Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/d8776b-284a-4f78-a71c-4574062aecb5/1/RdGYazcblxjw10A1GXBrScv2ZUw.roa
File: RdGYazcblxjw10A1GXBrScv2ZUw.roa (raw, json)
Hash identifier: cthxVd9Tm4tHhJQTv20dl7UKI0DsMHEY2NNEIm16wNQ=
Subject key identifier: 45:D1:98:6B:37:1B:97:18:F0:D7:40:35:19:70:6B:49:CB:F6:65:4C
Certificate issuer: /CN=feeff92fc9fe53547b7e3be1f83608809c4566c9
Certificate serial: 0194258ED35AA006053D76365611282BC9F2
Authority key identifier: FE:EF:F9:2F:C9:FE:53:54:7B:7E:3B:E1:F8:36:08:80:9C:45:66:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_u_5L8n-U1R7fjvh-DYIgJxFZsk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/d8776b-284a-4f78-a71c-4574062aecb5/1/RdGYazcblxjw10A1GXBrScv2ZUw.roa
Signing time: Thu 02 Jan 2025 05:48:24 +0000
ROA not before: Thu 02 Jan 2025 05:48:24 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206655
IP address blocks: 185.107.204.0/22 maxlen: 24
185.200.180.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8e:d3:5a:a0:06:05:3d:76:36:56:11:28:2b:c9:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=feeff92fc9fe53547b7e3be1f83608809c4566c9
Validity
Not Before: Jan 2 05:48:24 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=45d1986b371b9718f0d7403519706b49cbf6654c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:6a:d9:09:aa:6d:8b:ad:44:ef:a8:3e:33:31:
4d:0d:96:4d:60:a7:64:6e:8a:21:20:80:ba:9d:d4:
d4:c5:36:f0:ce:9a:3d:36:2c:06:b7:bc:b8:3f:7e:
20:68:05:c0:8f:e5:5f:51:82:0a:94:50:2a:e1:18:
3d:1e:5e:e7:74:82:f9:4d:5f:12:ee:04:de:6f:ea:
2c:23:ad:4b:a0:d4:4f:aa:f6:b5:40:b4:6f:3c:2a:
40:a0:1a:1e:5b:60:3e:ca:41:b6:31:df:dd:0f:f1:
2f:3f:4f:60:7a:54:f5:e8:53:fc:a1:63:c0:bb:a2:
29:4c:bf:04:cd:5d:dc:53:cd:e9:b4:1b:45:8a:72:
70:77:9f:d9:7d:c6:06:78:bb:c7:56:bc:c8:2d:e3:
5a:65:cc:b4:37:03:32:6a:b8:c1:dd:6b:cd:8b:8f:
e4:d2:b6:5d:c6:a4:a8:5b:ce:9d:13:b2:12:3e:ef:
e9:3c:69:f9:9f:6b:9a:b9:a4:02:03:b9:b0:43:dc:
51:cb:4b:96:fe:88:8f:29:2f:46:c3:65:4f:87:a8:
61:94:6a:23:5a:d1:09:b2:c5:74:39:ab:a9:2a:df:
05:07:23:ba:d9:6d:e0:6d:ff:f4:9b:1e:99:37:7b:
95:ff:5b:a3:8f:a6:3f:29:b0:dd:6d:50:b0:37:d9:
af:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:D1:98:6B:37:1B:97:18:F0:D7:40:35:19:70:6B:49:CB:F6:65:4C
X509v3 Authority Key Identifier:
keyid:FE:EF:F9:2F:C9:FE:53:54:7B:7E:3B:E1:F8:36:08:80:9C:45:66:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_u_5L8n-U1R7fjvh-DYIgJxFZsk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/d8776b-284a-4f78-a71c-4574062aecb5/1/RdGYazcblxjw10A1GXBrScv2ZUw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/d8776b-284a-4f78-a71c-4574062aecb5/1/_u_5L8n-U1R7fjvh-DYIgJxFZsk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.107.204.0/22
185.200.180.0/22
Signature Algorithm: sha256WithRSAEncryption
77:91:98:d7:28:21:5d:2d:32:3a:f2:b0:d9:d2:fe:79:78:41:
8e:c7:6a:3c:72:7e:c9:ee:ad:07:50:91:fc:de:05:9e:11:a9:
ec:e2:99:4d:8d:65:7a:07:c3:b8:19:cf:fd:7d:97:70:38:f5:
d3:54:fe:c3:d8:e8:2b:37:94:17:e4:a6:7e:ef:d3:a9:96:a0:
51:7b:78:d7:74:64:ca:88:71:18:f5:18:51:16:7f:af:c0:0f:
d9:34:00:5d:68:c2:9d:8f:dc:fb:56:66:a9:92:7a:81:a7:2c:
36:9a:3b:6e:c7:03:29:1d:0d:d6:3b:78:d3:dc:52:b7:75:96:
7e:d2:9c:95:ac:1d:e6:86:91:2e:3c:a5:0c:ee:dd:f8:fb:de:
e8:0a:cc:8c:39:b9:f8:33:9f:d5:d1:16:d0:a2:f3:dc:7f:82:
d0:ad:15:78:9a:92:a6:56:1b:76:85:c4:fa:5d:32:29:85:b0:
c3:48:12:0f:6f:2b:2b:18:c2:67:e3:c2:10:8f:d9:c7:7a:1a:
92:be:bc:d2:7f:99:60:49:95:f5:82:49:9a:8d:79:7b:bc:69:
16:18:37:a9:a3:fa:61:60:f5:9c:92:d8:48:51:78:11:6f:88:
c1:58:4c:99:79:fb:6c:d3:1c:30:ae:f4:e3:b9:db:39:b9:1f:
4a:df:18:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:28 2025 by rpki-client on console.sobornost.net