Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/nXJVBDoTghhlgcnafBRSHmZouZE.roa
File: nXJVBDoTghhlgcnafBRSHmZouZE.roa (raw, json)
Hash identifier: xXzsE/ERNc12Y9tGy7/dqjCiaS8wDYYBGzdTk2QGemM=
Subject key identifier: 9D:72:55:04:3A:13:82:18:65:81:C9:DA:7C:14:52:1E:66:68:B9:91
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 0194221F69836A61AED85E01AE8ACF4273F7
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/nXJVBDoTghhlgcnafBRSHmZouZE.roa
Signing time: Wed 01 Jan 2025 13:47:51 +0000
ROA not before: Wed 01 Jan 2025 13:47:51 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 185.81.28.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:69:83:6a:61:ae:d8:5e:01:ae:8a:cf:42:73:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: Jan 1 13:47:51 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9d7255043a1382186581c9da7c14521e6668b991
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:8f:13:77:05:c4:c7:0c:39:e7:82:90:09:5c:
f4:50:f3:16:81:a1:b5:f3:fd:b9:9f:02:ca:37:10:
fe:fb:db:e0:76:92:d7:56:0d:3c:c5:34:10:20:17:
91:4d:84:a3:24:4b:dd:4e:35:a2:c5:8c:88:87:c4:
88:0b:d9:a7:da:9b:44:8c:09:97:93:09:e1:a0:98:
cb:92:61:f7:24:a8:ad:8a:a4:f3:04:db:93:05:f6:
a6:48:1c:46:c7:79:5c:3a:2d:93:50:dd:41:64:24:
13:a7:c8:e8:63:13:3f:63:c6:1f:7c:79:50:1e:45:
0f:86:15:57:e6:0c:f2:86:6f:d6:fc:38:fd:82:8c:
4d:07:ed:f5:60:b4:ca:9f:f4:f3:da:bd:77:8a:89:
13:9b:69:bb:a4:c5:ec:48:c6:1b:fd:ea:28:77:a4:
ea:be:32:ae:dd:1c:c2:10:ae:01:34:7e:d8:86:d5:
fb:32:04:16:15:aa:2a:15:5e:2f:ed:88:8e:ff:05:
b0:eb:93:86:55:36:13:0f:23:ce:da:69:00:8e:5f:
a5:bf:4b:aa:59:e6:ce:9e:b8:d1:8e:75:1b:ae:0f:
4e:d9:7b:e1:ce:12:14:fa:c7:8c:68:57:e6:9b:f3:
97:f0:90:86:a7:55:11:c7:32:48:2f:da:bf:7d:99:
d0:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:72:55:04:3A:13:82:18:65:81:C9:DA:7C:14:52:1E:66:68:B9:91
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/nXJVBDoTghhlgcnafBRSHmZouZE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.81.28.0/22
Signature Algorithm: sha256WithRSAEncryption
06:e4:34:ea:3e:10:8c:49:48:f6:13:6a:fd:f0:54:f4:ee:87:
a1:68:86:67:58:9a:e6:c9:23:52:57:b0:63:0d:e6:cd:68:a2:
92:b4:3e:3e:40:3f:74:f0:d6:76:df:90:00:6b:68:0a:d6:38:
16:63:b7:e0:ce:64:79:c3:1d:40:63:2d:08:2f:e1:ca:36:8e:
f3:4f:0e:07:41:a2:85:ef:e7:b0:67:70:ad:36:54:35:b9:7a:
3d:91:20:99:31:cb:fc:1a:8f:d9:68:65:5a:23:d2:07:ef:66:
ec:0d:6e:8f:97:88:21:a8:9c:a4:fe:ca:6c:52:13:fc:b5:ea:
e1:c9:b3:e3:ea:13:bb:ec:b9:71:f7:d3:55:b4:94:d5:23:30:
69:d8:b4:7e:12:e3:0a:06:a4:e3:fc:3a:11:7a:10:c3:10:cc:
c5:17:19:7c:3d:30:64:53:cb:ca:2e:6c:b8:f2:c8:5d:f0:15:
54:af:e4:e6:37:56:46:c5:da:45:ad:78:d2:8a:dd:ad:77:fa:
51:82:0e:7a:50:8d:19:7f:c8:06:98:4e:da:cc:c6:41:48:20:
5d:ca:ef:ff:2d:dc:ef:75:10:ce:40:91:6c:6c:53:8e:b6:15:
36:76:50:54:b9:32:2f:93:b8:58:9a:1d:f2:27:7b:5c:15:2a:
ff:9b:64:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 23 16:20:34 2025 by rpki-client on console.sobornost.net