Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/c51d08-8575-4bfb-af6e-01889cc03eba/1/fpTc9psmK7mTVjaSZo_0_yvBUR8.roa
File: fpTc9psmK7mTVjaSZo_0_yvBUR8.roa (raw, json)
Hash identifier: UgVFOd+QOH0JwGcBKTwjgIfFrgkGab/yr0muy+SkJYQ=
Subject key identifier: 7E:94:DC:F6:9B:26:2B:B9:93:56:36:92:66:8F:F4:FF:2B:C1:51:1F
Certificate issuer: /CN=567ac9bf0be91e0a48664ec8b6a6770957a21020
Certificate serial: 0194214436FFC8D3ECEEE4378FFC79E4016F
Authority key identifier: 56:7A:C9:BF:0B:E9:1E:0A:48:66:4E:C8:B6:A6:77:09:57:A2:10:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VnrJvwvpHgpIZk7ItqZ3CVeiECA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/c51d08-8575-4bfb-af6e-01889cc03eba/1/fpTc9psmK7mTVjaSZo_0_yvBUR8.roa
Signing time: Wed 01 Jan 2025 09:48:26 +0000
ROA not before: Wed 01 Jan 2025 09:48:26 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 137409
IP address blocks: 185.118.69.0/24 maxlen: 24
185.118.70.0/24 maxlen: 24
185.118.71.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:44:36:ff:c8:d3:ec:ee:e4:37:8f:fc:79:e4:01:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=567ac9bf0be91e0a48664ec8b6a6770957a21020
Validity
Not Before: Jan 1 09:48:26 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7e94dcf69b262bb993563692668ff4ff2bc1511f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:e4:7b:6b:a9:96:28:62:db:7b:a4:96:30:93:
67:95:4b:e6:66:e0:2f:b3:a5:b7:ff:9d:1e:b7:0d:
92:a5:4c:f5:e0:87:af:de:2e:a3:ee:8f:45:8b:4e:
c1:8a:58:e9:8e:a2:73:17:2d:de:a3:2c:eb:e4:b3:
b8:11:3c:36:65:d9:1d:fd:f1:97:23:a4:b1:02:fa:
48:ba:00:78:3f:0a:41:4d:62:a0:bf:6b:b8:28:05:
7c:31:1c:14:fb:9d:e7:a3:1d:4f:4a:39:60:d1:14:
4c:99:5a:84:b9:11:0b:86:8b:ac:c0:f5:0f:8e:08:
17:e5:c8:da:6b:57:12:cf:9f:20:53:5d:18:a4:21:
94:d6:7b:ec:c2:0c:cc:8c:aa:ba:bc:d2:30:d7:98:
fb:f2:ec:15:75:95:d3:a6:85:89:06:c0:6c:15:ee:
d7:91:85:4e:5e:76:cd:e7:e1:9e:81:02:af:88:92:
63:80:39:79:be:7a:0c:93:be:b3:37:03:20:17:fb:
68:eb:1f:c3:9e:39:5d:87:d2:dc:13:4a:2f:3d:72:
4a:73:81:c4:9f:bd:cc:53:62:48:bc:97:a0:a2:06:
43:5a:dd:8e:d6:d8:a9:5e:b6:39:a0:42:da:d7:f3:
1b:d5:a3:c0:02:f6:b3:6e:08:db:43:3c:44:b6:d1:
dc:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:94:DC:F6:9B:26:2B:B9:93:56:36:92:66:8F:F4:FF:2B:C1:51:1F
X509v3 Authority Key Identifier:
keyid:56:7A:C9:BF:0B:E9:1E:0A:48:66:4E:C8:B6:A6:77:09:57:A2:10:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VnrJvwvpHgpIZk7ItqZ3CVeiECA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c51d08-8575-4bfb-af6e-01889cc03eba/1/fpTc9psmK7mTVjaSZo_0_yvBUR8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c51d08-8575-4bfb-af6e-01889cc03eba/1/VnrJvwvpHgpIZk7ItqZ3CVeiECA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.118.69.0-185.118.71.255
Signature Algorithm: sha256WithRSAEncryption
1f:2c:d7:d0:64:50:96:98:4a:3c:a6:36:45:7c:69:80:2a:d5:
98:e4:93:53:04:a6:29:b2:18:f3:2d:96:21:25:9e:cb:76:86:
07:15:10:47:52:88:93:7a:01:a4:e0:88:62:53:03:95:1d:02:
32:4f:1b:f0:4c:68:e6:99:5a:69:04:20:41:c5:5d:5e:ac:51:
b1:a3:88:ae:d9:e8:d6:eb:c7:12:38:b3:18:ba:19:16:5d:7d:
5f:ed:e4:10:af:c2:2c:cb:e4:99:de:ee:7c:29:96:61:a0:a6:
0e:30:9a:54:95:e7:a1:b3:58:2a:6b:0c:59:7f:d5:c3:3b:6b:
f3:df:66:43:4e:ce:09:8a:64:eb:91:79:f5:a2:f2:f2:ce:96:
64:c5:71:9e:44:c7:dd:a8:0c:63:77:f8:91:39:62:5b:18:86:
6a:73:3b:a3:2d:d3:6f:25:2c:37:31:73:7b:3d:f3:c9:68:60:
e6:7d:ac:d1:73:17:07:c3:c6:a1:09:63:d9:97:80:70:d1:a5:
94:70:46:cf:34:ac:c1:94:ed:44:cb:f8:4f:1f:27:09:9a:ca:
2e:3f:f7:d6:70:22:f8:0a:d4:07:32:b7:bd:58:43:e3:4f:57:
00:77:ec:e6:39:32:e2:49:06:60:1e:29:97:62:34:27:cd:09:
f2:ae:61:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:29 2025 by rpki-client on console.sobornost.net