:42:ad:ad:
27:ef:57:ca:f6:68:94:78:cf:8a:11:c8:18:6d:90:a5:66:91:
7d:99:61:c5:99:75:d6:4f:8b:95:a5:f7:88:23:49:f8:6e:9a:
74:9a:0c:a0:1d:ff:50:7a:88:52:e1:01:bf:9e:8b:62:f9:d8:
94:a2:b3:4e:42:07:56:66:d4:01:1f:a2:12:18:bd:78:6b:cc:
52:db:d1:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:11 2025 by rpki-client on console.sobornost.net