Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/9d5910-9f5e-446c-8d3c-bc007f2dac24/1/pUwnSc_JetbJPsU-389x5YU4pvg.roa
File: pUwnSc_JetbJPsU-389x5YU4pvg.roa (raw, json)
Hash identifier: lhmdQpFZ7fos7NXMz4jX5p35w/A739C3Y3Ttaa4Ee+s=
Subject key identifier: A5:4C:27:49:CF:C9:7A:D6:C9:3E:C5:3E:DF:CF:71:E5:85:38:A6:F8
Certificate issuer: /CN=6ba3186597742a926cd26504e1ed76f8543fdb26
Certificate serial: 01961990CB72BD3027AAD64F2088ADE0B19D
Authority key identifier: 6B:A3:18:65:97:74:2A:92:6C:D2:65:04:E1:ED:76:F8:54:3F:DB:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a6MYZZd0KpJs0mUE4e12-FQ_2yY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/9d5910-9f5e-446c-8d3c-bc007f2dac24/1/pUwnSc_JetbJPsU-389x5YU4pvg.roa
Signing time: Wed 09 Apr 2025 08:00:41 +0000
ROA not before: Wed 09 Apr 2025 08:00:41 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212988
IP address blocks: 185.194.26.0/24 maxlen: 24
185.194.27.0/24 maxlen: 24
185.219.218.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:19:90:cb:72:bd:30:27:aa:d6:4f:20:88:ad:e0:b1:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ba3186597742a926cd26504e1ed76f8543fdb26
Validity
Not Before: Apr 9 08:00:41 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a54c2749cfc97ad6c93ec53edfcf71e58538a6f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:39:97:82:8b:ca:6e:40:70:79:5a:e7:50:2e:
b0:e5:da:b4:33:f2:0b:3c:4d:08:3d:59:d9:c8:a2:
79:fa:da:97:9e:54:49:9d:88:bc:6e:88:57:28:2f:
24:10:45:b5:4a:18:3a:f8:fb:26:fc:0f:0e:f5:ba:
45:86:1a:4a:f9:b5:02:97:17:57:06:67:c6:2f:d6:
27:ef:f1:30:c8:b2:21:cb:36:58:f4:5f:12:f9:87:
a4:f0:fa:20:02:c9:7d:d8:10:b0:5a:b1:97:2c:71:
f9:fb:b8:03:0d:4b:f8:4e:d9:b4:18:ac:67:69:38:
4e:dc:59:ae:26:61:dd:75:c8:6e:b7:0d:ec:3b:00:
29:88:8e:b0:9b:87:60:68:0a:c2:4f:09:33:84:c4:
ce:74:d0:88:12:1d:63:83:56:a4:34:eb:da:23:ae:
f2:aa:e4:47:8c:95:ac:f5:d4:5b:f8:c2:46:3e:2c:
66:2c:62:f5:5c:f8:41:68:28:fe:56:d8:1c:6a:ee:
de:d5:ba:a7:40:49:b6:d4:86:f3:be:cd:90:1e:ac:
5d:b9:e9:e9:6a:e4:94:05:90:79:dd:82:37:b4:48:
0e:1a:6d:aa:6c:f4:43:70:db:a1:e6:9a:9e:e8:d5:
eb:09:ec:ff:a5:b4:50:b1:fd:85:1c:08:49:0f:4b:
33:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:4C:27:49:CF:C9:7A:D6:C9:3E:C5:3E:DF:CF:71:E5:85:38:A6:F8
X509v3 Authority Key Identifier:
keyid:6B:A3:18:65:97:74:2A:92:6C:D2:65:04:E1:ED:76:F8:54:3F:DB:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6MYZZd0KpJs0mUE4e12-FQ_2yY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/9d5910-9f5e-446c-8d3c-bc007f2dac24/1/pUwnSc_JetbJPsU-389x5YU4pvg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/9d5910-9f5e-446c-8d3c-bc007f2dac24/1/a6MYZZd0KpJs0mUE4e12-FQ_2yY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.194.26.0/23
185.219.218.0/24
Signature Algorithm: sha256WithRSAEncryption
81:be:a9:30:cd:00:df:51:a4:08:b4:fd:ef:c6:7b:5d:21:1a:
4c:be:93:82:bf:53:50:90:be:33:c3:b2:ce:d7:52:b0:6f:c8:
ed:c8:e5:80:28:e2:b2:79:02:1b:1c:e4:74:28:38:76:d8:18:
8a:1a:a6:2e:45:2e:0f:18:cb:b7:87:b7:44:eb:48:05:a0:46:
f8:59:58:47:91:90:68:7a:5a:93:64:98:0c:c5:00:0f:62:6c:
3a:86:05:0a:52:53:24:5a:84:99:99:96:39:63:b5:24:74:8c:
89:09:fe:a3:d0:37:1b:00:e7:4b:05:d4:25:80:a1:63:86:ea:
ec:23:71:ec:4a:4d:96:3c:ab:ad:cf:ec:39:36:9e:71:b3:11:
f8:c4:4e:ef:c7:2b:33:eb:b0:3d:55:b6:46:f5:0a:e8:e7:f2:
f9:40:e8:bd:24:de:db:64:35:f1:1c:57:7d:54:07:ca:70:6c:
d5:a0:e4:2c:90:4c:ec:d4:ab:66:df:d2:23:ef:88:97:7f:16:
5b:e1:2e:6b:b7:7a:af:c7:3a:da:3f:64:68:41:a5:aa:65:2e:
67:0b:58:7b:0e:4a:7f:b2:37:f1:b6:5d:52:b1:7b:29:e9:06:
f7:7e:a0:5e:d1:e1:9b:d7:3e:03:db:b3:30:91:9e:af:f8:46:
0e:11:c9:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:28 2025 by rpki-client on console.sobornost.net