Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/63da8a-de6f-4b12-a864-e3dd52799bda/1/O7YDGlReH1x3D0s7Ygr1Vy16MbI.roa
File: O7YDGlReH1x3D0s7Ygr1Vy16MbI.roa (raw, json)
Hash identifier: WAs5UezYMvac542kW/ZhIkgbBXd8gscxgdqz/AR6xPE=
Subject key identifier: 3B:B6:03:1A:54:5E:1F:5C:77:0F:4B:3B:62:0A:F5:57:2D:7A:31:B2
Certificate issuer: /CN=0cefacb37441dd19183bd1cb57db5ee55477a7a7
Certificate serial: 019421B21D168438583C7A2DB382B73BEE6A
Authority key identifier: 0C:EF:AC:B3:74:41:DD:19:18:3B:D1:CB:57:DB:5E:E5:54:77:A7:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DO-ss3RB3RkYO9HLV9te5VR3p6c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/63da8a-de6f-4b12-a864-e3dd52799bda/1/O7YDGlReH1x3D0s7Ygr1Vy16MbI.roa
Signing time: Wed 01 Jan 2025 11:48:28 +0000
ROA not before: Wed 01 Jan 2025 11:48:28 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 200190
IP address blocks: 185.169.77.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b2:1d:16:84:38:58:3c:7a:2d:b3:82:b7:3b:ee:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0cefacb37441dd19183bd1cb57db5ee55477a7a7
Validity
Not Before: Jan 1 11:48:28 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3bb6031a545e1f5c770f4b3b620af5572d7a31b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:f2:1b:95:d2:1b:5f:db:19:c1:c0:85:9f:af:
c5:49:f0:7f:3d:5a:2b:a1:64:f1:20:23:a7:41:1d:
dc:72:dd:7b:50:42:2e:c4:33:85:cd:7c:d5:19:0a:
a5:73:21:c3:2f:7e:1e:e5:70:a6:33:51:d3:91:9c:
69:93:b4:00:4f:4c:c5:ab:c2:f6:07:50:24:f5:46:
e9:9f:1a:2e:7f:df:c7:4f:73:0a:d2:f5:24:b3:49:
03:68:7a:ca:d2:fe:78:56:79:68:7e:70:29:e3:a6:
74:61:eb:3f:30:a8:2e:88:ee:ce:92:ff:8c:0a:99:
34:7d:98:26:a7:d9:1f:67:5a:b6:3e:c7:c8:c6:63:
31:ab:2c:3e:f4:a4:5c:38:7c:73:d0:0b:e6:bd:b6:
14:f6:64:1d:d0:98:6c:13:99:da:35:72:69:fc:83:
fe:01:21:03:5a:44:de:96:e7:7f:53:0f:28:18:d8:
d8:15:49:d6:61:b7:af:03:4d:ad:21:46:ac:77:0c:
53:c3:27:05:f5:ed:ba:30:ad:42:cb:e2:0a:b8:9b:
fd:33:12:d9:97:a7:93:c9:0f:4e:70:0c:73:d2:d3:
6a:81:03:cd:17:d9:ab:88:e4:64:a4:43:41:d7:ce:
8d:58:e2:36:cb:fa:05:fd:9d:46:74:10:30:94:3c:
86:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:B6:03:1A:54:5E:1F:5C:77:0F:4B:3B:62:0A:F5:57:2D:7A:31:B2
X509v3 Authority Key Identifier:
keyid:0C:EF:AC:B3:74:41:DD:19:18:3B:D1:CB:57:DB:5E:E5:54:77:A7:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DO-ss3RB3RkYO9HLV9te5VR3p6c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/63da8a-de6f-4b12-a864-e3dd52799bda/1/O7YDGlReH1x3D0s7Ygr1Vy16MbI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/63da8a-de6f-4b12-a864-e3dd52799bda/1/DO-ss3RB3RkYO9HLV9te5VR3p6c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.169.77.0/24
Signature Algorithm: sha256WithRSAEncryption
95:e2:69:a6:76:8f:fa:6a:c3:8c:08:1a:71:71:ab:d6:bd:20:
1a:21:50:8b:c5:6d:1a:11:0e:20:d8:99:83:d1:c0:92:eb:6a:
4c:f7:26:a0:7a:70:1c:ed:16:0c:f4:c8:0a:55:35:27:27:a6:
ea:b4:3c:98:d4:e7:6e:40:7f:00:16:e1:ff:fd:ab:fe:49:47:
bb:15:ee:4d:57:64:5e:c9:fe:50:13:da:6c:03:7b:b7:d8:3a:
e5:68:c9:87:b5:30:68:4e:51:2f:3b:0d:85:6c:6b:ae:10:89:
fb:09:78:12:71:bd:40:12:60:3f:32:b4:e8:80:5a:02:b4:db:
ef:41:5b:9a:fb:f0:c5:3f:9e:8b:8b:99:4e:56:de:93:4e:8a:
be:31:0d:45:14:42:ef:79:3e:a3:dc:10:2e:27:25:0e:58:22:
28:d8:b1:5c:6f:63:66:6a:a2:ef:76:b0:39:3e:7c:70:0e:f8:
c2:f1:b4:23:1b:d8:35:29:63:14:a4:12:3f:cd:9e:d5:53:66:
1a:71:67:77:ac:54:d9:ac:9c:4c:26:1f:94:0b:7c:c7:0b:55:
52:66:71:81:91:dd:3c:5b:0f:c1:eb:53:04:25:bf:6b:7d:5f:
4e:ce:2d:be:31:12:11:07:3c:ae:36:28:8f:3b:2d:28:05:fc:
ef:40:d7:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:29 2025 by rpki-client on console.sobornost.net