Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/1b9202-4869-4d45-9521-eb11b4954f33/1/vDzT1MfGHy3qiiGgUF2NvHG69NY.roa
File: vDzT1MfGHy3qiiGgUF2NvHG69NY.roa (raw, json)
Hash identifier: /QoWZln+ZcMlohGoxqm79B+9B4Oq5GX6wiGGVl8wkGg=
Subject key identifier: BC:3C:D3:D4:C7:C6:1F:2D:EA:8A:21:A0:50:5D:8D:BC:71:BA:F4:D6
Certificate issuer: /CN=e99405ee8f5d8e764e90bd66bdd1e89ac12809e8
Certificate serial: 019420D6077D11AAFC7909BC0EE192DD579E
Authority key identifier: E9:94:05:EE:8F:5D:8E:76:4E:90:BD:66:BD:D1:E8:9A:C1:28:09:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6ZQF7o9djnZOkL1mvdHomsEoCeg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/1b9202-4869-4d45-9521-eb11b4954f33/1/vDzT1MfGHy3qiiGgUF2NvHG69NY.roa
Signing time: Wed 01 Jan 2025 07:48:05 +0000
ROA not before: Wed 01 Jan 2025 07:48:05 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 31537
IP address blocks: 185.169.76.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d6:07:7d:11:aa:fc:79:09:bc:0e:e1:92:dd:57:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e99405ee8f5d8e764e90bd66bdd1e89ac12809e8
Validity
Not Before: Jan 1 07:48:05 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=bc3cd3d4c7c61f2dea8a21a0505d8dbc71baf4d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:91:88:f7:8d:56:8a:ea:d1:ef:7b:1a:d8:9c:
97:8d:03:d1:25:67:6a:b0:94:21:ea:73:a8:ff:ff:
cc:0d:d5:57:56:e1:8c:72:91:1d:98:bb:30:d8:36:
04:84:a1:84:0d:db:48:44:31:74:3a:93:c1:cb:f7:
0f:a8:94:67:ea:10:1b:c1:74:b7:73:30:e0:d3:71:
6c:0f:af:72:b2:c9:e0:71:f6:4f:a0:b4:7e:2a:30:
0d:69:17:eb:e0:f3:b1:a5:da:c0:3f:01:72:03:06:
6e:7c:9c:7b:fd:0a:60:60:50:b0:77:a2:91:82:e9:
65:e8:9f:ed:3f:01:bb:a4:9d:1a:62:ee:ab:70:2c:
fa:aa:cc:42:b9:84:1f:61:17:77:08:6d:85:e6:bb:
89:0b:d2:51:10:ac:de:92:c6:7f:dd:95:c1:13:85:
c0:09:91:26:98:69:87:45:95:12:97:4e:df:87:43:
58:a8:47:f7:b8:ed:20:53:8c:ef:98:2a:22:41:62:
94:ba:86:0e:d6:27:2f:84:3a:59:db:9a:49:ba:a5:
1c:19:f8:4b:16:4c:4d:b9:14:3f:a1:d5:0f:7f:cb:
1a:91:1b:4e:f5:93:54:fa:7a:a8:ce:21:d7:1a:47:
fe:ad:46:86:4d:1b:1f:5d:d8:6f:cc:4e:3a:f9:3f:
e4:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:3C:D3:D4:C7:C6:1F:2D:EA:8A:21:A0:50:5D:8D:BC:71:BA:F4:D6
X509v3 Authority Key Identifier:
keyid:E9:94:05:EE:8F:5D:8E:76:4E:90:BD:66:BD:D1:E8:9A:C1:28:09:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6ZQF7o9djnZOkL1mvdHomsEoCeg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/1b9202-4869-4d45-9521-eb11b4954f33/1/vDzT1MfGHy3qiiGgUF2NvHG69NY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/1b9202-4869-4d45-9521-eb11b4954f33/1/6ZQF7o9djnZOkL1mvdHomsEoCeg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.169.76.0/24
Signature Algorithm: sha256WithRSAEncryption
28:d5:c3:af:8d:3a:22:15:2f:1c:a1:24:5e:42:aa:06:43:df:
cd:77:22:c9:e1:c6:35:35:bf:b8:7d:ad:10:3e:f3:12:41:1a:
46:bd:23:3f:39:e0:33:ef:fe:54:00:8a:67:62:88:35:d1:61:
a5:49:ec:e1:76:3b:b1:74:d5:c1:99:7a:97:55:9b:98:d4:8a:
b6:55:11:51:22:6e:01:d0:6c:bf:c8:07:48:e4:66:c1:e5:5b:
3e:cb:ca:2f:1e:7f:23:9d:4a:fd:85:d4:70:7f:7a:b1:a9:f4:
22:aa:c9:7d:e4:62:d5:5e:06:ea:48:28:37:07:5b:ec:6a:3c:
3e:cb:3a:47:7c:8e:d0:ff:a3:ca:af:ca:94:8f:2a:26:20:da:
9c:96:04:ad:ba:a6:9b:58:c9:c7:85:91:25:15:ae:db:71:7b:
cc:17:36:f2:1c:86:3d:45:b8:be:07:2d:27:1d:aa:d4:be:d4:
49:2f:13:05:6b:02:97:0f:fd:c0:38:d4:dc:8d:79:de:a9:ac:
c8:32:8b:a0:95:37:a3:58:3b:fe:42:14:6d:b0:66:93:3e:c8:
b1:00:0a:1a:fb:ca:5b:19:3c:c1:89:ed:87:46:a1:4a:7f:e9:
fe:d2:1a:63:9f:38:2e:7f:30:25:2b:3a:a3:99:81:38:89:6d:
5e:25:27:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:28 2025 by rpki-client on console.sobornost.net