Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/f6fee6-c0a2-4a03-a981-f5fda0ea300d/1/4E8aKuSUAJGEZx4-_4p226okfIQ.roa
File: 4E8aKuSUAJGEZx4-_4p226okfIQ.roa (raw, json)
Hash identifier: pf8xgGvbWtDjdqLKfY5/LWfzgLwmraxV+sdu2DNs804=
Subject key identifier: E0:4F:1A:2A:E4:94:00:91:84:67:1E:3E:FF:8A:76:DB:AA:24:7C:84
Certificate issuer: /CN=80ab4c0945b738edda0583a274b63c1b8673a630
Certificate serial: 019425FC83C1783C60338B0C4F0F87DAB8AB
Authority key identifier: 80:AB:4C:09:45:B7:38:ED:DA:05:83:A2:74:B6:3C:1B:86:73:A6:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gKtMCUW3OO3aBYOidLY8G4ZzpjA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/f6fee6-c0a2-4a03-a981-f5fda0ea300d/1/4E8aKuSUAJGEZx4-_4p226okfIQ.roa
Signing time: Thu 02 Jan 2025 07:48:13 +0000
ROA not before: Thu 02 Jan 2025 07:48:13 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43065
IP address blocks: 185.140.116.0/22 maxlen: 22
2a07:1c80::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fc:83:c1:78:3c:60:33:8b:0c:4f:0f:87:da:b8:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80ab4c0945b738edda0583a274b63c1b8673a630
Validity
Not Before: Jan 2 07:48:13 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e04f1a2ae494009184671e3eff8a76dbaa247c84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:13:f0:e2:25:93:5f:1c:a8:fa:bc:4a:d6:53:
f0:ed:4a:8a:80:5d:a5:d9:31:93:b5:1b:63:4f:2c:
ae:5d:5b:83:a6:8e:8f:67:eb:cb:b5:56:cd:32:35:
a2:ab:e1:2d:6f:0f:0f:a1:20:13:d6:22:ec:ad:72:
24:73:47:3b:bd:77:d7:1d:99:16:5f:f3:2a:22:49:
e4:b3:b5:d1:b5:70:4d:14:25:b1:af:9a:ae:93:a7:
f5:aa:ca:d8:c0:0c:d0:d1:89:57:d2:9b:c9:8f:28:
43:7d:62:61:2a:7c:bf:13:11:42:a1:bc:5c:c4:75:
df:3a:a0:dd:01:74:2e:76:40:a3:15:a8:6f:2c:64:
14:c9:6d:4a:f2:bc:35:f1:32:2c:e9:a5:f3:a3:b9:
1b:e7:ec:47:94:41:94:45:4b:50:89:9d:5c:2e:63:
44:fa:ea:c3:03:01:9b:ab:4a:80:8d:be:96:f9:ba:
b8:28:ed:53:dc:50:04:38:4f:52:29:86:e2:79:03:
97:a5:99:f0:9d:8c:69:8e:69:92:e6:d6:a4:9a:38:
44:ac:d4:14:a8:21:75:18:bc:85:39:26:c2:9b:f5:
47:6d:87:9f:c7:ae:25:33:59:7a:8e:0a:9d:05:fa:
8e:64:b9:ef:34:c4:77:b4:4e:7b:d1:3b:eb:4c:62:
41:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:4F:1A:2A:E4:94:00:91:84:67:1E:3E:FF:8A:76:DB:AA:24:7C:84
X509v3 Authority Key Identifier:
keyid:80:AB:4C:09:45:B7:38:ED:DA:05:83:A2:74:B6:3C:1B:86:73:A6:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gKtMCUW3OO3aBYOidLY8G4ZzpjA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/f6fee6-c0a2-4a03-a981-f5fda0ea300d/1/4E8aKuSUAJGEZx4-_4p226okfIQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/f6fee6-c0a2-4a03-a981-f5fda0ea300d/1/gKtMCUW3OO3aBYOidLY8G4ZzpjA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.140.116.0/22
IPv6:
2a07:1c80::/29
Signature Algorithm: sha256WithRSAEncryption
4e:7b:80:0f:b8:da:cb:a8:22:a1:3f:4c:af:79:3b:5a:ff:6a:
33:2d:96:09:15:e5:08:3e:0e:2d:1c:df:cf:78:df:1b:30:87:
19:e0:cd:b6:12:7e:3d:76:d3:5a:89:73:10:5b:44:ce:01:c9:
63:98:17:28:7d:09:10:94:62:d4:ca:8b:e8:8b:8e:8f:e9:23:
6f:27:d3:b3:90:10:28:6f:43:f8:ff:d1:98:ac:3f:ab:6c:e1:
be:3c:0e:b1:1e:0a:51:3b:03:4f:c6:e7:0b:90:c8:dd:05:3b:
42:bc:5e:1b:28:cf:b4:26:36:77:bf:a1:ef:0f:6e:df:8d:ea:
da:a9:02:4d:11:71:eb:ac:cf:3c:de:32:70:96:72:28:31:17:
6d:a3:a8:29:fa:d1:2f:01:2c:1b:32:97:91:69:8b:fc:87:87:
5a:cb:ac:f1:0a:3d:f2:33:4c:2d:31:5b:d7:2c:f5:15:dc:a0:
fd:83:18:ec:ef:d2:a7:2e:c4:91:94:75:36:24:2b:9f:ba:12:
90:e1:a0:ad:49:15:da:9b:e9:29:e3:86:3d:4b:8f:45:a3:fb:
20:34:c9:34:52:d1:6f:47:fb:69:76:bf:b6:01:ed:e2:e4:15:
24:f3:66:ee:41:02:0c:d2:e9:2d:0c:43:3e:6f:7c:b8:ad:55:
89:18:00:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 25 22:14:06 2025 by rpki-client on console.sobornost.net