Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/ecdb09-d786-429c-ab24-2fb3db14e7a1/1/RB7y6640f4SnVimQzu6JWvm3C6k.roa
File: RB7y6640f4SnVimQzu6JWvm3C6k.roa (raw, json)
Hash identifier: uwidWxkKZEKWtlEveUv5MeKzL8ydf3kx4CybcObpyPA=
Subject key identifier: 44:1E:F2:EB:AE:34:7F:84:A7:56:29:90:CE:EE:89:5A:F9:B7:0B:A9
Certificate issuer: /CN=67dbf31d597746c9a1434706062a40653bc545c3
Certificate serial: 0195B4FD8B85885EB813872D07497F230868
Authority key identifier: 67:DB:F3:1D:59:77:46:C9:A1:43:47:06:06:2A:40:65:3B:C5:45:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z9vzHVl3RsmhQ0cGBipAZTvFRcM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/ecdb09-d786-429c-ab24-2fb3db14e7a1/1/RB7y6640f4SnVimQzu6JWvm3C6k.roa
Signing time: Thu 20 Mar 2025 19:17:49 +0000
ROA not before: Thu 20 Mar 2025 19:17:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 207560
IP address blocks: 185.225.226.0/24 maxlen: 24
185.237.166.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:b4:fd:8b:85:88:5e:b8:13:87:2d:07:49:7f:23:08:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67dbf31d597746c9a1434706062a40653bc545c3
Validity
Not Before: Mar 20 19:17:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=441ef2ebae347f84a7562990ceee895af9b70ba9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:8d:ca:36:b3:6c:ea:23:99:65:35:f7:bd:fb:
82:69:42:65:ba:b9:41:a1:f7:27:8f:8d:9a:42:06:
8d:1a:1c:3f:7a:7f:f3:b4:52:cf:61:32:17:11:c3:
02:70:5a:83:ee:6a:c0:75:8c:af:79:6a:89:8b:c7:
6e:d9:e6:83:f8:d6:d9:83:19:de:2d:0b:37:16:69:
86:50:62:0d:3b:ce:22:ac:9b:0b:66:13:55:0e:37:
2c:72:6a:1e:8c:96:b2:ca:55:59:cf:e4:6c:d2:e0:
1d:2f:82:70:b6:d3:8c:0d:84:46:37:6d:30:bf:8b:
45:47:28:fb:ce:2a:c5:bf:30:36:51:63:5d:72:ea:
d6:2d:17:0a:ad:c9:cf:dc:34:86:ed:8b:d7:00:11:
50:0d:aa:99:81:6d:cb:ac:00:f4:1d:a4:b3:ff:c0:
9c:63:e5:a6:92:65:19:5f:c0:92:2f:5f:ea:74:43:
ff:96:17:c4:7b:9a:a4:e2:a8:ac:89:c2:95:ab:17:
df:07:2a:38:c7:f7:bd:79:cc:e8:7d:29:57:69:4a:
89:ae:3a:b0:02:b1:06:95:9c:ad:7c:c5:d8:15:24:
cc:51:97:ef:b0:86:0d:60:00:f2:8c:4e:15:0e:30:
57:68:56:9f:ea:3b:72:7e:c6:5d:32:d4:73:ca:18:
dc:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:1E:F2:EB:AE:34:7F:84:A7:56:29:90:CE:EE:89:5A:F9:B7:0B:A9
X509v3 Authority Key Identifier:
keyid:67:DB:F3:1D:59:77:46:C9:A1:43:47:06:06:2A:40:65:3B:C5:45:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z9vzHVl3RsmhQ0cGBipAZTvFRcM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/ecdb09-d786-429c-ab24-2fb3db14e7a1/1/RB7y6640f4SnVimQzu6JWvm3C6k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/ecdb09-d786-429c-ab24-2fb3db14e7a1/1/Z9vzHVl3RsmhQ0cGBipAZTvFRcM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.225.226.0/24
185.237.166.0/24
Signature Algorithm: sha256WithRSAEncryption
51:79:0b:86:53:8a:96:35:cc:05:f2:14:77:ea:63:e9:9a:e2:
5c:37:cb:a2:47:18:62:54:f4:df:a6:68:c4:02:dc:2e:79:9b:
8c:c8:79:b9:03:ce:63:8a:2e:f4:fe:39:4d:d9:be:70:0d:33:
03:e9:60:28:2e:8c:f2:cc:a6:18:d2:13:23:8e:f6:79:24:88:
ad:78:af:3e:57:26:3a:e3:02:77:a8:30:f4:15:64:52:33:d7:
c2:5f:af:37:bc:04:49:8a:ad:b6:60:55:94:e1:e1:34:e4:70:
0d:dd:59:8a:49:27:2b:6a:3a:32:b5:ab:cb:a5:d8:3a:db:aa:
62:e0:56:aa:e2:4c:a5:4c:d8:df:c0:6e:9d:69:16:3d:5c:f0:
c8:6f:4e:a6:11:86:7a:48:44:f5:d5:d6:59:ac:b5:fc:7e:e4:
99:89:7b:d3:6e:91:9a:2c:25:b6:eb:4f:fc:88:4c:4b:fc:2c:
b6:51:92:f8:ab:ce:5e:dc:2b:95:e8:eb:9b:d6:93:1c:e1:91:
66:57:b9:cd:6d:90:ee:22:d0:44:bb:4f:c6:3c:95:0d:bd:6a:
ad:9d:ee:8b:2e:cc:35:53:1d:51:9c:c5:0d:fb:eb:24:30:1b:
bd:e4:e1:3a:71:c8:0a:51:d7:81:43:a6:03:f4:aa:36:a4:d9:
74:44:07:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:28 2025 by rpki-client on console.sobornost.net