Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/c6a4fe-a760-4c4c-81b0-53ab88c5f2c7/1/lY53o84LdGt89WCfG1dInzKCBTM.roa
File: lY53o84LdGt89WCfG1dInzKCBTM.roa (raw, json)
Hash identifier: OkgF65tADtGF9+zI9HBDyAvniVavxR/WTFyWVbZ2jXg=
Subject key identifier: 95:8E:77:A3:CE:0B:74:6B:7C:F5:60:9F:1B:57:48:9F:32:82:05:33
Certificate issuer: /CN=f7f4902d240b25d7eb77f4f02e24f233f44a9a13
Certificate serial: 0194228DCFB2BE9EE6D57E3D48EF128FBBAF
Authority key identifier: F7:F4:90:2D:24:0B:25:D7:EB:77:F4:F0:2E:24:F2:33:F4:4A:9A:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9_SQLSQLJdfrd_TwLiTyM_RKmhM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/c6a4fe-a760-4c4c-81b0-53ab88c5f2c7/1/lY53o84LdGt89WCfG1dInzKCBTM.roa
Signing time: Wed 01 Jan 2025 15:48:26 +0000
ROA not before: Wed 01 Jan 2025 15:48:26 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 201985
IP address blocks: 185.57.16.0/24 maxlen: 24
185.57.17.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:cf:b2:be:9e:e6:d5:7e:3d:48:ef:12:8f:bb:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7f4902d240b25d7eb77f4f02e24f233f44a9a13
Validity
Not Before: Jan 1 15:48:26 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=958e77a3ce0b746b7cf5609f1b57489f32820533
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:be:f2:20:9f:c4:6d:ec:80:ef:55:7d:79:bb:
7b:4e:5b:e2:79:7a:de:69:95:d9:aa:dc:b6:f7:30:
c4:91:6e:33:18:7b:82:44:17:e1:57:e6:8c:30:24:
fc:2a:98:11:ad:1f:f2:88:4f:75:f5:8d:3c:e1:a3:
3a:89:b3:71:80:9b:68:38:fa:33:6f:ff:bc:e8:0a:
04:2e:56:c3:21:31:94:73:b0:02:6c:74:66:22:e7:
e5:ac:e4:ca:74:01:dc:18:aa:f0:c0:2c:eb:60:d1:
9c:10:89:1d:47:92:bd:7b:5c:53:a7:f7:a2:e8:7b:
75:59:c1:dd:d6:cc:3d:7d:bb:a3:f3:2a:39:55:2a:
1d:f5:14:48:70:62:cb:99:4d:37:09:be:0e:56:1f:
c5:91:52:c5:c2:9f:2c:55:46:7d:b7:7d:d0:26:1e:
01:ab:52:ce:d6:33:72:12:29:cb:46:f0:c3:ef:18:
4e:da:ea:87:eb:fa:9c:97:59:59:0f:43:cd:25:4e:
81:5e:a2:28:78:d0:fe:ab:5a:ab:a7:32:c6:86:b8:
f6:dc:c9:3a:9a:a7:c4:74:35:32:a5:d9:68:a6:5d:
fa:62:09:0a:cf:70:d3:03:b6:7f:f4:7c:21:ec:3b:
8a:cf:e2:6c:bb:cf:92:91:57:34:8b:95:11:29:33:
3c:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:8E:77:A3:CE:0B:74:6B:7C:F5:60:9F:1B:57:48:9F:32:82:05:33
X509v3 Authority Key Identifier:
keyid:F7:F4:90:2D:24:0B:25:D7:EB:77:F4:F0:2E:24:F2:33:F4:4A:9A:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9_SQLSQLJdfrd_TwLiTyM_RKmhM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/c6a4fe-a760-4c4c-81b0-53ab88c5f2c7/1/lY53o84LdGt89WCfG1dInzKCBTM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/c6a4fe-a760-4c4c-81b0-53ab88c5f2c7/1/9_SQLSQLJdfrd_TwLiTyM_RKmhM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.57.16.0/23
Signature Algorithm: sha256WithRSAEncryption
31:64:ce:c0:e9:3a:af:f6:ac:00:78:ac:eb:be:0e:6d:9d:d4:
1f:90:36:fe:ae:b6:1d:36:5f:28:d7:e9:87:87:17:42:6d:ff:
b4:b7:93:e9:dd:5c:f6:3e:3f:0a:e2:92:5c:07:40:be:cf:29:
af:16:2c:80:87:69:1f:51:2a:9f:d3:46:1b:ca:c7:64:ba:3f:
84:62:42:46:b2:32:42:4d:b3:b2:ba:7e:e0:49:56:7c:29:dd:
f8:b4:87:f5:3c:8e:c7:30:da:8f:19:20:cf:90:27:99:6f:7c:
4f:86:81:cc:a0:f9:51:f2:de:52:bc:8f:66:2f:11:88:bf:05:
a2:e4:6a:98:60:16:95:a6:a4:34:f8:27:bd:67:d7:81:8d:ce:
d7:47:27:44:17:78:cb:aa:57:ed:67:87:e1:ba:87:fd:8c:b2:
94:8f:17:f9:d1:d6:5d:6f:b4:e8:a5:45:97:b6:84:55:b6:f8:
90:a1:0b:4e:b5:1a:81:07:f6:2b:12:1c:99:16:85:ee:a1:aa:
7a:57:fa:8d:54:6d:6d:9e:ef:98:4d:e8:0e:48:d0:7d:bf:dd:
d0:f8:f3:22:90:82:84:c0:ac:70:3e:e4:02:78:1f:44:37:62:
ac:55:07:13:a1:e6:e6:81:84:15:8a:45:4c:8d:b8:fe:fb:c8:
8d:15:ea:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:54 2025 by rpki-client on console.sobornost.net