Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/005c9e-fe7c-469a-b6f0-9baa66ca1404/1/g0sPCB79WMlgxKBl78JsjxBs-fY.roa
File: g0sPCB79WMlgxKBl78JsjxBs-fY.roa (raw, json)
Hash identifier: X+EXtP8p8Q91QAPiVwkYVGvv2ZKJC7/ZwL2Di69yJ1o=
Subject key identifier: 83:4B:0F:08:1E:FD:58:C9:60:C4:A0:65:EF:C2:6C:8F:10:6C:F9:F6
Certificate issuer: /CN=ef4f78947341ce55888b7ebf3690143b0cbff3d6
Certificate serial: 019425FDE0B982C86ED626F2F2C2BFBC779C
Authority key identifier: EF:4F:78:94:73:41:CE:55:88:8B:7E:BF:36:90:14:3B:0C:BF:F3:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7094lHNBzlWIi36_NpAUOwy_89Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/005c9e-fe7c-469a-b6f0-9baa66ca1404/1/g0sPCB79WMlgxKBl78JsjxBs-fY.roa
Signing time: Thu 02 Jan 2025 07:49:42 +0000
ROA not before: Thu 02 Jan 2025 07:49:42 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 204773
IP address blocks: 185.66.75.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fd:e0:b9:82:c8:6e:d6:26:f2:f2:c2:bf:bc:77:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef4f78947341ce55888b7ebf3690143b0cbff3d6
Validity
Not Before: Jan 2 07:49:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=834b0f081efd58c960c4a065efc26c8f106cf9f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:71:e5:ae:88:f2:4b:21:1b:f3:fd:e4:5e:26:
d8:1b:0b:6c:00:78:0c:71:60:0b:15:ba:8d:3c:8e:
53:59:67:af:05:63:03:fe:cf:3f:8c:9f:37:a3:89:
a7:06:cc:69:bc:0b:6e:30:cf:da:d6:00:f2:66:fe:
5a:0a:84:96:ea:5a:af:83:de:65:ee:8f:56:bd:41:
6a:d2:9f:f9:ba:5a:56:0b:cb:0b:65:23:1d:a6:09:
0b:be:ec:49:67:87:1a:f4:f9:5c:21:f0:36:46:8b:
1f:9d:62:36:80:04:91:e7:66:a7:33:26:b2:66:c8:
da:a0:3a:d0:51:e0:59:71:b5:6b:71:8c:26:f1:9b:
43:9c:f0:4f:ee:03:7f:ce:2a:4c:4f:d9:8f:c1:a2:
b4:79:8b:74:ee:98:85:3d:a7:92:30:40:11:10:c7:
d9:b4:2d:0b:d1:70:30:e4:3c:56:a3:c5:e2:42:b7:
9a:01:ed:5f:58:14:2e:81:2f:cf:78:ff:99:57:fe:
5f:3f:7b:bb:0f:d3:cd:0c:54:d7:ca:55:51:93:77:
68:07:f3:7f:ed:a2:98:f8:93:ee:1a:97:aa:30:cc:
7c:0a:a3:e9:a0:07:db:2a:38:56:a9:cc:ec:c0:4a:
8f:fe:78:ac:86:89:d9:75:3b:d3:97:03:2e:94:ca:
cf:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:4B:0F:08:1E:FD:58:C9:60:C4:A0:65:EF:C2:6C:8F:10:6C:F9:F6
X509v3 Authority Key Identifier:
keyid:EF:4F:78:94:73:41:CE:55:88:8B:7E:BF:36:90:14:3B:0C:BF:F3:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7094lHNBzlWIi36_NpAUOwy_89Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/005c9e-fe7c-469a-b6f0-9baa66ca1404/1/g0sPCB79WMlgxKBl78JsjxBs-fY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/005c9e-fe7c-469a-b6f0-9baa66ca1404/1/7094lHNBzlWIi36_NpAUOwy_89Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.66.75.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:8f:9d:ca:a8:f9:5a:73:60:d9:5c:e6:a0:25:03:f3:e8:56:
92:7a:a6:5c:b8:c9:8a:d0:1b:69:e9:1f:34:c6:3d:4b:70:c6:
bc:c8:5a:9e:5d:a3:7b:1e:9e:56:56:9f:43:be:d8:86:e3:93:
4b:79:92:d6:ef:48:fd:c5:89:6f:fe:ee:87:56:2f:fd:38:24:
e6:9d:28:9d:25:94:d6:29:57:37:94:80:a2:4a:32:2a:93:e3:
8c:40:80:76:bb:69:19:00:1a:de:8a:6e:88:2c:c6:98:ab:af:
2f:f5:10:bb:11:0f:fe:bb:54:f5:69:f5:26:02:b2:1e:07:bc:
f0:22:c5:59:45:79:c9:dd:0f:04:cc:d3:94:9d:b3:85:ab:95:
65:7e:d9:7a:50:99:0e:53:1a:9b:5f:f4:1f:1f:29:ed:66:c4:
63:9d:e6:e3:0a:d1:cd:3e:d0:6a:f0:1d:99:dc:aa:ec:93:29:
de:c3:b3:19:e3:fa:c6:ae:f1:d8:9c:62:32:d3:49:82:d4:01:
af:67:76:83:89:29:80:23:30:b6:c5:7c:8b:2a:cd:d7:60:0f:
74:a1:2d:6e:be:d1:d3:b1:1e:36:f7:24:a0:33:38:2d:7a:f9:
88:65:42:ac:c6:52:18:da:36:5d:03:57:ba:94:f1:9f:d8:ef:
bd:8f:aa:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:01 2025 by rpki-client on console.sobornost.net