Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/1eb97a-83bd-4448-b09e-af64a57ac8d2/1/xrKbG2lJLOHs6NPBeftXhDf224g.roa
File: xrKbG2lJLOHs6NPBeftXhDf224g.roa (raw, json)
Hash identifier: HTfj5/noaRj4CcOjKLI4Ev9C1aqAbFFMy1QpqUl2n+M=
Subject key identifier: C6:B2:9B:1B:69:49:2C:E1:EC:E8:D3:C1:79:FB:57:84:37:F6:DB:88
Certificate issuer: /CN=d2628e069b5ed8b4559343b5b67f5ab4f92251fe
Certificate serial: 0195D41F359EC295D51CA25AAB52DDC4F546
Authority key identifier: D2:62:8E:06:9B:5E:D8:B4:55:93:43:B5:B6:7F:5A:B4:F9:22:51:FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0mKOBpte2LRVk0O1tn9atPkiUf4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/1eb97a-83bd-4448-b09e-af64a57ac8d2/1/xrKbG2lJLOHs6NPBeftXhDf224g.roa
Signing time: Wed 26 Mar 2025 20:22:49 +0000
ROA not before: Wed 26 Mar 2025 20:22:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 34985
IP address blocks: 185.183.164.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:d4:1f:35:9e:c2:95:d5:1c:a2:5a:ab:52:dd:c4:f5:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2628e069b5ed8b4559343b5b67f5ab4f92251fe
Validity
Not Before: Mar 26 20:22:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c6b29b1b69492ce1ece8d3c179fb578437f6db88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:96:03:19:90:fb:e6:a3:40:f5:35:dc:f6:ff:
71:06:c7:1f:08:ee:95:47:5d:02:ea:38:2b:f4:f9:
45:8b:e8:8d:f6:f2:3b:fe:c5:b8:ae:f1:1e:e7:e8:
81:07:96:94:cf:05:b5:99:d5:5e:5b:03:f5:f3:07:
89:21:34:ff:17:1f:6b:d6:5b:b1:18:3a:be:63:e7:
e3:9b:1f:ce:33:ab:b9:90:98:a1:30:05:98:e6:51:
fa:46:1a:b5:6f:6a:bf:21:5b:f3:65:fe:d8:44:1e:
c3:c5:9c:7e:82:cf:c2:0c:83:f5:a1:90:13:fc:8e:
f4:84:03:32:96:52:cd:3c:80:e6:4c:7e:00:78:37:
d7:9e:48:e5:c1:ba:17:ce:85:d0:e1:94:6e:a0:ce:
c3:dc:3f:c1:12:1b:bc:73:bd:bc:2d:9b:e7:51:9b:
a1:30:cd:45:8d:35:9f:57:a3:0e:73:a9:5d:a1:9b:
28:ca:56:94:c1:41:64:24:6e:3f:6f:bc:d0:5d:b6:
4d:d5:97:ed:5e:d0:ca:9b:a4:94:23:f3:93:10:2c:
b3:f5:87:58:58:89:a1:f9:f6:54:dc:88:80:67:3f:
1e:6f:1c:b8:b7:62:34:0c:c8:41:07:4a:dd:fa:24:
e2:7f:46:bc:9e:f1:8f:fd:48:72:92:df:11:66:b0:
c1:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:B2:9B:1B:69:49:2C:E1:EC:E8:D3:C1:79:FB:57:84:37:F6:DB:88
X509v3 Authority Key Identifier:
keyid:D2:62:8E:06:9B:5E:D8:B4:55:93:43:B5:B6:7F:5A:B4:F9:22:51:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0mKOBpte2LRVk0O1tn9atPkiUf4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/1eb97a-83bd-4448-b09e-af64a57ac8d2/1/xrKbG2lJLOHs6NPBeftXhDf224g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/1eb97a-83bd-4448-b09e-af64a57ac8d2/1/0mKOBpte2LRVk0O1tn9atPkiUf4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.183.164.0/22
Signature Algorithm: sha256WithRSAEncryption
b8:3b:cb:5a:30:95:cf:00:95:0e:9a:30:14:f5:a5:c8:38:aa:
72:5f:9b:ad:3c:7c:74:4d:cd:f9:ec:46:00:8c:2a:b3:56:e5:
21:92:04:e2:60:6c:af:2c:8f:48:d7:d1:a2:9a:35:9c:37:d4:
fd:74:83:6c:b8:9b:47:12:99:ca:3e:43:06:2a:3f:0b:ef:2d:
11:97:f3:4b:79:86:a8:7c:6f:07:3f:f0:43:a3:16:3e:33:0e:
55:b6:48:b9:ad:8e:4b:23:1c:ae:0f:da:88:da:d8:20:f3:23:
77:ac:ef:ee:0f:81:d9:e7:27:8a:20:26:4e:66:3a:31:39:8c:
ca:c2:48:1f:98:06:17:01:0c:0c:50:44:66:3d:c9:53:45:3c:
b0:84:c1:10:93:e2:a6:d5:f4:6e:d8:01:24:03:81:cd:f7:29:
61:22:18:b8:e6:d7:4e:06:c6:a7:a2:1d:92:0e:c4:a2:97:4c:
96:3b:0d:af:de:6e:76:7b:04:b2:34:f5:7a:da:81:fb:cb:2d:
cf:3f:cf:f4:60:43:57:06:c0:ba:06:4c:fd:33:0c:1d:76:56:
01:cd:67:50:b7:02:99:b2:0c:d9:fb:99:6a:9d:e8:69:9f:78:
21:37:34:cf:71:49:a0:1d:93:22:95:a7:ad:a8:8c:0f:ce:4c:
d3:52:6f:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:56 2025 by rpki-client on console.sobornost.net