Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/50a526-c90e-4a39-8247-542d3aa7655e/1/_OMR6VqRZhlG55gSbNS5mlP8YvY.roa
File: _OMR6VqRZhlG55gSbNS5mlP8YvY.roa (raw, json)
Hash identifier: bSmsi8Rv/FhiuL3CjsoHR6R1aLfmil9//pa878a40EA=
Subject key identifier: FC:E3:11:E9:5A:91:66:19:46:E7:98:12:6C:D4:B9:9A:53:FC:62:F6
Certificate issuer: /CN=70e12ebd8fff2a6b054ded9de3d8f65ea635fb83
Certificate serial: 0194266C3B6A66442BB0D7C007643B6729D7
Authority key identifier: 70:E1:2E:BD:8F:FF:2A:6B:05:4D:ED:9D:E3:D8:F6:5E:A6:35:FB:83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cOEuvY__KmsFTe2d49j2XqY1-4M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/50a526-c90e-4a39-8247-542d3aa7655e/1/_OMR6VqRZhlG55gSbNS5mlP8YvY.roa
Signing time: Thu 02 Jan 2025 09:50:14 +0000
ROA not before: Thu 02 Jan 2025 09:50:14 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 202621
IP address blocks: 185.159.16.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6c:3b:6a:66:44:2b:b0:d7:c0:07:64:3b:67:29:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70e12ebd8fff2a6b054ded9de3d8f65ea635fb83
Validity
Not Before: Jan 2 09:50:14 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=fce311e95a91661946e798126cd4b99a53fc62f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:d0:f6:ed:6e:5c:5a:30:62:17:2d:5e:89:20:
42:29:a1:8d:dd:b6:42:80:57:06:c7:94:90:c7:29:
bc:3e:60:8d:71:2e:d7:94:37:17:98:80:3a:30:54:
cf:41:24:0c:20:83:32:2f:53:97:ff:08:14:69:a1:
ec:b4:2c:f6:3f:f1:b5:3e:40:07:c9:69:01:f4:b5:
af:99:88:aa:6c:cd:36:2f:75:c5:30:d5:cd:98:ed:
53:78:cb:5e:2c:e3:d5:5c:96:3f:42:bc:cc:00:63:
9a:e7:b8:8d:60:5a:5c:f2:58:1e:ac:04:1d:94:9a:
c5:43:88:ab:aa:11:d6:8f:2b:6b:88:15:9a:71:d0:
b6:27:d1:53:82:2d:f8:48:ae:5f:1a:0c:b8:c8:4f:
f2:24:73:eb:5e:18:fa:15:af:39:09:6b:aa:54:80:
ee:1b:d8:d1:ca:0e:87:06:d0:80:95:68:f1:51:a0:
7c:cf:fb:35:46:59:22:9f:b0:af:b1:1a:c0:93:80:
ba:4f:16:ae:3e:79:d0:a0:a2:c2:71:51:c9:44:16:
81:99:fc:4b:a0:b0:8e:a3:ba:aa:48:2d:e3:f6:f3:
44:34:44:01:f1:b3:fd:7e:8a:fd:6a:14:b9:94:59:
7e:c9:41:85:cb:13:36:e7:0d:f2:c0:34:aa:7c:f8:
03:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:E3:11:E9:5A:91:66:19:46:E7:98:12:6C:D4:B9:9A:53:FC:62:F6
X509v3 Authority Key Identifier:
keyid:70:E1:2E:BD:8F:FF:2A:6B:05:4D:ED:9D:E3:D8:F6:5E:A6:35:FB:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cOEuvY__KmsFTe2d49j2XqY1-4M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/50a526-c90e-4a39-8247-542d3aa7655e/1/_OMR6VqRZhlG55gSbNS5mlP8YvY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/50a526-c90e-4a39-8247-542d3aa7655e/1/cOEuvY__KmsFTe2d49j2XqY1-4M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.159.16.0/23
Signature Algorithm: sha256WithRSAEncryption
21:e1:dd:5f:ee:e6:f6:2b:7d:32:b2:05:c3:12:cd:e1:da:f3:
7f:87:f4:3b:7a:76:f7:7f:bf:87:7b:3c:3b:5b:59:31:05:27:
8e:b0:55:13:2b:68:fc:6f:32:46:f3:39:a8:ee:97:e9:b9:f0:
29:35:66:bb:fa:82:7c:20:af:59:93:7c:bc:c8:cb:cb:13:7d:
8a:28:24:f9:77:76:f0:84:af:e2:b2:38:b5:dc:a6:2f:91:50:
73:95:1c:21:68:37:ba:4f:ae:4e:d0:11:68:4a:ee:cf:84:51:
2e:51:90:86:cf:73:af:ac:54:c0:34:a0:e2:1e:35:75:58:97:
4a:b6:e1:7c:6b:a9:64:27:df:0a:37:fa:4e:19:c8:ed:04:60:
00:22:71:50:1c:88:43:2c:13:bc:fd:bf:2e:f2:c0:a9:e8:17:
c4:55:6d:05:10:c3:1f:3f:12:97:e6:24:59:2c:4c:b7:aa:21:
a5:80:0f:29:79:7e:55:17:e3:f8:f7:c7:9e:4a:cd:27:95:40:
3b:f2:7a:d5:02:ed:e3:7a:e2:ca:ab:30:c4:7b:32:fd:20:50:
d4:d1:e5:80:67:de:d3:f2:74:34:90:0c:a9:ec:20:09:9a:e5:
76:10:1c:26:bb:c1:66:40:7b:29:94:14:78:ed:06:b4:92:a1:
19:8a:86:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:24 2025 by rpki-client on console.sobornost.net