Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/521788-e4bd-4889-a597-12d0b632e5e8/1/ifWZmIX4SXkuGkJP6QgKSkmuMBc.roa
File: ifWZmIX4SXkuGkJP6QgKSkmuMBc.roa (raw, json)
Hash identifier: nU4OGwo7QVYE2TFfLmXken2fHAzhkJ4DtS2BG5Z6bzw=
Subject key identifier: 89:F5:99:98:85:F8:49:79:2E:1A:42:4F:E9:08:0A:4A:49:AE:30:17
Certificate issuer: /CN=05bd0faeede73ad3cfc4778b8238c608e40e9841
Certificate serial: 019426D946637E82A6A28E3E352D1B633A33
Authority key identifier: 05:BD:0F:AE:ED:E7:3A:D3:CF:C4:77:8B:82:38:C6:08:E4:0E:98:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Bb0Pru3nOtPPxHeLgjjGCOQOmEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/521788-e4bd-4889-a597-12d0b632e5e8/1/ifWZmIX4SXkuGkJP6QgKSkmuMBc.roa
Signing time: Thu 02 Jan 2025 11:49:21 +0000
ROA not before: Thu 02 Jan 2025 11:49:21 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 202730
IP address blocks: 185.142.112.0/24 maxlen: 24
2a07:2d00::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:46:63:7e:82:a6:a2:8e:3e:35:2d:1b:63:3a:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05bd0faeede73ad3cfc4778b8238c608e40e9841
Validity
Not Before: Jan 2 11:49:21 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=89f5999885f849792e1a424fe9080a4a49ae3017
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:27:a5:2d:c9:47:28:32:71:df:3d:7a:14:a0:
4a:b3:49:cb:40:d6:bf:f2:90:1e:5b:a7:0d:5c:98:
05:71:bb:29:f8:d9:3d:f6:33:ec:64:63:ff:33:f2:
41:00:e6:fb:c1:ab:95:6d:99:97:5c:99:2c:20:e9:
ac:d1:64:1d:5d:bd:98:fe:37:31:91:1e:72:80:0b:
1b:07:3f:da:73:85:54:bf:df:70:b2:10:f5:7e:f1:
1e:c5:ee:f2:39:46:50:a5:81:2e:20:74:5d:f0:53:
d7:74:aa:93:ca:b0:ac:d1:b7:f0:fb:8c:2c:a1:b4:
92:a7:e2:7d:e1:29:80:9e:e8:04:93:c5:02:6d:57:
d9:f8:f3:76:f2:3e:ab:ea:6b:c7:9c:44:27:f2:81:
29:9d:6a:1a:bf:fd:7a:a5:98:e5:f2:04:b5:84:f9:
f7:8c:c7:ec:87:d7:b2:33:da:b1:61:87:5d:35:7c:
c6:62:40:d4:24:61:87:d7:3c:ca:60:d7:0e:de:82:
36:cf:b1:ac:2c:df:49:28:0d:3a:f5:88:09:82:56:
2c:0a:ab:35:20:d6:05:3c:b8:be:56:57:91:66:02:
da:3b:66:6c:39:46:29:d3:4d:cf:cc:3c:65:85:1a:
72:f8:f5:56:11:33:0e:2f:d5:d6:59:80:70:ad:cd:
ed:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:F5:99:98:85:F8:49:79:2E:1A:42:4F:E9:08:0A:4A:49:AE:30:17
X509v3 Authority Key Identifier:
keyid:05:BD:0F:AE:ED:E7:3A:D3:CF:C4:77:8B:82:38:C6:08:E4:0E:98:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Bb0Pru3nOtPPxHeLgjjGCOQOmEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/521788-e4bd-4889-a597-12d0b632e5e8/1/ifWZmIX4SXkuGkJP6QgKSkmuMBc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/521788-e4bd-4889-a597-12d0b632e5e8/1/Bb0Pru3nOtPPxHeLgjjGCOQOmEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.142.112.0/24
IPv6:
2a07:2d00::/48
Signature Algorithm: sha256WithRSAEncryption
a4:04:db:18:5c:e3:f9:89:7e:79:94:38:c5:4a:57:54:b4:c8:
af:24:d5:88:08:3e:92:e2:b4:7a:c8:23:74:b4:2c:fb:92:49:
d3:3c:78:98:5f:9d:0d:d8:77:d3:41:ee:00:cf:af:85:28:c8:
d2:6b:69:d7:1a:2a:ff:e0:f4:38:4d:34:89:e3:28:30:78:ad:
9e:1b:3e:f3:60:35:ea:cf:84:21:40:a7:a1:49:6f:76:41:6c:
9e:29:ae:c0:5c:4a:27:dd:2a:80:a4:93:b5:60:78:b7:88:cd:
8e:2b:9b:c7:a9:38:b2:d6:a3:02:24:3e:d4:55:2b:ac:29:24:
e0:c8:e7:b6:46:7c:23:85:60:2f:78:fd:f7:a6:6b:3b:4d:4b:
cd:a2:f4:ea:83:fe:63:a6:f5:58:54:31:0d:53:5c:be:6a:0f:
fa:aa:bb:e7:73:0c:22:0c:ee:8b:21:18:85:99:c1:ca:b9:2d:
62:46:2d:f3:08:f1:87:c5:14:d4:4f:19:81:8f:aa:2b:84:af:
c2:0e:fb:41:ad:08:13:d5:46:f8:72:ba:f2:e1:98:b9:cd:a2:
ab:90:cf:05:fb:5a:cb:7a:3c:1f:9b:c0:79:b9:82:78:24:64:
48:30:fa:6f:99:12:cd:68:e5:2a:cc:6f:ee:21:8f:49:e6:7c:
5d:79:48:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:46 2025 by rpki-client on console.sobornost.net