Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/89ff3b-1263-4cdd-9cad-23df8dddf978/1/8Zjvv60lC8NGP14VoQ8RNeofQIM.roa
File: 8Zjvv60lC8NGP14VoQ8RNeofQIM.roa (raw, json)
Hash identifier: P7KtzcRE9odqg/BTLMYwDj7fh0a6LBnncSFvQDv5Bp0=
Subject key identifier: F1:98:EF:BF:AD:25:0B:C3:46:3F:5E:15:A1:0F:11:35:EA:1F:40:83
Certificate issuer: /CN=4f152900b0d323d36d94510ab0b01c93f4517c89
Certificate serial: 0194228E27FFEA6EAD7493FACABA562085AA
Authority key identifier: 4F:15:29:00:B0:D3:23:D3:6D:94:51:0A:B0:B0:1C:93:F4:51:7C:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxUpALDTI9NtlFEKsLAck_RRfIk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/89ff3b-1263-4cdd-9cad-23df8dddf978/1/8Zjvv60lC8NGP14VoQ8RNeofQIM.roa
Signing time: Wed 01 Jan 2025 15:48:49 +0000
ROA not before: Wed 01 Jan 2025 15:48:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 203736
IP address blocks: 185.102.32.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8e:27:ff:ea:6e:ad:74:93:fa:ca:ba:56:20:85:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f152900b0d323d36d94510ab0b01c93f4517c89
Validity
Not Before: Jan 1 15:48:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f198efbfad250bc3463f5e15a10f1135ea1f4083
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:62:43:8b:1d:b3:ed:3e:57:2b:aa:10:80:31:
30:d7:45:92:95:6c:02:58:5b:1d:39:87:ea:07:50:
2d:dd:79:84:99:26:53:cc:84:61:86:69:7d:a0:8d:
56:26:c6:52:07:a8:34:0a:ed:e6:df:f7:7e:ce:b0:
37:2b:e0:d0:7d:eb:c3:e2:fa:1b:09:d8:2c:5b:ca:
45:e8:f5:14:df:c6:f5:7b:9d:dc:dc:2e:fd:66:3d:
33:53:12:89:06:59:65:fe:9d:c0:2e:db:9f:9c:9b:
15:9f:0b:e7:88:33:d3:ac:af:dd:86:2b:4a:20:dc:
08:06:36:d2:92:98:63:b6:a8:6f:be:3f:d0:48:e4:
c0:26:0d:d4:c5:c1:97:61:a6:44:f4:b1:78:65:ad:
50:fc:f7:56:b2:1d:50:6a:1c:60:ff:d0:7e:24:62:
19:4d:ca:0f:fa:53:f1:d1:de:c0:83:ed:78:ca:df:
51:58:cb:15:8c:eb:0a:16:57:36:7d:84:fe:a9:8c:
7b:a0:f5:8d:1f:ab:d3:a3:db:d5:05:c7:9e:45:0d:
4d:c6:73:10:c7:c1:99:c4:88:4b:7b:64:5d:4d:71:
51:34:44:9f:89:67:ea:c5:3d:89:dc:57:21:d0:74:
20:a2:ed:78:0c:3c:96:cf:cf:40:70:6a:11:d7:28:
34:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:98:EF:BF:AD:25:0B:C3:46:3F:5E:15:A1:0F:11:35:EA:1F:40:83
X509v3 Authority Key Identifier:
keyid:4F:15:29:00:B0:D3:23:D3:6D:94:51:0A:B0:B0:1C:93:F4:51:7C:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxUpALDTI9NtlFEKsLAck_RRfIk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/89ff3b-1263-4cdd-9cad-23df8dddf978/1/8Zjvv60lC8NGP14VoQ8RNeofQIM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/89ff3b-1263-4cdd-9cad-23df8dddf978/1/TxUpALDTI9NtlFEKsLAck_RRfIk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.102.32.0/22
Signature Algorithm: sha256WithRSAEncryption
17:6e:45:38:47:d0:88:1c:f2:48:b1:bf:3e:14:20:c2:47:f7:
f5:67:54:95:65:58:29:0f:ba:47:9c:a6:f1:e7:49:97:87:31:
24:64:ae:2c:d9:02:a0:99:08:e1:54:5c:36:9d:c5:f0:18:2b:
3b:f3:ef:16:ce:28:b3:24:16:23:1c:50:13:de:16:45:c0:e1:
26:24:6c:bc:f1:48:75:ce:93:1e:89:0f:7e:95:fd:22:e4:8f:
6a:7f:e5:e8:c7:cd:c6:cf:4c:78:bd:a2:dd:2d:7a:20:6d:20:
81:f5:3b:8f:a3:51:d1:99:c9:1f:82:9a:8b:87:de:14:d4:03:
d4:50:c1:73:e7:53:20:a3:5f:31:af:39:05:d2:d4:1d:6a:8e:
29:76:8a:bd:0b:51:7d:4e:3b:f9:2b:74:33:50:fc:78:88:a5:
49:62:56:43:a1:68:f7:61:c2:8e:3f:fb:44:3a:cf:57:f1:7f:
af:24:52:0f:b7:a2:ac:99:9d:47:de:20:1d:15:59:5a:5d:7b:
9e:35:57:fe:39:40:bf:c3:df:b3:fb:ad:f5:ff:bd:1b:fd:d4:
17:b3:70:49:5e:0e:eb:cf:21:ab:28:6f:94:47:b9:b4:1b:87:
53:37:80:70:73:24:8d:e9:1c:49:98:be:7b:fe:ea:65:28:60:
e9:bd:80:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:09 2025 by rpki-client on console.sobornost.net