Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/e45fa1-429d-4eaf-b278-9ad18ba1a3d9/1/qNGM6pCGS-402FlF5n22U9NiTF4.roa
File: qNGM6pCGS-402FlF5n22U9NiTF4.roa (raw, json)
Hash identifier: zNwmUdRzsfaiupAMcMKDejc+/QaW9x/P4JbzEtj3MCQ=
Subject key identifier: A8:D1:8C:EA:90:86:4B:EE:34:D8:59:45:E6:7D:B6:53:D3:62:4C:5E
Certificate issuer: /CN=6ebcb57e2d5e40630e193bd5ceb16f1ef18743a3
Certificate serial: 01941FFA6384B56E59651E3A4CC639845A32
Authority key identifier: 6E:BC:B5:7E:2D:5E:40:63:0E:19:3B:D5:CE:B1:6F:1E:F1:87:43:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bry1fi1eQGMOGTvVzrFvHvGHQ6M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/e45fa1-429d-4eaf-b278-9ad18ba1a3d9/1/qNGM6pCGS-402FlF5n22U9NiTF4.roa
Signing time: Wed 01 Jan 2025 03:48:10 +0000
ROA not before: Wed 01 Jan 2025 03:48:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 203609
IP address blocks: 185.129.152.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:63:84:b5:6e:59:65:1e:3a:4c:c6:39:84:5a:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ebcb57e2d5e40630e193bd5ceb16f1ef18743a3
Validity
Not Before: Jan 1 03:48:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a8d18cea90864bee34d85945e67db653d3624c5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:f7:fb:5f:a4:05:53:e7:32:ab:81:e8:8f:82:
b8:9f:ee:ff:4a:83:ed:94:93:1e:b1:25:06:cb:83:
11:a7:67:df:a8:e6:a9:98:bc:74:d3:6e:4d:c9:cd:
29:cd:af:cf:82:83:d7:d6:ef:ef:e0:da:bf:8b:4f:
77:99:d0:2c:cc:f3:49:80:67:59:2c:6d:52:9f:1b:
20:09:1f:3d:67:68:cd:d0:2c:84:6a:09:e3:1a:5e:
23:3b:02:27:18:04:8a:eb:ca:0f:d5:29:bb:6b:96:
b1:f2:65:12:0c:e6:c0:4d:bb:50:1b:6c:60:20:6c:
fc:57:9d:15:e7:6d:ae:3a:b7:06:1d:a5:18:b4:19:
32:20:d4:36:f6:05:bb:a6:e1:cd:3f:2e:ad:ed:60:
30:5c:cf:ec:ba:99:36:2b:80:28:b6:63:36:d7:4e:
22:bb:5b:fd:41:cf:4c:c2:8d:b4:33:6a:5d:6d:49:
17:3f:e2:49:53:e0:5e:1c:8a:39:53:fe:b6:14:4d:
35:51:8a:43:2c:2c:f7:d8:c8:25:33:6f:be:f3:13:
2f:4d:75:b2:72:30:1c:b0:99:0c:b5:a4:37:00:8f:
c5:73:66:81:74:78:b7:5f:20:6e:a3:ca:5d:01:8a:
8b:da:62:3f:7a:97:2e:01:19:da:f1:69:57:1f:80:
1c:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:D1:8C:EA:90:86:4B:EE:34:D8:59:45:E6:7D:B6:53:D3:62:4C:5E
X509v3 Authority Key Identifier:
keyid:6E:BC:B5:7E:2D:5E:40:63:0E:19:3B:D5:CE:B1:6F:1E:F1:87:43:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bry1fi1eQGMOGTvVzrFvHvGHQ6M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/e45fa1-429d-4eaf-b278-9ad18ba1a3d9/1/qNGM6pCGS-402FlF5n22U9NiTF4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/e45fa1-429d-4eaf-b278-9ad18ba1a3d9/1/bry1fi1eQGMOGTvVzrFvHvGHQ6M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.129.152.0/22
Signature Algorithm: sha256WithRSAEncryption
66:0d:9b:77:f8:f1:81:10:dc:a8:73:e2:2f:a9:49:4f:b5:e6:
b7:e7:49:fb:8d:51:86:c9:49:90:59:d8:10:2b:2b:a3:ba:dd:
6b:41:56:48:d2:db:f1:6b:68:df:89:b0:80:89:73:9d:d2:37:
b3:aa:54:72:5a:d0:0e:e9:89:d2:0f:36:25:91:88:b9:17:28:
c3:3c:a5:32:4a:31:73:e8:f5:2f:b4:8b:9c:23:e0:af:53:12:
c0:3a:13:fe:76:88:ae:c5:08:93:ae:1f:23:bc:cc:20:4e:40:
6a:c7:b1:27:59:08:da:85:d9:18:4b:89:52:31:2e:3c:0b:cd:
15:38:b3:93:10:f6:a2:0e:a6:ab:e2:b0:8b:88:8f:97:be:78:
c3:9e:0f:62:ad:43:40:68:81:8c:da:e5:bf:39:55:a9:88:1a:
96:f4:15:87:23:38:51:10:45:17:5d:7f:17:32:1b:76:be:a4:
f0:77:35:64:4f:4c:72:5d:8a:ad:d4:9d:d8:02:5b:3f:a0:ed:
c0:ff:f2:47:ef:bd:cb:4c:8e:e1:53:cb:80:22:59:a1:72:21:
6c:2b:a2:dd:90:f6:37:18:e7:aa:2d:60:b3:8f:46:27:ab:d9:
32:5f:2c:99:55:9c:45:53:31:2a:c0:12:b5:75:58:4c:9e:25:
21:4b:30:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:30 2025 by rpki-client on console.sobornost.net