Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/0ba7e2-63a2-4c41-86b5-a370f4ba2d2b/1/SA-FzbdtGCCG9QKC4S4YHJSWsmI.roa
File: SA-FzbdtGCCG9QKC4S4YHJSWsmI.roa (raw, json)
Hash identifier: PGidG7Ka16kE9y3JRE1oncEZXH6tKTIKybnjJfvB2js=
Subject key identifier: 48:0F:85:CD:B7:6D:18:20:86:F5:02:82:E1:2E:18:1C:94:96:B2:62
Certificate issuer: /CN=6ecb3fb3bea8cc8e36e3da7d9c47049bfc6ffb14
Certificate serial: 019424B3AA71DA39D4D1788D378CDC38F158
Authority key identifier: 6E:CB:3F:B3:BE:A8:CC:8E:36:E3:DA:7D:9C:47:04:9B:FC:6F:FB:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bss_s76ozI4249p9nEcEm_xv-xQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/0ba7e2-63a2-4c41-86b5-a370f4ba2d2b/1/SA-FzbdtGCCG9QKC4S4YHJSWsmI.roa
Signing time: Thu 02 Jan 2025 01:49:01 +0000
ROA not before: Thu 02 Jan 2025 01:49:01 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 201559
IP address blocks: 185.70.216.0/22 maxlen: 32
2a05:2c00::/30 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:aa:71:da:39:d4:d1:78:8d:37:8c:dc:38:f1:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ecb3fb3bea8cc8e36e3da7d9c47049bfc6ffb14
Validity
Not Before: Jan 2 01:49:01 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=480f85cdb76d182086f50282e12e181c9496b262
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:fe:21:0c:9c:e6:b8:3a:6f:cb:91:3b:b1:04:
46:be:bc:65:99:8d:38:75:28:6e:21:1e:d0:8d:a1:
9b:97:ca:d7:9a:37:dd:77:89:8d:85:29:28:a9:a9:
8b:0c:52:94:af:fd:7b:d3:a0:d2:60:2e:a3:b3:1f:
07:0d:65:70:31:83:c1:c8:7d:32:24:a1:8a:c6:e5:
08:92:1b:bd:f3:be:a9:d8:a6:40:2c:82:16:a8:35:
95:e5:d8:14:1b:05:d6:86:bb:5b:63:9b:5f:17:52:
bf:cb:44:f7:cd:b4:8a:cc:70:c8:f6:54:b5:67:13:
2c:dc:29:a1:d5:63:5c:1a:2f:30:8b:1b:49:d5:83:
0a:1b:52:b0:4f:79:0f:5d:9b:44:67:9e:79:f5:da:
9d:49:6d:f3:c5:3e:0e:81:1f:dc:96:5a:d6:1f:f2:
1b:89:73:e0:3a:e3:f5:61:37:f5:ea:64:53:12:e5:
8a:10:3d:6e:ba:20:b7:7c:d1:08:f2:c8:73:d1:fa:
ca:22:5e:25:94:2d:a7:31:c1:83:2b:05:0a:16:c8:
fa:95:61:68:2c:25:fa:08:78:19:e7:d6:03:db:f3:
eb:eb:cf:b8:f4:ef:8a:be:e6:44:9a:81:c3:0f:8d:
a9:ca:dd:d5:3c:6d:ad:4c:ba:70:f8:09:b3:a9:a0:
15:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:0F:85:CD:B7:6D:18:20:86:F5:02:82:E1:2E:18:1C:94:96:B2:62
X509v3 Authority Key Identifier:
keyid:6E:CB:3F:B3:BE:A8:CC:8E:36:E3:DA:7D:9C:47:04:9B:FC:6F:FB:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bss_s76ozI4249p9nEcEm_xv-xQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/0ba7e2-63a2-4c41-86b5-a370f4ba2d2b/1/SA-FzbdtGCCG9QKC4S4YHJSWsmI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/0ba7e2-63a2-4c41-86b5-a370f4ba2d2b/1/bss_s76ozI4249p9nEcEm_xv-xQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.70.216.0/22
IPv6:
2a05:2c00::/30
Signature Algorithm: sha256WithRSAEncryption
8f:9c:5f:45:98:6d:cf:87:c7:7f:cf:29:0f:b5:af:6e:34:80:
f2:ac:ac:a6:4a:08:91:18:22:81:97:96:c0:12:8b:7c:d3:41:
5c:26:c2:05:61:f1:5d:70:1f:3c:b9:43:f9:ad:c5:e5:c0:5d:
00:dd:6b:72:1e:0c:08:12:9a:1b:f7:c8:e6:dc:20:d9:b1:4e:
c7:c9:39:b2:58:dd:00:9e:36:bf:f9:69:62:61:5e:f2:90:ca:
2a:e3:fa:68:02:20:b1:f1:09:22:5c:2a:47:37:5d:f2:54:5d:
6d:56:28:7d:a6:e4:f1:2f:ac:25:1a:ca:fd:11:e2:22:a9:c8:
c5:e6:9f:b5:fd:2e:00:ac:60:f5:52:0e:3d:83:26:1c:d4:18:
4b:96:7d:23:f9:ff:c8:82:a9:fe:88:f9:00:a2:dc:46:e3:6f:
02:75:fc:de:f5:78:00:a2:f3:28:c5:a2:e4:c7:b1:8c:36:26:
66:b0:c5:6c:8a:35:8e:ec:e3:b0:bb:47:ab:1a:bc:f7:82:7e:
3f:7b:57:d1:73:20:15:c2:44:f8:11:d9:ee:da:a8:c6:9e:36:
b6:57:4c:aa:71:fe:1b:d5:88:bf:5b:0b:74:d8:54:7f:45:63:
10:70:34:1d:a8:1f:e3:92:af:84:03:5f:6f:21:93:6c:25:fb:
89:5b:b6:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:12 2025 by rpki-client on console.sobornost.net