Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/13fb65-4ee7-4026-aa3a-9d56e3adca90/1/SRL2XQIBoKefODwi32v5f2eOog8.roa
File: SRL2XQIBoKefODwi32v5f2eOog8.roa (raw, json)
Hash identifier: Dn7L+HcQU8DFcaAaO+5zWbM9Yhm50QvkCe2vCWCUn7c=
Subject key identifier: 49:12:F6:5D:02:01:A0:A7:9F:38:3C:22:DF:6B:F9:7F:67:8E:A2:0F
Certificate issuer: /CN=d612742b91d770fe8efbc9b5dcf8dc38984dd0f0
Certificate serial: 019422FAFC6DEA428FCB905F87603BF30DA1
Authority key identifier: D6:12:74:2B:91:D7:70:FE:8E:FB:C9:B5:DC:F8:DC:38:98:4D:D0:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1hJ0K5HXcP6O-8m13PjcOJhN0PA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/13fb65-4ee7-4026-aa3a-9d56e3adca90/1/SRL2XQIBoKefODwi32v5f2eOog8.roa
Signing time: Wed 01 Jan 2025 17:47:41 +0000
ROA not before: Wed 01 Jan 2025 17:47:41 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 58316
IP address blocks: 185.17.104.0/23 maxlen: 23
185.56.216.0/23 maxlen: 23
185.198.120.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fa:fc:6d:ea:42:8f:cb:90:5f:87:60:3b:f3:0d:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d612742b91d770fe8efbc9b5dcf8dc38984dd0f0
Validity
Not Before: Jan 1 17:47:41 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4912f65d0201a0a79f383c22df6bf97f678ea20f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:80:5c:70:f4:0b:9d:09:55:b9:41:6b:31:2a:
4c:9a:fa:10:04:e8:b8:cf:f4:10:fe:87:34:dd:c6:
ba:13:6d:11:49:b3:19:82:c9:9d:30:09:f0:eb:76:
36:a3:57:a1:ce:5e:ab:78:f4:ca:26:e9:95:15:36:
bf:69:ba:0d:76:0c:7c:57:5c:12:d0:d9:59:71:16:
f6:b5:dc:84:05:f3:23:14:f7:3f:02:cf:b5:89:6c:
34:f3:e5:c2:d0:ad:3a:71:ff:e9:ef:28:d2:21:11:
05:92:46:8b:ee:21:a8:d0:5b:7d:0b:23:e1:4d:5d:
91:fa:3f:1f:a7:55:55:50:59:c6:a3:54:04:60:cf:
c8:02:1d:e8:cd:ed:a9:4b:7b:0d:1b:e9:34:aa:6e:
cb:85:dc:8e:fd:4f:51:2f:11:cf:26:11:06:f6:75:
c3:5d:c0:ff:04:51:1c:32:38:83:3a:a5:fa:6f:ad:
0e:44:ac:39:ad:3e:3a:a8:64:5e:86:b1:b6:f0:ee:
6c:6b:2b:bf:d6:84:b3:d7:2b:6b:2b:ce:e1:72:46:
16:ed:b5:14:91:ad:c6:d4:13:55:49:38:f2:e7:dd:
73:e8:d2:d7:35:be:1b:bc:c7:e0:fd:70:ec:2b:24:
3b:5f:26:54:ec:3f:59:9e:18:cf:c0:dd:d0:ba:3b:
7f:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:12:F6:5D:02:01:A0:A7:9F:38:3C:22:DF:6B:F9:7F:67:8E:A2:0F
X509v3 Authority Key Identifier:
keyid:D6:12:74:2B:91:D7:70:FE:8E:FB:C9:B5:DC:F8:DC:38:98:4D:D0:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1hJ0K5HXcP6O-8m13PjcOJhN0PA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/13fb65-4ee7-4026-aa3a-9d56e3adca90/1/SRL2XQIBoKefODwi32v5f2eOog8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/13fb65-4ee7-4026-aa3a-9d56e3adca90/1/1hJ0K5HXcP6O-8m13PjcOJhN0PA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.17.104.0/23
185.56.216.0/23
185.198.120.0/22
Signature Algorithm: sha256WithRSAEncryption
1e:3c:c0:d5:64:b5:2e:4c:1a:4b:37:96:29:ed:9b:ae:b0:9c:
19:2b:2a:fc:42:cc:34:22:af:f0:00:10:9c:f0:4c:49:24:74:
d3:39:98:2e:ec:88:50:c2:1e:be:39:a3:57:ab:1c:fd:c7:a3:
69:af:ea:f0:51:c3:ce:b4:3a:6c:ea:30:64:98:8e:c6:82:f5:
22:7d:65:bd:ef:21:00:a8:76:42:5d:5e:3c:79:f6:31:3a:68:
92:35:3c:88:21:89:dd:cd:02:57:f4:54:33:e8:da:2a:7a:e7:
81:55:d4:80:ad:af:a7:fe:4d:2e:6b:5b:8a:5d:4f:33:24:ba:
87:b7:e2:bc:db:7d:03:8e:50:4e:f9:bc:9d:63:28:de:3c:f7:
39:a8:51:6c:bc:ee:66:a6:d5:da:0f:14:a2:f1:ae:07:af:8b:
87:f9:d7:dc:6b:e4:3a:1c:e2:59:21:e2:42:7a:ac:a5:1c:00:
18:e3:36:31:e2:9e:76:22:10:e4:71:11:4e:6f:8d:2d:7c:c9:
9b:bf:af:4c:13:1c:0b:01:dd:ce:f0:0c:db:99:3a:ff:61:8d:
28:f9:06:03:0a:43:34:fc:a6:b0:e4:33:25:c5:8b:df:e3:c5:
8a:92:7e:ea:81:78:35:e3:3c:06:dd:63:a0:f5:3d:49:72:7d:
e9:f9:7b:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:29 2025 by rpki-client on console.sobornost.net