Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/664eb1-f220-4804-8c5a-9278840c4970/1/7pJi6mSeC7Mrh9AG1jBKFX0rR-0.roa
File: 7pJi6mSeC7Mrh9AG1jBKFX0rR-0.roa (raw, json)
Hash identifier: b11wVnyFk1XxJZbXy67FWmoxGHyh6LyfdFAUoV7JdAI=
Subject key identifier: EE:92:62:EA:64:9E:0B:B3:2B:87:D0:06:D6:30:4A:15:7D:2B:47:ED
Certificate issuer: /CN=4432f61bbd3fd11d7facbb1543a751a65a3f64c3
Certificate serial: 019549A0F40124B9B8E64708987449D8CB63
Authority key identifier: 44:32:F6:1B:BD:3F:D1:1D:7F:AC:BB:15:43:A7:51:A6:5A:3F:64:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RDL2G70_0R1_rLsVQ6dRplo_ZMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/664eb1-f220-4804-8c5a-9278840c4970/1/7pJi6mSeC7Mrh9AG1jBKFX0rR-0.roa
Signing time: Thu 27 Feb 2025 22:57:19 +0000
ROA not before: Thu 27 Feb 2025 22:57:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 29468
IP address blocks: 185.61.236.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:49:a0:f4:01:24:b9:b8:e6:47:08:98:74:49:d8:cb:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4432f61bbd3fd11d7facbb1543a751a65a3f64c3
Validity
Not Before: Feb 27 22:57:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ee9262ea649e0bb32b87d006d6304a157d2b47ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:f2:2c:0b:a9:42:75:ea:15:90:22:b7:25:db:
e4:65:6b:9f:6d:28:36:64:8e:ec:6d:88:7b:2f:1b:
33:78:02:7c:48:41:e5:cf:f9:4a:88:9d:ca:fe:6e:
a5:02:b3:01:4b:4d:1b:26:c6:8e:20:2d:ee:f3:b1:
51:8d:e6:6f:37:83:3e:5a:d6:a7:f3:7c:d0:4d:e3:
70:1c:1d:b3:92:ff:f0:50:96:8d:dc:7a:8f:a7:89:
f0:68:ed:a6:e1:d9:58:ca:dc:3f:40:89:ec:bd:c8:
d2:14:19:8f:ca:e4:29:75:5b:e4:fe:10:93:eb:6a:
5c:5e:c5:eb:cd:a7:db:c2:a6:3c:c6:6b:0a:b3:56:
58:f5:74:ee:a9:72:09:23:43:3f:16:53:b4:c4:33:
cc:ed:07:53:e2:7b:eb:7c:26:80:2d:3c:9b:03:ee:
c1:ba:b6:ff:02:8e:4f:60:e4:16:cc:81:fd:1b:13:
14:a5:bd:3d:c5:8d:8b:29:77:85:f8:15:e5:70:41:
8d:4f:6a:c5:a9:ea:c6:cb:e8:6d:da:c8:7a:4e:6a:
59:e0:d1:5a:77:ec:38:61:7a:28:28:5c:b5:0a:c2:
e0:98:5d:4b:17:cd:7f:6f:15:57:ca:9d:de:a2:94:
9f:23:23:36:15:79:15:d1:78:93:0d:6c:3a:0f:6a:
1c:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:92:62:EA:64:9E:0B:B3:2B:87:D0:06:D6:30:4A:15:7D:2B:47:ED
X509v3 Authority Key Identifier:
keyid:44:32:F6:1B:BD:3F:D1:1D:7F:AC:BB:15:43:A7:51:A6:5A:3F:64:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RDL2G70_0R1_rLsVQ6dRplo_ZMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/664eb1-f220-4804-8c5a-9278840c4970/1/7pJi6mSeC7Mrh9AG1jBKFX0rR-0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/664eb1-f220-4804-8c5a-9278840c4970/1/RDL2G70_0R1_rLsVQ6dRplo_ZMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.61.236.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:54:ca:6f:a3:97:dc:44:58:40:30:81:b4:cb:f2:79:be:08:
2e:07:10:42:c5:8d:a8:e0:80:a2:40:85:6f:e2:d9:2f:fa:42:
df:16:60:fb:6f:91:4e:fd:77:f5:ca:12:1b:ff:6d:29:b7:08:
45:b8:6c:6b:f3:01:70:e9:af:53:9f:7c:1a:0e:5d:c5:a2:68:
95:0b:1b:7a:41:61:f8:24:fa:73:74:5a:47:16:20:51:82:54:
f7:c8:4c:5a:40:a6:50:e1:b2:f4:8d:c5:e4:5a:95:5a:e5:f8:
46:ec:09:7c:ba:4c:f9:98:5d:de:bf:90:2d:ad:3a:0c:02:46:
4e:8e:22:7d:81:b7:fd:66:bf:ac:4f:e9:c0:54:b8:d5:37:0e:
42:a1:5d:69:0d:69:a4:7d:8c:1e:b1:1c:3c:f1:d0:86:62:86:
66:41:d1:1c:00:9d:3d:17:e1:f5:dd:d5:f9:7f:ca:4f:a1:2b:
f0:a2:91:e9:10:52:ca:86:a4:48:1a:02:2f:3b:46:b7:fa:a2:
e7:fd:36:95:ef:65:01:9a:b2:ea:49:af:10:53:a5:c3:4e:2d:
76:e9:f9:5c:99:1e:19:9f:a6:e6:6f:24:61:9c:d1:14:ae:71:
33:b5:a7:11:86:ab:75:8b:5c:83:72:47:cd:8b:8b:4f:68:a6:
f5:28:28:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:29 2025 by rpki-client on console.sobornost.net