Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/460c00-3e95-4274-bc9c-060dacfebe0f/1/T-7UHMeiisZP8332nQ0NygP_Y0A.roa
File: T-7UHMeiisZP8332nQ0NygP_Y0A.roa (raw, json)
Hash identifier: HDb7CWJYRdDJrbf5NChPSQ5C+jclQ+ytKDdD4x7NGfM=
Subject key identifier: 4F:EE:D4:1C:C7:A2:8A:C6:4F:F3:7D:F6:9D:0D:0D:CA:03:FF:63:40
Certificate issuer: /CN=05bfdbb6a4b1663369da407db97b021f73284a28
Certificate serial: 019427B6027D15989E97DB40E65D255245F4
Authority key identifier: 05:BF:DB:B6:A4:B1:66:33:69:DA:40:7D:B9:7B:02:1F:73:28:4A:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Bb_btqSxZjNp2kB9uXsCH3MoSig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/460c00-3e95-4274-bc9c-060dacfebe0f/1/T-7UHMeiisZP8332nQ0NygP_Y0A.roa
Signing time: Thu 02 Jan 2025 15:50:27 +0000
ROA not before: Thu 02 Jan 2025 15:50:27 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215322
IP address blocks: 185.17.25.0/24 maxlen: 24
2a01:a501::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b6:02:7d:15:98:9e:97:db:40:e6:5d:25:52:45:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05bfdbb6a4b1663369da407db97b021f73284a28
Validity
Not Before: Jan 2 15:50:27 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4feed41cc7a28ac64ff37df69d0d0dca03ff6340
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:3e:96:0f:72:f2:74:ae:d0:b6:08:08:00:74:
62:16:f6:c5:06:ae:93:1c:f9:b9:b0:70:b7:c6:84:
7c:f4:ba:4d:d5:44:0e:ff:1e:10:53:1f:0c:b3:f9:
9e:3c:6d:24:72:cf:d0:78:61:d1:b1:7f:73:7d:2f:
32:08:c5:c2:56:0b:ba:4c:6d:ef:9f:ea:25:a3:d9:
ba:61:23:e0:0e:7f:76:65:94:8e:0a:cb:a9:5e:fe:
ff:90:51:b4:56:f1:9f:31:72:ad:f4:7f:53:2c:22:
3c:c8:d6:29:ed:f2:8c:0f:1c:c5:8b:f9:7f:65:6e:
82:83:2b:2a:76:7b:1b:e0:0f:39:09:42:2f:4e:25:
50:c6:44:05:dc:84:c1:42:ad:ff:92:dd:8b:d6:0d:
7e:a0:46:46:95:0d:fd:49:83:0e:f4:25:d4:e9:68:
3e:d7:1b:00:57:c9:b7:7d:a1:36:12:27:12:82:a2:
f6:28:e7:ef:96:29:16:b8:ea:b6:e2:4d:19:3a:2f:
a7:8d:7e:6a:b0:9c:c8:9d:bd:10:26:aa:b0:58:48:
12:c2:f5:62:4f:5b:34:eb:a6:af:cb:6a:bd:5e:2e:
5d:c0:09:3e:1a:37:51:c4:ff:8a:80:23:8e:d1:a1:
9c:0e:7e:5f:e9:5d:07:9b:28:a6:64:08:a0:4e:43:
26:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:EE:D4:1C:C7:A2:8A:C6:4F:F3:7D:F6:9D:0D:0D:CA:03:FF:63:40
X509v3 Authority Key Identifier:
keyid:05:BF:DB:B6:A4:B1:66:33:69:DA:40:7D:B9:7B:02:1F:73:28:4A:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Bb_btqSxZjNp2kB9uXsCH3MoSig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/460c00-3e95-4274-bc9c-060dacfebe0f/1/T-7UHMeiisZP8332nQ0NygP_Y0A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/460c00-3e95-4274-bc9c-060dacfebe0f/1/Bb_btqSxZjNp2kB9uXsCH3MoSig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.17.25.0/24
IPv6:
2a01:a501::/32
Signature Algorithm: sha256WithRSAEncryption
31:09:5a:b3:56:41:14:7d:55:e9:e6:af:83:89:df:6a:b8:7e:
a1:67:c4:05:f7:bb:6f:48:ee:7a:e9:98:e6:3b:53:3a:fc:9a:
27:31:02:30:3c:54:4f:c6:55:00:5e:93:a6:79:84:ca:bd:af:
34:b0:6d:85:39:91:e1:0d:ff:a2:5d:a1:0a:fb:f2:bb:9e:fc:
7b:a7:0a:1d:e3:ca:c4:c5:d3:89:b5:97:4e:10:73:ba:03:0e:
33:69:ff:ae:79:f9:75:e2:0e:86:70:e0:35:64:ed:ed:83:c5:
d5:c0:5b:94:97:c5:ff:56:13:f6:62:18:21:98:7b:1c:4a:d2:
50:43:f5:58:08:16:44:45:50:f8:40:81:18:c0:e6:c4:9b:04:
18:d3:c1:17:01:f4:62:b4:4d:82:42:1e:d5:ae:58:ff:ec:e2:
12:2b:94:29:d5:59:84:b8:78:c4:1e:be:f8:94:cf:0e:d9:af:
60:b7:d7:b8:a4:2d:0f:23:61:65:91:b1:cc:47:3f:04:86:85:
b8:ae:c2:6f:2e:34:1f:cc:f9:86:e5:24:9b:96:03:e3:d4:9e:
e6:19:f2:a4:bb:e1:8a:d7:72:10:ee:12:c8:07:57:06:51:3d:
02:12:20:0f:3f:97:18:76:de:f5:cf:40:eb:0c:39:16:37:8c:
a6:ac:e6:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:27 2025 by rpki-client on console.sobornost.net