Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/a01ebb-ee18-4fb7-a73b-f5951c7ccbd3/1/I9vgIWuaiEwVbrWFIv7mFggy9a0.roa
File: I9vgIWuaiEwVbrWFIv7mFggy9a0.roa (raw, json)
Hash identifier: CuGCVrXCD5akH61wJYu8Ar6/+5VEgpmtOisQYkqg0kQ=
Subject key identifier: 23:DB:E0:21:6B:9A:88:4C:15:6E:B5:85:22:FE:E6:16:08:32:F5:AD
Certificate issuer: /CN=7368aebc1d4585b9b3612ecc2203454d65a872e3
Certificate serial: 019423D7D0BE745C788E0A2BBFEDDBF8CBCE
Authority key identifier: 73:68:AE:BC:1D:45:85:B9:B3:61:2E:CC:22:03:45:4D:65:A8:72:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c2iuvB1FhbmzYS7MIgNFTWWocuM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/a01ebb-ee18-4fb7-a73b-f5951c7ccbd3/1/I9vgIWuaiEwVbrWFIv7mFggy9a0.roa
Signing time: Wed 01 Jan 2025 21:48:53 +0000
ROA not before: Wed 01 Jan 2025 21:48:53 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206195
IP address blocks: 185.193.200.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:d0:be:74:5c:78:8e:0a:2b:bf:ed:db:f8:cb:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7368aebc1d4585b9b3612ecc2203454d65a872e3
Validity
Not Before: Jan 1 21:48:53 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=23dbe0216b9a884c156eb58522fee6160832f5ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:e8:5f:03:3b:54:7b:a9:be:50:6c:18:28:46:
d6:42:92:c9:99:d6:3e:dd:93:11:14:ce:5b:78:c2:
ff:a9:40:35:e9:76:24:3e:96:32:83:fd:7d:4b:49:
0b:40:43:aa:d1:57:13:24:bf:52:aa:ba:a3:6b:72:
31:9b:92:c5:f2:9d:96:20:ce:88:f0:d8:cc:49:fb:
41:a3:27:df:a8:3e:c4:b1:5d:96:a3:67:e7:c7:cc:
d7:29:ef:96:b8:1f:1a:ad:6e:12:a6:ab:f8:13:f9:
46:10:79:ee:b9:67:f5:f6:d7:cf:b8:71:58:a1:68:
2f:e6:49:26:0b:9c:17:b3:0f:94:9d:3f:df:be:34:
0b:c7:24:7b:66:d4:bb:14:9e:41:90:8c:7f:b0:96:
5f:1d:f5:81:45:5d:c9:fd:80:c5:54:bd:32:07:4a:
0d:7f:fb:fe:8b:84:4a:91:79:ce:53:ed:01:ef:70:
86:99:83:63:ef:70:90:3d:18:9b:37:e8:8e:eb:b9:
0b:99:60:15:e5:e9:c7:f7:9a:f0:ad:92:be:96:8a:
85:30:f1:9a:d2:1a:e8:31:01:e2:3f:7a:ed:a7:c5:
bb:2b:c1:73:9a:d8:f0:c6:42:06:2a:7c:c8:af:f5:
7d:99:47:96:e6:dd:ab:33:dd:88:48:b3:34:9f:91:
db:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:DB:E0:21:6B:9A:88:4C:15:6E:B5:85:22:FE:E6:16:08:32:F5:AD
X509v3 Authority Key Identifier:
keyid:73:68:AE:BC:1D:45:85:B9:B3:61:2E:CC:22:03:45:4D:65:A8:72:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2iuvB1FhbmzYS7MIgNFTWWocuM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/a01ebb-ee18-4fb7-a73b-f5951c7ccbd3/1/I9vgIWuaiEwVbrWFIv7mFggy9a0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/a01ebb-ee18-4fb7-a73b-f5951c7ccbd3/1/c2iuvB1FhbmzYS7MIgNFTWWocuM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.193.200.0/22
Signature Algorithm: sha256WithRSAEncryption
6f:e8:7a:e7:a2:ef:c1:e6:ca:b3:0f:67:db:78:3f:7a:fe:7d:
05:1d:0a:51:4f:46:a1:4d:2a:ef:b8:f4:64:75:98:d5:2f:93:
a7:78:18:7d:ed:68:03:d7:a8:02:58:75:78:70:7a:f5:9f:49:
c3:e3:67:e7:99:3a:b2:8a:a2:9c:11:67:46:44:25:c0:c7:03:
a7:bf:c6:18:84:df:fd:6c:85:34:f6:c5:fa:c2:47:9a:52:5d:
b9:08:83:9c:a7:7a:83:4d:0d:bf:76:07:3d:0f:65:ab:05:2f:
24:c4:fb:88:84:07:61:1a:ca:0a:db:df:72:ae:b6:7c:d8:7e:
75:f2:34:e7:7c:45:23:a3:de:92:74:8e:7c:eb:83:39:10:5d:
8e:d8:89:fe:a2:f4:6d:3d:ce:06:29:0e:0c:50:44:6b:c7:cc:
69:40:b9:53:23:c3:89:f3:7c:19:a9:11:28:23:99:fd:e0:c0:
89:b0:d3:f4:fa:5f:e0:8e:5a:d5:03:7d:83:88:b6:5b:33:d8:
02:45:12:57:c4:0f:41:30:67:9c:82:f8:8c:f7:f0:c3:45:4f:
c2:47:39:6b:ae:45:81:2b:94:a3:91:58:dc:30:00:ef:60:f3:
98:7d:7d:76:f6:3f:1f:67:b8:52:ef:26:e2:ea:a2:84:c0:d2:
17:3b:dd:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:28 2025 by rpki-client on console.sobornost.net