Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/d8e68e-ad38-44e1-9a2c-74aa3c0faee0/1/s3dIm20GepVqtr86hU4U0PO_ew8.roa
File: s3dIm20GepVqtr86hU4U0PO_ew8.roa (raw, json)
Hash identifier: IACsMI0iHVIsWExBAgSS418a6ZTtpolE9FZ0jLsNao8=
Subject key identifier: B3:77:48:9B:6D:06:7A:95:6A:B6:BF:3A:85:4E:14:D0:F3:BF:7B:0F
Certificate issuer: /CN=987b6812cf7a074580f5942be762f477f67c9500
Certificate serial: 019422FAE96B457E2BFC8F4BB3524283B0A8
Authority key identifier: 98:7B:68:12:CF:7A:07:45:80:F5:94:2B:E7:62:F4:77:F6:7C:95:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mHtoEs96B0WA9ZQr52L0d_Z8lQA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/d8e68e-ad38-44e1-9a2c-74aa3c0faee0/1/s3dIm20GepVqtr86hU4U0PO_ew8.roa
Signing time: Wed 01 Jan 2025 17:47:36 +0000
ROA not before: Wed 01 Jan 2025 17:47:36 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 8365
IP address blocks: 82.195.64.0/19 maxlen: 24
91.243.70.0/24 maxlen: 24
185.55.124.0/22 maxlen: 24
2001:41b8::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fa:e9:6b:45:7e:2b:fc:8f:4b:b3:52:42:83:b0:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=987b6812cf7a074580f5942be762f477f67c9500
Validity
Not Before: Jan 1 17:47:36 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b377489b6d067a956ab6bf3a854e14d0f3bf7b0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:f2:04:6c:5e:e4:0b:a8:84:ce:a5:8f:4e:5d:
ea:ba:61:b4:6c:26:4b:cb:a2:1a:58:a9:1e:50:d6:
67:bb:fa:ac:da:f8:76:46:5f:ea:d7:ad:a0:e0:58:
03:64:01:fa:35:8a:c0:06:80:04:5e:6c:f8:a8:5c:
de:b7:bd:bd:8f:f9:1c:46:4d:69:e0:6a:44:9c:ec:
96:16:4c:1a:d7:ad:14:ef:d7:8c:14:0e:fb:12:9a:
e2:d7:14:cc:83:13:b2:ab:a7:12:c8:2c:83:a7:a5:
6c:57:54:fe:a4:59:06:63:76:02:6f:b0:61:6c:4d:
f4:b0:34:52:2c:5b:e0:78:64:da:b7:8e:89:fa:c1:
67:77:3a:2a:0b:84:54:80:d2:d4:26:02:a0:63:99:
7c:53:0a:01:ff:49:f8:b8:3f:31:6d:7b:7c:b7:1a:
f3:17:a3:cb:ff:0c:19:fa:9f:f7:69:7e:90:63:e8:
e3:d8:c6:28:70:a2:54:27:4b:81:3e:3d:ac:e5:3b:
81:8c:3d:c4:57:12:15:c0:7a:a6:3c:54:43:95:79:
2c:62:e7:c0:0e:b9:f8:ca:f6:db:eb:64:aa:63:ac:
d4:64:8e:0c:4c:bf:6f:c7:30:8f:bd:29:7e:1f:56:
53:a2:73:a8:df:27:8d:6f:3a:87:b5:10:a3:9f:06:
9a:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:77:48:9B:6D:06:7A:95:6A:B6:BF:3A:85:4E:14:D0:F3:BF:7B:0F
X509v3 Authority Key Identifier:
keyid:98:7B:68:12:CF:7A:07:45:80:F5:94:2B:E7:62:F4:77:F6:7C:95:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mHtoEs96B0WA9ZQr52L0d_Z8lQA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/d8e68e-ad38-44e1-9a2c-74aa3c0faee0/1/s3dIm20GepVqtr86hU4U0PO_ew8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/d8e68e-ad38-44e1-9a2c-74aa3c0faee0/1/mHtoEs96B0WA9ZQr52L0d_Z8lQA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.195.64.0/19
91.243.70.0/24
185.55.124.0/22
IPv6:
2001:41b8::/29
Signature Algorithm: sha256WithRSAEncryption
24:b3:4b:31:f5:52:84:51:04:d5:1b:90:b8:2c:bd:81:06:66:
98:e0:c8:4a:68:de:99:a2:c5:a0:73:03:b0:ef:09:17:68:54:
12:b8:ad:0c:e1:e0:dd:e6:dc:5c:a4:f5:1a:7d:cb:27:75:89:
c1:35:79:b2:82:02:c3:5a:66:aa:34:e7:94:e5:08:11:fc:b1:
2f:bc:78:e9:d6:32:0d:60:f4:34:7e:1f:bd:75:77:80:aa:80:
c1:5f:c7:e0:61:ca:a7:9a:a1:f9:ee:cc:6f:25:d4:7f:0e:38:
8d:15:25:ec:ba:79:c7:0a:9c:57:1b:55:8e:f8:00:9f:b7:05:
81:8d:68:03:b1:bb:2f:b7:c9:b0:1b:03:1d:9b:fb:48:e9:53:
e4:db:f2:91:65:4d:f1:c4:e3:7c:17:36:6e:10:2d:19:4e:b0:
fb:47:7c:71:3b:66:38:a2:d4:e1:83:57:53:9b:1e:dc:cd:af:
9c:92:fb:62:e8:67:55:72:75:2b:14:4a:49:5c:ae:16:ed:29:
b4:5d:1b:b7:0e:98:ca:05:d6:b2:e8:74:6e:ea:ef:73:5b:ff:
0a:59:70:37:ae:43:50:34:58:c5:2a:2c:b4:a6:3c:61:93:e9:
d6:7a:d7:bd:04:9d:02:c7:07:8f:74:fc:ca:dc:14:0a:9c:1f:
c0:a6:7c:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:28 2025 by rpki-client on console.sobornost.net