Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/3b6fb4-52e8-44e2-abe8-2c2fbad2f011/1/BhseQy6cfY2KxD85qSiLzXh-5UM.roa
File: BhseQy6cfY2KxD85qSiLzXh-5UM.roa (raw, json)
Hash identifier: 0YvZXzvsO+BZgmZ0JpcK1I5V3fjP6y+JiPN3ak5ChGQ=
Subject key identifier: 06:1B:1E:43:2E:9C:7D:8D:8A:C4:3F:39:A9:28:8B:CD:78:7E:E5:43
Certificate issuer: /CN=43aeb8ff55bd46500b27db9cf1dec256276b2b6a
Certificate serial: 0194B17B783388B65C782213D8C5F1B21537
Authority key identifier: 43:AE:B8:FF:55:BD:46:50:0B:27:DB:9C:F1:DE:C2:56:27:6B:2B:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q664_1W9RlALJ9uc8d7CVidrK2o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/3b6fb4-52e8-44e2-abe8-2c2fbad2f011/1/BhseQy6cfY2KxD85qSiLzXh-5UM.roa
Signing time: Wed 29 Jan 2025 09:54:06 +0000
ROA not before: Wed 29 Jan 2025 09:54:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 41960
IP address blocks: 185.246.30.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:b1:7b:78:33:88:b6:5c:78:22:13:d8:c5:f1:b2:15:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43aeb8ff55bd46500b27db9cf1dec256276b2b6a
Validity
Not Before: Jan 29 09:54:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=061b1e432e9c7d8d8ac43f39a9288bcd787ee543
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:66:48:d5:7c:d6:84:f2:db:6c:59:a1:87:c3:
d1:b3:4d:79:1f:33:7f:c6:88:31:88:fb:3a:a8:21:
16:91:d0:be:1e:d3:d0:c3:ee:ee:6a:8a:a7:71:a1:
46:29:40:27:11:3a:fe:51:8f:73:d7:ea:22:72:ca:
c0:0a:67:d5:35:e2:41:5c:6d:09:e8:2e:dd:f9:aa:
f8:bf:a5:3a:c1:be:a7:9b:51:05:42:1e:81:0b:ba:
a9:12:a9:f5:db:04:73:92:88:94:10:ec:5c:80:c1:
4a:d5:31:11:05:55:ec:67:9a:47:e2:27:aa:27:6c:
15:70:bc:44:49:fa:2b:15:99:9b:3d:a9:2b:5b:84:
0d:86:0c:82:8c:ea:40:73:77:f4:4f:03:fd:de:59:
69:91:e2:c5:73:64:ea:4c:ec:9b:df:e5:46:cb:ea:
00:b5:d9:db:9e:9a:58:17:8b:52:53:36:6f:99:75:
1b:a6:33:3a:b9:a3:dc:81:b5:3c:e1:91:10:28:87:
3b:5b:da:02:dc:ae:e2:68:5f:63:12:b3:8b:fc:9a:
9e:99:ee:37:18:2a:fe:a1:6d:11:f1:ae:0d:5b:8c:
46:5d:ae:bd:6f:2b:e2:bb:64:e9:8f:21:4a:93:4d:
77:82:2e:de:df:38:26:3d:5f:2e:37:d1:28:18:6b:
48:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:1B:1E:43:2E:9C:7D:8D:8A:C4:3F:39:A9:28:8B:CD:78:7E:E5:43
X509v3 Authority Key Identifier:
keyid:43:AE:B8:FF:55:BD:46:50:0B:27:DB:9C:F1:DE:C2:56:27:6B:2B:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q664_1W9RlALJ9uc8d7CVidrK2o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/3b6fb4-52e8-44e2-abe8-2c2fbad2f011/1/BhseQy6cfY2KxD85qSiLzXh-5UM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/3b6fb4-52e8-44e2-abe8-2c2fbad2f011/1/Q664_1W9RlALJ9uc8d7CVidrK2o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.246.30.0/24
Signature Algorithm: sha256WithRSAEncryption
91:0f:ca:55:6f:4f:b7:a3:2b:63:23:98:f4:2e:3f:a0:8e:30:
fc:cb:e2:24:e7:c3:3c:d7:00:19:ce:9b:84:f4:e4:7b:e7:d9:
8f:89:12:63:2c:b1:d3:52:f6:20:22:5d:18:7e:1a:d8:dd:fb:
44:7b:47:3e:70:4f:99:84:d5:9b:89:36:6a:24:c0:93:96:f9:
8b:59:76:0b:6d:de:a4:55:91:cf:63:d4:e0:e3:af:c2:26:be:
ed:03:3d:83:ae:b9:36:48:ef:7c:06:ff:52:e6:03:dd:03:7b:
ce:cf:56:52:d5:fe:0d:2b:94:03:4d:0f:e9:cf:c4:5c:1d:a4:
24:67:8e:d7:91:6f:fe:1a:c8:4c:dc:1e:54:e0:81:ce:78:f2:
d0:70:ac:5b:bc:02:cb:1b:bc:b2:b4:08:a9:73:c3:47:97:97:
fb:6f:68:35:64:b7:b5:22:b8:91:1e:de:d7:f6:80:3b:24:2f:
ab:8c:31:06:c4:8d:ba:35:55:14:dc:cf:fd:54:33:9c:0e:47:
ba:8a:b8:a4:63:ce:6e:8c:4e:02:0c:23:4f:37:27:f4:3b:fc:
bd:8f:e9:53:cc:0a:52:3a:0f:4e:d6:6b:5b:6d:ad:3c:67:d8:
59:8a:50:9d:c5:97:d1:cf:2b:c9:d4:8c:e2:12:1a:3f:d3:44:
48:c8:01:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:24 2025 by rpki-client on console.sobornost.net