Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/5b2d16-087f-488c-9ebb-e8a322846641/1/agomHzSEGLU5uAKAS4YLGwlj-Q4.roa
File: agomHzSEGLU5uAKAS4YLGwlj-Q4.roa (raw, json)
Hash identifier: 7ISU2WJyj8nXTFjL/d0M7asR7w4tkrVLJaIrTwedHgs=
Subject key identifier: 6A:0A:26:1F:34:84:18:B5:39:B8:02:80:4B:86:0B:1B:09:63:F9:0E
Certificate issuer: /CN=370ea1b05cbd4e5c0926787c79533ee29d94be96
Certificate serial: 019426D92C324E6AE328F3BE3CDF44B31E7D
Authority key identifier: 37:0E:A1:B0:5C:BD:4E:5C:09:26:78:7C:79:53:3E:E2:9D:94:BE:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nw6hsFy9TlwJJnh8eVM-4p2UvpY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/5b2d16-087f-488c-9ebb-e8a322846641/1/agomHzSEGLU5uAKAS4YLGwlj-Q4.roa
Signing time: Thu 02 Jan 2025 11:49:14 +0000
ROA not before: Thu 02 Jan 2025 11:49:14 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 202664
IP address blocks: 185.158.16.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:2c:32:4e:6a:e3:28:f3:be:3c:df:44:b3:1e:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=370ea1b05cbd4e5c0926787c79533ee29d94be96
Validity
Not Before: Jan 2 11:49:14 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6a0a261f348418b539b802804b860b1b0963f90e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:38:30:b3:f1:3d:94:d2:0b:90:19:2d:4d:b0:
26:8d:a7:23:55:71:21:4c:d9:a6:a0:e0:c7:d4:0a:
12:23:88:be:bf:6f:a5:f6:ff:4b:4a:bf:c8:3b:14:
54:87:e9:a5:8a:f4:4e:7e:5f:9e:a5:1f:e0:e1:2b:
cb:e5:1a:d9:6d:25:26:f4:d0:7d:83:15:a8:3b:ef:
16:74:0c:fe:84:a0:f8:05:a2:ea:f5:4f:b4:87:7e:
50:9b:8c:72:37:57:13:50:0f:b2:99:b0:db:90:fe:
13:8e:a0:d6:c1:ad:1b:fd:b8:66:c4:24:da:b3:b3:
6d:8d:47:61:77:df:8a:2a:30:9e:b3:75:ce:43:d7:
0b:49:25:92:65:fa:de:fe:f7:63:9d:50:fa:ac:a8:
ba:e3:79:22:00:0b:0e:75:68:e6:2d:e6:af:f1:3e:
de:a2:88:ff:be:79:8a:ec:b0:e7:50:b5:17:1b:95:
09:72:f4:22:c0:af:93:04:74:00:f9:2f:0a:ff:32:
10:09:9a:37:75:66:3d:0e:f8:f9:d0:73:50:4a:bb:
4f:c0:67:6f:18:d3:88:86:5e:03:ce:7d:a9:3f:bc:
d2:81:a0:90:a6:8c:3b:5d:32:f5:c3:38:1d:9f:95:
42:05:df:6e:28:40:63:2d:50:33:85:33:51:64:31:
04:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:0A:26:1F:34:84:18:B5:39:B8:02:80:4B:86:0B:1B:09:63:F9:0E
X509v3 Authority Key Identifier:
keyid:37:0E:A1:B0:5C:BD:4E:5C:09:26:78:7C:79:53:3E:E2:9D:94:BE:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nw6hsFy9TlwJJnh8eVM-4p2UvpY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/5b2d16-087f-488c-9ebb-e8a322846641/1/agomHzSEGLU5uAKAS4YLGwlj-Q4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/5b2d16-087f-488c-9ebb-e8a322846641/1/Nw6hsFy9TlwJJnh8eVM-4p2UvpY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.158.16.0/22
Signature Algorithm: sha256WithRSAEncryption
01:7c:c5:f2:ab:21:fc:97:7e:05:c5:75:1b:22:cd:97:a3:65:
93:69:9c:50:7d:f0:96:e0:24:0a:fa:a9:f8:dc:00:aa:93:b2:
6e:b7:95:b1:2d:60:a3:e0:ac:eb:9e:72:88:95:08:ec:3b:96:
9d:bb:7c:5f:44:c7:5e:e8:0b:ae:bc:8f:d5:08:37:5b:80:f4:
6a:7a:ea:e5:6e:24:c5:82:ee:0d:46:96:f5:b7:16:d3:8b:d7:
e3:d7:58:56:b2:ec:90:46:b9:0b:56:1a:e4:09:1a:29:23:f3:
d7:f4:a5:3d:2e:70:4f:51:be:64:bc:7b:9d:89:9c:d0:15:9f:
fe:85:53:29:fe:8f:5c:2d:e2:d3:ab:6c:95:50:e4:c8:28:fe:
65:e5:04:d2:85:19:e8:43:a0:d8:9c:ad:4f:0c:db:39:a1:46:
bb:ff:c9:f7:9e:c4:5c:7d:bb:15:95:31:d1:f2:a6:87:4d:26:
59:f2:2a:1b:0e:5b:ee:6a:5b:f7:3f:1d:c4:4c:d2:f4:a9:83:
a0:a8:26:57:be:99:d5:c5:ef:f5:b6:d2:3f:e0:49:37:db:dd:
be:50:b4:ff:96:ce:9b:75:47:d7:e6:c3:5f:61:39:96:cb:09:
ac:53:b3:07:83:7c:9e:cd:bd:52:0a:60:99:83:e3:9c:75:9f:
2e:8e:c3:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:47 2025 by rpki-client on console.sobornost.net