Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/3d6107-5bce-4780-ae10-22d371d6cdee/1/1ISrUMvXtY8idtkbmSmcNCBmXOs.roa
File: 1ISrUMvXtY8idtkbmSmcNCBmXOs.roa (raw, json)
Hash identifier: JdzcjRC1qPASLJAyKXCJZ2jvTuTxM21yeidKZ9A5IsQ=
Subject key identifier: D4:84:AB:50:CB:D7:B5:8F:22:76:D9:1B:99:29:9C:34:20:66:5C:EB
Certificate issuer: /CN=1b6b943b9a3dff696801516be8471bc4588566e8
Certificate serial: 0194221F8707C88830F373C1395494C6AD9C
Authority key identifier: 1B:6B:94:3B:9A:3D:FF:69:68:01:51:6B:E8:47:1B:C4:58:85:66:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G2uUO5o9_2loAVFr6EcbxFiFZug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/3d6107-5bce-4780-ae10-22d371d6cdee/1/1ISrUMvXtY8idtkbmSmcNCBmXOs.roa
Signing time: Wed 01 Jan 2025 13:47:59 +0000
ROA not before: Wed 01 Jan 2025 13:47:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 49114
IP address blocks: 185.220.81.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:87:07:c8:88:30:f3:73:c1:39:54:94:c6:ad:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b6b943b9a3dff696801516be8471bc4588566e8
Validity
Not Before: Jan 1 13:47:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d484ab50cbd7b58f2276d91b99299c3420665ceb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:22:5b:db:af:9f:e4:3e:cd:50:3d:bb:57:05:
e2:99:0c:7b:ff:52:fc:d3:a3:ff:e9:5a:16:0f:1c:
32:fb:82:f5:2d:53:de:44:88:ca:4b:5a:c9:46:08:
84:e8:80:49:31:9f:68:db:db:e1:11:e9:53:38:d3:
4c:71:84:5f:e2:df:89:5c:09:55:df:d8:e4:7d:78:
92:45:de:35:f9:a6:e7:4d:27:13:b8:30:c2:89:d0:
c4:cd:bb:bb:ac:b4:c4:59:ae:f3:5e:ce:da:5e:73:
fe:61:f1:34:4a:cc:79:b8:83:50:c8:eb:75:97:b1:
44:bd:8e:8c:35:d5:ab:fd:b1:90:86:73:f3:f9:48:
e4:03:df:41:84:96:77:17:38:bd:7e:ad:c4:ce:13:
d2:32:43:9c:59:8f:69:df:5d:87:5b:91:e5:05:b9:
89:23:33:b4:c2:ff:a5:41:7f:0f:09:84:40:bd:d8:
ff:ac:8f:73:58:54:88:71:57:90:1a:79:45:96:53:
80:7e:68:03:06:08:b6:06:fb:9d:c2:94:9e:2f:af:
02:7e:27:51:4b:11:9b:5c:bd:e2:2f:b6:2f:95:ad:
0d:45:be:a3:69:86:0a:53:24:23:8a:5e:20:61:b8:
42:be:c8:25:dd:0b:09:34:08:db:c8:45:cf:19:b0:
5a:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:84:AB:50:CB:D7:B5:8F:22:76:D9:1B:99:29:9C:34:20:66:5C:EB
X509v3 Authority Key Identifier:
keyid:1B:6B:94:3B:9A:3D:FF:69:68:01:51:6B:E8:47:1B:C4:58:85:66:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G2uUO5o9_2loAVFr6EcbxFiFZug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/3d6107-5bce-4780-ae10-22d371d6cdee/1/1ISrUMvXtY8idtkbmSmcNCBmXOs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/3d6107-5bce-4780-ae10-22d371d6cdee/1/G2uUO5o9_2loAVFr6EcbxFiFZug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.220.81.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:fb:59:75:90:d1:78:a3:a5:b2:72:9a:03:b7:67:11:f1:33:
ca:15:2c:26:10:88:7f:d4:dc:e1:9d:1f:4d:82:d4:ed:88:c2:
1a:0c:83:5c:b1:22:aa:bf:4e:3b:4d:e8:d0:6a:cd:65:7c:de:
54:ac:95:af:e8:57:3d:65:0b:59:24:57:85:41:d7:94:53:c6:
3c:ed:cc:99:53:af:e2:e0:5b:a9:d3:be:0d:de:a3:3d:da:95:
08:a4:0f:02:e6:ae:7c:10:25:5b:f9:7e:51:93:fa:ce:0b:a0:
38:f3:ef:7d:30:39:15:da:f1:a4:c6:69:f0:69:57:07:fa:70:
f0:8f:98:df:cf:a2:8d:c3:6f:04:d8:49:44:ff:b2:1e:a0:e5:
29:92:60:73:ce:78:2d:67:b0:a0:cd:07:05:d4:e0:24:84:8d:
36:ed:9e:71:a6:be:68:51:8b:2d:76:82:5b:fa:db:5d:56:a8:
21:44:8c:3c:66:8e:61:d3:28:21:7a:5a:4f:f1:e3:d0:27:ec:
b2:18:0a:5e:8e:3b:d3:3a:0a:25:5d:9a:ec:58:f6:f4:7a:08:
f2:fe:7c:08:8b:7a:11:08:dc:d2:85:85:01:9d:9f:17:2b:1e:
7c:01:ed:2c:c8:ac:0a:14:b6:e5:11:d5:d0:54:0b:66:66:1a:
c8:40:ca:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:24 2025 by rpki-client on console.sobornost.net