Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/1b7968-ca4d-45f4-b671-2e7f78489cd3/1/aO3R8Yo3eBCEfuvERnCJCw4GHKw.roa
File: aO3R8Yo3eBCEfuvERnCJCw4GHKw.roa (raw, json)
Hash identifier: 0+s8Oxr+vc9N7zEky4ZV5zDnUpXVmpiBsxhTGsefbzg=
Subject key identifier: 68:ED:D1:F1:8A:37:78:10:84:7E:EB:C4:46:70:89:0B:0E:06:1C:AC
Certificate issuer: /CN=7f178faf6401e2f3716e31764569df731df58f22
Certificate serial: 019423D7143250897A428B48B9902566B602
Authority key identifier: 7F:17:8F:AF:64:01:E2:F3:71:6E:31:76:45:69:DF:73:1D:F5:8F:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fxePr2QB4vNxbjF2RWnfcx31jyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/1b7968-ca4d-45f4-b671-2e7f78489cd3/1/aO3R8Yo3eBCEfuvERnCJCw4GHKw.roa
Signing time: Wed 01 Jan 2025 21:48:05 +0000
ROA not before: Wed 01 Jan 2025 21:48:05 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206036
IP address blocks: 185.202.232.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:14:32:50:89:7a:42:8b:48:b9:90:25:66:b6:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f178faf6401e2f3716e31764569df731df58f22
Validity
Not Before: Jan 1 21:48:05 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=68edd1f18a377810847eebc44670890b0e061cac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:20:27:a9:b7:94:f6:2a:2b:a0:65:d7:79:be:
5d:ed:4c:fc:0c:90:4b:c7:29:34:23:14:3a:c8:48:
8e:08:b8:28:81:92:c9:dd:ac:0d:65:ca:4c:5b:98:
be:93:f8:50:50:24:21:99:b2:99:77:cb:3f:43:3e:
09:5d:dc:f8:de:98:89:1b:85:bb:d3:e0:42:de:d2:
1d:2a:d9:77:74:f3:91:ae:15:cb:b6:f6:23:4d:1e:
33:07:fd:92:c4:8b:cc:8a:3a:b1:b1:76:8f:30:a9:
e7:e3:4c:6e:f7:06:ae:9e:62:37:59:3a:70:69:d5:
6c:e7:8f:b0:7e:86:15:31:28:aa:35:23:d6:23:13:
c8:16:48:c1:92:47:d0:59:ab:ee:0c:eb:de:68:92:
d0:69:3a:22:4c:79:6e:9f:8b:18:0c:c2:03:1e:18:
f1:aa:61:50:1b:73:9d:41:44:77:c3:b2:24:6b:86:
bd:4c:fd:d2:46:39:2e:59:57:36:12:0f:97:ab:f8:
05:1b:75:39:9d:1f:16:44:eb:70:cd:ae:57:60:a3:
bd:b2:4b:dc:af:64:f5:82:98:6f:4b:64:7e:4f:18:
22:20:8c:2a:db:a6:a4:a2:69:b3:4a:a4:b2:db:52:
08:f5:40:a1:3d:2f:88:f6:28:0c:0b:10:96:cd:7c:
c3:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:ED:D1:F1:8A:37:78:10:84:7E:EB:C4:46:70:89:0B:0E:06:1C:AC
X509v3 Authority Key Identifier:
keyid:7F:17:8F:AF:64:01:E2:F3:71:6E:31:76:45:69:DF:73:1D:F5:8F:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fxePr2QB4vNxbjF2RWnfcx31jyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/1b7968-ca4d-45f4-b671-2e7f78489cd3/1/aO3R8Yo3eBCEfuvERnCJCw4GHKw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/1b7968-ca4d-45f4-b671-2e7f78489cd3/1/fxePr2QB4vNxbjF2RWnfcx31jyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.202.232.0/22
Signature Algorithm: sha256WithRSAEncryption
10:a1:3a:7b:70:06:45:43:63:c8:60:c2:00:43:ea:be:29:db:
27:7c:66:98:18:2b:c4:07:88:9b:66:f1:7a:83:57:8e:ec:36:
45:03:95:1b:de:90:26:e0:85:72:96:58:be:f7:94:24:53:02:
2d:58:54:0b:9c:10:3d:81:34:a0:99:91:8d:eb:71:87:49:3f:
4d:56:5a:0d:3f:13:85:f6:03:50:17:bd:37:5d:b5:6a:2b:ce:
c9:92:8b:c0:71:69:8f:4c:0f:ee:f7:e0:90:35:00:10:30:55:
ee:ca:e9:03:4f:50:6b:a1:5e:d2:ae:bb:72:92:67:ad:b0:9a:
91:94:b6:4d:e2:f7:da:07:a7:6a:f4:9e:64:77:4c:86:e1:e2:
93:55:4f:05:1e:01:04:e6:42:0e:06:b5:a7:f9:ef:5a:f6:f1:
82:17:d5:39:83:0e:32:e5:d8:54:73:53:1f:87:1c:a3:e9:c1:
c5:68:08:d6:f6:59:74:57:b4:cc:a9:30:b6:bd:ba:4d:10:c6:
29:d2:15:23:5c:b0:eb:ab:a4:0c:42:78:da:e7:d8:9d:46:fc:
43:0a:04:20:bc:2a:0c:d9:4b:94:56:99:87:1f:16:37:6a:25:
8b:fc:62:7d:ca:55:f1:eb:0f:9d:3e:4e:da:7a:79:6e:34:1d:
d5:93:ee:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:41 2025 by rpki-client on console.sobornost.net