Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/3830c8-802f-4846-b6e5-1aadaba80072/1/0lerfjDbBomfVzh-fPpNdTuZC_w.roa
File: 0lerfjDbBomfVzh-fPpNdTuZC_w.roa (raw, json)
Hash identifier: K04vSVynMPGD818PT8TEi3joicn16R1AClxmk8kzM/M=
Subject key identifier: D2:57:AB:7E:30:DB:06:89:9F:57:38:7E:7C:FA:4D:75:3B:99:0B:FC
Certificate issuer: /CN=b0e25bcc5530b6f46f3d11cb8113f219a46dfdab
Certificate serial: 019424B3EDF2CC247AF56A1A3752A35B6DDA
Authority key identifier: B0:E2:5B:CC:55:30:B6:F4:6F:3D:11:CB:81:13:F2:19:A4:6D:FD:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sOJbzFUwtvRvPRHLgRPyGaRt_as.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/3830c8-802f-4846-b6e5-1aadaba80072/1/0lerfjDbBomfVzh-fPpNdTuZC_w.roa
Signing time: Thu 02 Jan 2025 01:49:19 +0000
ROA not before: Thu 02 Jan 2025 01:49:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 208869
IP address blocks: 185.248.146.0/24 maxlen: 24
2a12:6bc0::/29 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:ed:f2:cc:24:7a:f5:6a:1a:37:52:a3:5b:6d:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0e25bcc5530b6f46f3d11cb8113f219a46dfdab
Validity
Not Before: Jan 2 01:49:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d257ab7e30db06899f57387e7cfa4d753b990bfc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:8a:d5:03:a2:07:60:81:b9:ea:2a:21:c6:8c:
5c:cb:dc:ba:49:13:2e:ae:e9:4d:16:5f:0c:47:0e:
48:6c:c5:f3:d7:75:db:97:2d:46:35:21:ce:5b:1c:
32:83:fc:99:72:63:90:1c:82:6b:bd:21:02:bb:9e:
39:b7:ca:e5:ca:00:28:4c:dc:e1:ee:de:d6:b6:52:
33:77:a7:f9:1b:c7:64:6d:5d:69:9e:4d:83:14:43:
9b:1d:ef:1f:5f:73:1b:1c:8d:2a:2b:6f:7a:25:6f:
c9:ee:b5:f3:2e:a4:64:c2:ef:c4:fc:dd:68:1d:f1:
d3:e5:eb:92:44:4a:a8:0d:3e:6d:2e:9c:43:cb:46:
1b:42:42:94:ec:f9:5d:c2:f0:b4:81:2f:0c:cc:ab:
a5:5a:a0:1e:ef:ec:6e:a7:d1:2c:53:a4:b1:55:b4:
23:c1:72:46:9b:6d:28:53:74:18:64:74:42:26:35:
52:ab:dd:5f:01:04:ea:6d:68:17:51:94:c2:7e:76:
af:09:89:26:c8:21:cf:6a:a0:fa:e9:42:c7:06:b6:
71:ad:a2:d5:f1:44:8b:a1:88:62:9f:e8:49:d7:31:
aa:b1:cd:7b:63:c3:d7:dd:c3:75:b6:d6:ca:34:ba:
a2:fa:7c:e9:24:51:6b:fb:6a:77:04:4a:87:ba:e3:
e1:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:57:AB:7E:30:DB:06:89:9F:57:38:7E:7C:FA:4D:75:3B:99:0B:FC
X509v3 Authority Key Identifier:
keyid:B0:E2:5B:CC:55:30:B6:F4:6F:3D:11:CB:81:13:F2:19:A4:6D:FD:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sOJbzFUwtvRvPRHLgRPyGaRt_as.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/3830c8-802f-4846-b6e5-1aadaba80072/1/0lerfjDbBomfVzh-fPpNdTuZC_w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/3830c8-802f-4846-b6e5-1aadaba80072/1/sOJbzFUwtvRvPRHLgRPyGaRt_as.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.248.146.0/24
IPv6:
2a12:6bc0::/29
Signature Algorithm: sha256WithRSAEncryption
3c:d7:ad:e7:70:df:d4:23:f1:da:d0:ac:06:68:8f:b3:bb:47:
83:91:23:29:cb:5a:d5:b4:33:65:53:1f:61:4d:ab:b0:90:8f:
10:3d:3b:ae:b0:8c:e4:5d:3c:e4:80:32:3f:d7:b2:cd:d3:5c:
bc:c1:dd:4c:2f:fc:f3:06:f0:ad:04:4f:e5:e7:8c:1f:e4:d0:
2b:c2:ff:74:8c:09:0b:9f:2e:3d:90:fe:e9:a5:9a:96:d7:fc:
56:81:ea:43:a7:ba:5f:f6:ef:1a:8b:fa:f7:ca:b4:5e:18:34:
77:79:35:ff:42:9f:4a:2b:62:94:03:1c:5d:e1:cd:57:46:6e:
ae:b3:d4:78:e0:97:ae:80:d1:fb:4e:2a:29:e1:f9:60:d5:07:
5d:cc:31:82:ac:43:19:49:71:52:e9:55:66:c7:5b:f1:e2:b0:
96:aa:87:f1:2b:48:3d:07:6d:3b:16:13:c4:12:07:68:62:68:
e8:d8:92:2e:46:b8:ec:b6:98:a4:6c:5f:fc:ed:b7:13:63:97:
6b:e8:41:79:f6:1b:ef:bd:58:f0:ff:a4:bc:3e:0e:77:d8:3b:
05:1a:c3:98:2a:4a:74:47:37:c1:10:39:15:cd:6a:1e:68:15:
4c:57:89:9e:1b:23:58:b6:8e:25:92:79:06:93:1c:e5:4a:ae:
71:90:bf:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:19 2025 by rpki-client on console.sobornost.net