Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/rf7jWc7ttmZWX3mJWpgkLpvcgqs.roa
File: rf7jWc7ttmZWX3mJWpgkLpvcgqs.roa (raw, json)
Hash identifier: YZQ7aq3dLHw4G1byXvwZsPXvgsmcNqlGGiJCIat2I7w=
Subject key identifier: AD:FE:E3:59:CE:ED:B6:66:56:5F:79:89:5A:98:24:2E:9B:DC:82:AB
Certificate issuer: /CN=8e1c11658d2041eaf2502fe5408ed493bbd4f318
Certificate serial: 0194221F4BBD24CEEDF7C0298D8142CF27A4
Authority key identifier: 8E:1C:11:65:8D:20:41:EA:F2:50:2F:E5:40:8E:D4:93:BB:D4:F3:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jhwRZY0gQeryUC_lQI7Uk7vU8xg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/rf7jWc7ttmZWX3mJWpgkLpvcgqs.roa
Signing time: Wed 01 Jan 2025 13:47:43 +0000
ROA not before: Wed 01 Jan 2025 13:47:43 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 51088
IP address blocks: 45.85.191.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:4b:bd:24:ce:ed:f7:c0:29:8d:81:42:cf:27:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e1c11658d2041eaf2502fe5408ed493bbd4f318
Validity
Not Before: Jan 1 13:47:43 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=adfee359ceedb666565f79895a98242e9bdc82ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:b1:9f:69:2c:06:7c:7b:55:5c:f1:4f:87:a8:
9a:04:ea:73:e0:0b:cb:32:8e:db:da:7e:c3:b4:d9:
5a:d1:1f:89:12:10:39:ca:7d:e1:9f:14:7e:c9:02:
81:c3:42:f4:2c:8f:d5:c6:72:17:e3:26:33:cf:a8:
ac:dc:b5:68:13:06:73:19:36:c8:94:42:a6:a8:a0:
7b:01:24:e9:30:c5:7c:43:14:ff:98:66:83:b9:90:
e2:9a:2e:04:ae:bf:da:c8:c8:07:67:58:42:58:d3:
31:06:bf:1a:3a:de:d3:fd:5a:d3:9d:43:51:c0:1e:
f6:e8:68:62:50:91:a0:0a:15:a0:10:76:76:ce:14:
d7:69:cf:ef:9e:14:eb:b5:49:67:4a:7c:c9:a0:66:
de:2b:eb:d2:0b:a2:d8:5a:ae:f2:d6:37:8d:6e:41:
a4:54:8a:0e:01:09:05:f6:2e:5f:0d:ae:70:af:ac:
31:e8:85:1b:d9:75:54:cb:a2:fd:89:ba:a1:5a:51:
1e:63:2d:dc:a9:dc:26:a1:56:ea:fc:f0:44:52:b0:
1e:7d:f1:aa:1d:14:e5:d2:ce:c8:9e:6b:f8:3a:a8:
7f:a5:73:06:32:7f:f4:f0:8f:b3:55:b9:be:85:bd:
a5:ed:82:b5:bd:ed:97:a4:3c:7d:cf:04:4e:14:47:
3e:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:FE:E3:59:CE:ED:B6:66:56:5F:79:89:5A:98:24:2E:9B:DC:82:AB
X509v3 Authority Key Identifier:
keyid:8E:1C:11:65:8D:20:41:EA:F2:50:2F:E5:40:8E:D4:93:BB:D4:F3:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jhwRZY0gQeryUC_lQI7Uk7vU8xg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/rf7jWc7ttmZWX3mJWpgkLpvcgqs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/jhwRZY0gQeryUC_lQI7Uk7vU8xg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.85.191.0/24
Signature Algorithm: sha256WithRSAEncryption
49:c7:e3:6d:93:10:cd:d4:57:18:90:2e:7a:9a:b1:7d:39:1c:
aa:dc:18:5a:0d:9f:6a:c5:4f:c8:ad:b7:9d:8e:e2:99:31:8e:
4e:83:c6:c9:48:7c:0b:d1:97:2c:d6:30:05:bb:bb:16:c2:6a:
04:6f:e8:75:35:af:70:43:7a:97:5a:a2:10:52:ca:d1:01:d0:
b2:1b:bf:50:19:85:60:16:29:1d:4c:93:d3:93:69:70:8f:eb:
fb:f7:07:41:7c:b2:ea:13:a2:df:6a:d1:d8:d2:a8:d5:fe:d8:
54:e7:61:66:72:ba:89:7b:51:06:ae:36:e7:76:5c:1d:25:b7:
07:67:70:dd:ca:47:cc:49:78:dc:62:50:49:88:67:64:a7:4b:
3e:4c:cd:19:38:d7:28:c1:85:26:16:8d:e3:a0:33:15:84:f7:
31:9d:94:d0:32:1d:34:ca:c7:0b:fc:41:c0:b8:c0:53:c1:3d:
33:55:2d:be:ce:cd:1c:e8:7d:65:f4:76:a7:ec:b0:78:9c:c6:
ce:0e:dc:a7:5a:58:52:8a:60:a2:45:0b:92:f2:42:9b:cb:46:
46:0b:b5:08:7a:46:96:3d:69:11:e7:b4:b0:2e:43:02:1d:a5:
a3:73:4b:e4:ee:d2:63:af:e0:d8:30:54:ed:16:a2:85:a6:4d:
3f:56:5d:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:34 2025 by rpki-client on console.sobornost.net