Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/bcae7d-9daa-4fc1-807b-7f6dea38e7aa/1/EyXyZh1NMVmQSwOvgsi_6X0fzdc.roa
File: EyXyZh1NMVmQSwOvgsi_6X0fzdc.roa (raw, json)
Hash identifier: zdUTP+PrB9t/KpvAQvCmMyip6WSChLUYJHZuuaMU0rs=
Subject key identifier: 13:25:F2:66:1D:4D:31:59:90:4B:03:AF:82:C8:BF:E9:7D:1F:CD:D7
Certificate issuer: /CN=7a43253a368fc6475853971ba9235be0233d8b7c
Certificate serial: 019427481C1EC04A82DB95205494DDA6A8BA
Authority key identifier: 7A:43:25:3A:36:8F:C6:47:58:53:97:1B:A9:23:5B:E0:23:3D:8B:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ekMlOjaPxkdYU5cbqSNb4CM9i3w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/bcae7d-9daa-4fc1-807b-7f6dea38e7aa/1/EyXyZh1NMVmQSwOvgsi_6X0fzdc.roa
Signing time: Thu 02 Jan 2025 13:50:24 +0000
ROA not before: Thu 02 Jan 2025 13:50:24 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 198682
IP address blocks: 185.249.32.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:1c:1e:c0:4a:82:db:95:20:54:94:dd:a6:a8:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a43253a368fc6475853971ba9235be0233d8b7c
Validity
Not Before: Jan 2 13:50:24 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1325f2661d4d3159904b03af82c8bfe97d1fcdd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:9c:96:91:02:e6:66:9e:25:9a:cd:ef:9c:d1:
41:93:9f:60:89:2a:b0:48:00:ec:4c:f2:fa:9f:27:
04:f4:45:1d:b9:74:0a:d9:a8:4b:e0:ea:0a:4b:2e:
45:50:8a:d8:0c:da:87:6b:82:80:6b:cf:16:33:b7:
48:14:c8:83:ec:5e:cc:80:04:2a:22:94:0b:c9:27:
b3:10:d9:99:5e:e8:7e:83:11:0d:9e:a2:20:f5:3e:
af:fd:0f:94:f0:e6:78:b5:b1:54:e9:bd:0c:1f:44:
85:95:0d:d5:61:55:bd:21:ef:79:63:c3:36:2c:0b:
3b:11:67:7c:01:28:ad:3f:94:54:aa:4d:c5:14:ef:
ee:ce:8a:e5:37:1b:a6:e1:7c:10:4c:46:e7:41:03:
24:94:c2:a3:83:94:0f:fd:b1:84:27:95:f1:44:de:
ad:ec:26:21:f8:67:08:86:f1:7e:5f:da:5d:06:51:
66:3b:3a:2a:f8:84:13:33:bb:b6:41:0c:1b:9a:dc:
8b:2a:eb:63:21:cc:d2:d0:9d:06:58:19:5a:69:72:
55:60:d4:dc:12:96:28:1f:a3:ae:00:14:0a:2b:8d:
8f:af:0a:74:29:ed:16:9e:d0:e4:fe:ed:9b:2c:ab:
e7:a7:41:c8:37:4a:4c:5f:85:ab:e3:22:80:ab:ab:
ad:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:25:F2:66:1D:4D:31:59:90:4B:03:AF:82:C8:BF:E9:7D:1F:CD:D7
X509v3 Authority Key Identifier:
keyid:7A:43:25:3A:36:8F:C6:47:58:53:97:1B:A9:23:5B:E0:23:3D:8B:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ekMlOjaPxkdYU5cbqSNb4CM9i3w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/bcae7d-9daa-4fc1-807b-7f6dea38e7aa/1/EyXyZh1NMVmQSwOvgsi_6X0fzdc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/bcae7d-9daa-4fc1-807b-7f6dea38e7aa/1/ekMlOjaPxkdYU5cbqSNb4CM9i3w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.249.32.0/22
Signature Algorithm: sha256WithRSAEncryption
b9:24:e5:2e:2d:32:9a:7c:6d:31:2e:c7:16:17:8f:e0:0f:73:
b8:3e:0c:ab:d9:05:77:fc:68:cf:13:78:a8:bb:a7:50:89:61:
8a:22:36:a2:3c:0e:9c:76:b5:c3:f1:5d:87:8e:dc:84:3d:00:
1f:a7:0e:6e:7d:91:5f:4e:07:6a:38:fa:7c:10:7c:0f:aa:64:
f8:f3:72:ad:11:e0:1c:2c:f1:30:2c:22:f7:4b:e4:1c:fc:16:
51:50:bc:ae:1d:3b:44:ce:c0:c1:b1:c5:eb:e0:ac:12:d8:37:
99:ca:0b:63:9f:54:82:d5:e3:0c:61:73:40:69:cf:4c:62:27:
08:00:c0:5e:5e:bb:27:b7:73:ff:5a:99:67:1e:87:82:ef:cc:
1e:21:69:c1:93:d9:73:a0:47:39:86:a4:7a:59:82:77:34:08:
58:a6:9f:34:96:ad:47:95:e8:69:f1:31:9b:fa:9a:21:1a:c8:
b3:e1:e9:8b:26:89:c7:80:41:05:00:95:9e:3f:4b:eb:c1:83:
07:17:3a:94:30:e5:bf:52:c9:c9:40:6b:3e:50:34:d4:8e:38:
3f:28:a0:3e:f4:ad:01:e5:fd:10:bd:d8:80:81:0f:00:06:9f:
22:0b:49:2e:72:84:96:90:fc:8b:8d:15:d1:5f:b4:a4:60:7d:
30:a6:72:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:18 2025 by rpki-client on console.sobornost.net