Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/b851d2-717d-4344-84bb-c886fb6b3bcd/1/ZjdD3KktHTJ1RlykxrS_PX6Dfls.roa
File: ZjdD3KktHTJ1RlykxrS_PX6Dfls.roa (raw, json)
Hash identifier: rQU1YZETtvcj8idrb5JBb64s2ExLklRkDK8ZmIHJSuk=
Subject key identifier: 66:37:43:DC:A9:2D:1D:32:75:46:5C:A4:C6:B4:BF:3D:7E:83:7E:5B
Certificate issuer: /CN=9784cc7c1b33d27977fccdb34b3cc294a2a4088c
Certificate serial: 019423D748868870A39D04D04EABA82D322E
Authority key identifier: 97:84:CC:7C:1B:33:D2:79:77:FC:CD:B3:4B:3C:C2:94:A2:A4:08:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l4TMfBsz0nl3_M2zSzzClKKkCIw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/b851d2-717d-4344-84bb-c886fb6b3bcd/1/ZjdD3KktHTJ1RlykxrS_PX6Dfls.roa
Signing time: Wed 01 Jan 2025 21:48:18 +0000
ROA not before: Wed 01 Jan 2025 21:48:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215640
IP address blocks: 185.204.196.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:48:86:88:70:a3:9d:04:d0:4e:ab:a8:2d:32:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9784cc7c1b33d27977fccdb34b3cc294a2a4088c
Validity
Not Before: Jan 1 21:48:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=663743dca92d1d3275465ca4c6b4bf3d7e837e5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:b8:9e:ed:f3:78:e3:64:32:7c:d9:d3:cd:f6:
81:15:d4:c0:68:aa:d6:2b:12:15:f2:24:ea:bd:e3:
35:b1:d1:40:94:d1:83:a8:b4:09:64:47:a6:ba:d6:
25:6b:58:a2:95:23:80:89:61:73:83:86:86:a4:2e:
dc:36:47:4c:7f:76:5f:08:2d:8e:c9:98:22:a8:dd:
72:7b:b2:3b:4a:0b:f7:c4:61:63:b8:70:88:b8:8b:
2f:5a:e4:68:92:f7:32:ce:de:f9:68:b2:63:f9:0b:
d6:b6:c4:f1:f1:fb:f1:c7:e9:cb:69:4a:b1:a9:04:
20:de:9a:ef:23:7d:eb:a7:7f:b1:7b:f4:51:1b:f3:
b9:c0:4d:dd:f9:3a:b1:a7:3f:ac:b8:73:ec:14:22:
b1:6b:15:76:d5:b5:23:c8:67:84:cd:57:d5:2a:43:
d2:ad:6f:69:0f:88:81:95:32:d0:a6:d6:31:cc:ef:
ed:9c:b0:3f:9a:97:80:c8:69:1b:29:26:ab:5b:5b:
76:2c:47:3a:bf:b5:a9:e8:59:75:83:45:8a:d3:42:
54:4f:c8:f4:c5:c3:65:de:65:8e:c6:b0:2a:78:6a:
a8:2d:7f:e9:f0:ae:3f:5f:e7:2d:5e:58:15:88:2b:
81:49:b0:72:64:55:44:e3:b3:f2:90:e5:c6:dc:da:
a5:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:37:43:DC:A9:2D:1D:32:75:46:5C:A4:C6:B4:BF:3D:7E:83:7E:5B
X509v3 Authority Key Identifier:
keyid:97:84:CC:7C:1B:33:D2:79:77:FC:CD:B3:4B:3C:C2:94:A2:A4:08:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l4TMfBsz0nl3_M2zSzzClKKkCIw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/b851d2-717d-4344-84bb-c886fb6b3bcd/1/ZjdD3KktHTJ1RlykxrS_PX6Dfls.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/b851d2-717d-4344-84bb-c886fb6b3bcd/1/l4TMfBsz0nl3_M2zSzzClKKkCIw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.204.196.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:02:3c:f6:16:19:93:3d:1f:a8:e5:65:d6:51:7d:76:c2:18:
9e:17:a6:58:cc:f8:13:54:d8:90:85:cf:fb:ce:e2:10:ff:c1:
68:c1:95:7c:46:88:a4:20:b1:55:d4:2a:62:11:4c:83:ca:69:
88:35:30:c4:40:32:68:6e:9c:24:d2:a0:c8:8f:d8:3e:ae:62:
61:d1:b8:fe:a6:eb:62:14:5e:a0:f2:51:57:72:c8:4d:92:d8:
b9:cc:a2:2a:52:c7:87:40:32:00:36:fc:62:03:d3:6c:97:99:
05:74:f6:78:18:07:e0:be:5b:d2:b9:c6:fc:07:7d:47:a9:40:
bf:2c:d9:5d:a0:af:ca:9a:6b:6e:9c:9d:81:5e:0a:24:36:c7:
02:a9:f7:67:d8:b8:4e:d9:8c:e6:13:25:05:39:0a:03:39:0c:
99:ba:16:1f:c5:90:28:52:ed:fb:e2:d2:f7:82:7c:b5:30:0c:
8f:94:30:23:3c:b2:db:28:4c:86:c4:4f:78:c2:d4:a1:9b:da:
6b:c8:fd:e0:3a:cd:fd:86:58:8d:27:77:0b:64:c0:5f:35:65:
52:9c:c7:71:d6:54:bd:40:00:2e:39:8a:d7:86:f1:b7:aa:56:
e4:0b:38:6d:98:31:09:b5:51:12:77:d6:0a:a4:3b:1e:39:17:
ed:ad:7d:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:30 2025 by rpki-client on console.sobornost.net