Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/27c6a1-1c94-4a49-8e3d-9fd503970ff0/1/e2krXZzkR-AkHScvd476IUHzrz0.roa
File: e2krXZzkR-AkHScvd476IUHzrz0.roa (raw, json)
Hash identifier: KJC7yZeLdAZIJXLO5En/1DBnqhI+LO45sglWIneobpg=
Subject key identifier: 7B:69:2B:5D:9C:E4:47:E0:24:1D:27:2F:77:8E:FA:21:41:F3:AF:3D
Certificate issuer: /CN=ad466369f3927da0c89fb5f4b3ea9e324f928a84
Certificate serial: 019422FC3890118F18FFF9DE3826B0502526
Authority key identifier: AD:46:63:69:F3:92:7D:A0:C8:9F:B5:F4:B3:EA:9E:32:4F:92:8A:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rUZjafOSfaDIn7X0s-qeMk-SioQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/27c6a1-1c94-4a49-8e3d-9fd503970ff0/1/e2krXZzkR-AkHScvd476IUHzrz0.roa
Signing time: Wed 01 Jan 2025 17:49:02 +0000
ROA not before: Wed 01 Jan 2025 17:49:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 35525
IP address blocks: 185.164.0.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fc:38:90:11:8f:18:ff:f9:de:38:26:b0:50:25:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad466369f3927da0c89fb5f4b3ea9e324f928a84
Validity
Not Before: Jan 1 17:49:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7b692b5d9ce447e0241d272f778efa2141f3af3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:41:8f:53:29:4e:a6:0c:b7:5a:0d:12:2a:44:
2e:4d:90:50:f5:91:fd:ea:85:c0:64:b8:20:a8:8a:
b3:e1:3e:56:8b:90:31:3e:1c:74:32:3e:80:69:78:
67:4d:8d:ef:91:20:e1:93:45:89:e5:bc:b2:f3:7a:
70:24:e2:b2:6e:f5:98:06:11:a4:e9:c3:e0:ee:41:
7a:d1:dc:a6:e4:b0:55:ff:a0:6a:2c:c6:c3:76:d3:
6b:64:76:69:72:77:33:a2:a9:1c:88:b2:b7:23:df:
ea:9f:62:0f:05:45:9b:0a:f5:f0:8f:0e:af:4a:69:
95:60:a8:a7:ea:fe:0c:45:37:3a:79:80:f3:49:42:
36:03:40:bb:6c:63:d3:ec:fc:0f:b0:4c:bc:87:9f:
b1:df:c6:4f:99:4e:00:02:54:c2:f9:78:27:1d:49:
8b:60:93:f4:e7:2c:3e:85:ea:c4:45:7f:3e:06:41:
3c:5c:c1:34:7a:54:2a:71:a1:1e:e0:95:fa:b9:e0:
39:29:79:1d:bc:63:43:63:74:c3:d7:51:b8:4b:b4:
42:5a:67:47:92:21:c9:62:91:00:b6:08:aa:2a:d0:
de:33:e3:cf:97:50:a6:53:11:7d:59:f4:cb:f6:6b:
e7:de:d0:de:32:ce:65:20:9e:ed:b8:34:8f:cc:49:
24:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:69:2B:5D:9C:E4:47:E0:24:1D:27:2F:77:8E:FA:21:41:F3:AF:3D
X509v3 Authority Key Identifier:
keyid:AD:46:63:69:F3:92:7D:A0:C8:9F:B5:F4:B3:EA:9E:32:4F:92:8A:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rUZjafOSfaDIn7X0s-qeMk-SioQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/27c6a1-1c94-4a49-8e3d-9fd503970ff0/1/e2krXZzkR-AkHScvd476IUHzrz0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/27c6a1-1c94-4a49-8e3d-9fd503970ff0/1/rUZjafOSfaDIn7X0s-qeMk-SioQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.164.0.0/22
Signature Algorithm: sha256WithRSAEncryption
28:f5:a2:38:9d:ca:38:ef:17:cd:d6:a9:27:c4:2c:8c:34:19:
04:5f:ba:cf:ba:28:5d:8f:de:a5:f7:b6:b2:b2:07:65:69:9b:
bd:c6:11:28:a8:be:5b:29:95:c4:de:ef:a5:47:ee:61:1d:6d:
6b:0b:08:b9:b0:e5:a1:8c:3f:d7:f7:a7:37:a2:3b:e1:e1:64:
42:32:79:62:ea:e2:05:59:41:3e:b9:ed:fb:7b:37:66:bc:fa:
03:08:37:f5:65:c2:65:77:c7:cf:8e:98:61:76:af:4e:51:d1:
7a:6f:e4:57:bc:1f:5c:e5:3b:cf:fb:78:8e:39:06:43:37:6e:
75:82:98:0f:1c:3a:47:cc:65:87:2c:6f:ff:24:50:01:74:fb:
48:e6:0e:d3:f1:8a:06:75:00:de:47:79:8d:85:12:fa:af:51:
fd:34:e2:2e:60:9c:fc:67:b9:61:11:ff:b6:3a:34:9e:ec:86:
52:ed:8d:f4:10:1f:ec:44:c1:41:e9:3c:63:39:e5:39:84:aa:
97:ba:66:03:63:28:fb:f1:dc:80:3d:c4:71:4a:bb:ba:6d:a7:
99:b7:57:3c:b2:49:2e:62:f0:39:19:69:f1:40:f8:45:dc:51:
4e:a5:9a:88:5d:31:32:a4:b8:b1:19:bd:e1:13:18:26:01:0f:
94:5a:d7:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:29 2025 by rpki-client on console.sobornost.net