Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/d6486a-8ff7-426f-8d86-098d04ce51b2/1/fjWZvuWv7215Y9jZ_8PhvGrfeFE.roa
File: fjWZvuWv7215Y9jZ_8PhvGrfeFE.roa (raw, json)
Hash identifier: Zzr5lFEnlLjQPPcdko+cAGPChUwigNEUz9VWeK+vkLU=
Subject key identifier: 7E:35:99:BE:E5:AF:EF:6D:79:63:D8:D9:FF:C3:E1:BC:6A:DF:78:51
Certificate issuer: /CN=fbfcd4515b493039216758de738e4f1ae8e3224c
Certificate serial: 019519573E86463BFA82E41A65C598E2E702
Authority key identifier: FB:FC:D4:51:5B:49:30:39:21:67:58:DE:73:8E:4F:1A:E8:E3:22:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-_zUUVtJMDkhZ1jec45PGujjIkw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/d6486a-8ff7-426f-8d86-098d04ce51b2/1/fjWZvuWv7215Y9jZ_8PhvGrfeFE.roa
Signing time: Tue 18 Feb 2025 13:55:02 +0000
ROA not before: Tue 18 Feb 2025 13:55:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211873
IP address blocks: 185.105.40.0/22 maxlen: 24
185.105.41.0/24 maxlen: 24
185.105.42.0/23 maxlen: 23
185.149.28.0/22 maxlen: 22
185.149.28.0/24 maxlen: 24
185.149.29.0/24 maxlen: 24
185.149.31.0/24 maxlen: 24
2a06:34c0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:19:57:3e:86:46:3b:fa:82:e4:1a:65:c5:98:e2:e7:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fbfcd4515b493039216758de738e4f1ae8e3224c
Validity
Not Before: Feb 18 13:55:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7e3599bee5afef6d7963d8d9ffc3e1bc6adf7851
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:b4:c5:e8:11:8a:12:ad:cc:0b:89:06:ef:50:
79:97:34:89:9a:d4:cf:71:53:4f:bc:53:5e:86:f2:
27:33:ef:c7:12:f3:fc:a6:95:1a:64:dc:dd:1e:6c:
dd:f8:e6:3a:4e:ed:bd:de:39:35:98:7b:df:4a:ad:
ef:cc:96:56:ff:c1:79:97:a8:a5:12:a7:39:73:44:
87:8f:71:c1:b5:00:58:7e:6a:c5:dd:47:c4:3e:e3:
ba:2a:8d:88:fb:3c:ba:24:38:b0:95:c3:5f:f8:2f:
69:c1:63:09:99:93:82:08:2e:11:84:4e:f6:73:7c:
6e:72:ad:dd:bc:87:61:2b:aa:e6:e2:e1:0a:a3:7c:
2d:44:fd:2c:2f:00:1b:c6:95:09:03:0c:70:97:ca:
8d:19:9c:77:7e:a6:63:0b:de:14:19:06:cb:52:47:
7c:36:d2:ee:d9:95:42:ef:40:50:66:38:ce:45:1c:
22:2f:0a:c5:fe:cc:79:a0:8a:3c:79:7e:14:be:df:
69:4d:6f:32:9f:19:5f:55:12:a8:00:16:0a:89:34:
ad:3f:d7:83:cf:1b:c1:23:1a:6b:3e:f9:a6:a8:90:
b4:dc:a1:b9:9a:25:20:c8:cd:e1:b6:3d:11:95:76:
0b:e4:63:e9:2d:2b:ba:f2:e3:99:76:ed:78:1d:5e:
ac:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:35:99:BE:E5:AF:EF:6D:79:63:D8:D9:FF:C3:E1:BC:6A:DF:78:51
X509v3 Authority Key Identifier:
keyid:FB:FC:D4:51:5B:49:30:39:21:67:58:DE:73:8E:4F:1A:E8:E3:22:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-_zUUVtJMDkhZ1jec45PGujjIkw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/d6486a-8ff7-426f-8d86-098d04ce51b2/1/fjWZvuWv7215Y9jZ_8PhvGrfeFE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/d6486a-8ff7-426f-8d86-098d04ce51b2/1/1-_zUUVtJMDkhZ1jec45PGujjIkw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.105.40.0/22
185.149.28.0/22
IPv6:
2a06:34c0::/29
Signature Algorithm: sha256WithRSAEncryption
aa:cb:30:e4:39:44:66:92:4d:b3:63:5a:52:a3:69:a2:fc:22:
d3:21:b8:aa:a5:8c:c2:16:6c:42:1a:ee:7a:39:63:34:38:af:
00:7a:77:fe:a7:d5:24:61:65:5b:71:1b:37:59:21:99:0e:3b:
6a:04:44:9a:c6:9e:ec:ea:9a:d3:2e:d2:18:32:1c:24:a3:c8:
3f:cc:61:a9:8c:67:98:a9:1c:63:0c:35:30:3a:dc:6c:37:d2:
fe:eb:d0:51:67:b4:e2:8d:fd:03:5b:9b:0e:37:c5:1a:a0:08:
fb:9b:4f:5e:14:b4:7f:ac:5c:85:7f:58:01:40:73:53:5d:f8:
1d:f2:b2:f3:ab:cf:ac:1f:ce:4a:e3:64:92:29:9b:e0:7a:0f:
43:16:7d:7e:b3:cd:5a:c0:fd:4f:4d:44:d2:a1:58:20:0a:78:
66:73:aa:2d:d5:40:c9:7f:42:62:7e:04:84:1a:95:af:b1:3a:
58:d0:da:bf:88:68:c9:47:2b:f8:95:65:e0:fc:59:02:e1:de:
db:1e:2c:e3:02:7e:81:5f:72:3b:3d:bb:05:53:d4:f9:cd:4b:
36:a2:81:76:df:86:81:11:24:c9:71:72:48:11:d1:a3:83:c0:
37:b9:05:8f:91:f2:65:15:32:1f:59:b0:2b:5d:fc:a4:24:12:
51:87:b6:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 8 04:50:10 2025 by rpki-client on console.sobornost.net