Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/23ad88-2f4c-4ef6-a9e5-5032a3ef254c/1/Uk__OZgps3cW-lHF28p4Fkxzez8.roa
File: Uk__OZgps3cW-lHF28p4Fkxzez8.roa (raw, json)
Hash identifier: xpOF8IhBwl9sbc7jkk5/9vqgBdRwATYGkdLVpY/CHdk=
Subject key identifier: 52:4F:FF:39:98:29:B3:77:16:FA:51:C5:DB:CA:78:16:4C:73:7B:3F
Certificate issuer: /CN=6aaee7bba32a8f93a4ccf5691c81d16d04b8508a
Certificate serial: 0195A43C86607ED8450413C1D3C25B6654EF
Authority key identifier: 6A:AE:E7:BB:A3:2A:8F:93:A4:CC:F5:69:1C:81:D1:6D:04:B8:50:8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aq7nu6Mqj5OkzPVpHIHRbQS4UIo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/23ad88-2f4c-4ef6-a9e5-5032a3ef254c/1/Uk__OZgps3cW-lHF28p4Fkxzez8.roa
Signing time: Mon 17 Mar 2025 13:13:04 +0000
ROA not before: Mon 17 Mar 2025 13:13:04 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 197701
IP address blocks: 185.228.57.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:a4:3c:86:60:7e:d8:45:04:13:c1:d3:c2:5b:66:54:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6aaee7bba32a8f93a4ccf5691c81d16d04b8508a
Validity
Not Before: Mar 17 13:13:04 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=524fff399829b37716fa51c5dbca78164c737b3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:91:ca:16:f4:ac:29:96:c4:cd:38:0f:43:1b:
5d:a0:2b:b3:7e:64:c0:d3:b1:e4:17:0e:8f:ad:8d:
f1:14:fa:38:93:59:d0:b5:27:87:41:99:38:15:02:
11:12:a9:42:8f:8f:eb:a7:cc:c5:e3:bd:a6:93:ee:
c6:0e:e6:fb:93:e6:11:a8:91:46:df:ff:f1:cd:c0:
e3:50:f7:05:af:72:1e:74:76:71:dd:9c:23:19:b0:
f1:8a:c9:bb:d9:62:f7:7e:4a:15:86:4b:bc:67:8e:
0c:52:c2:73:4d:26:58:eb:44:e3:3a:2d:29:1a:a5:
84:19:1d:12:29:96:16:cf:ca:de:ef:44:4b:da:58:
7c:d9:76:d8:32:e8:a6:4f:cf:43:9b:0d:f9:ba:dd:
bf:f6:cc:e5:ad:fb:4a:ee:d8:86:5a:7c:a5:13:19:
9d:e2:03:8e:7a:fb:d8:27:ca:59:06:db:a9:02:11:
1e:4c:33:33:2a:42:db:47:da:35:6c:4b:b4:b0:d5:
f0:bc:cc:c4:69:50:3e:a7:da:03:dd:f7:b1:4d:47:
ef:3e:81:0f:f5:d5:13:e1:10:f1:09:63:87:66:24:
0b:cf:83:58:31:61:56:0f:9a:75:9a:bc:93:a8:61:
7d:ae:9e:80:4d:47:a6:d6:8a:6c:46:96:05:52:a3:
59:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:4F:FF:39:98:29:B3:77:16:FA:51:C5:DB:CA:78:16:4C:73:7B:3F
X509v3 Authority Key Identifier:
keyid:6A:AE:E7:BB:A3:2A:8F:93:A4:CC:F5:69:1C:81:D1:6D:04:B8:50:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aq7nu6Mqj5OkzPVpHIHRbQS4UIo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/23ad88-2f4c-4ef6-a9e5-5032a3ef254c/1/Uk__OZgps3cW-lHF28p4Fkxzez8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/23ad88-2f4c-4ef6-a9e5-5032a3ef254c/1/aq7nu6Mqj5OkzPVpHIHRbQS4UIo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.228.57.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:1c:f1:0c:fd:6a:a0:cf:2f:a9:bd:b8:c7:21:ce:38:f9:5f:
ca:72:2b:95:8b:2c:ce:30:d5:81:b5:ec:89:46:6b:a4:fd:9d:
ab:4d:8f:b5:8e:a9:2f:47:b1:f2:61:77:fc:62:c5:02:3e:91:
1f:46:13:a7:4d:18:55:2e:5e:62:99:8f:67:17:f9:76:f3:7b:
98:98:78:24:12:90:38:ea:f3:32:8c:ea:46:71:c6:b9:23:e6:
c1:69:0c:13:cd:06:2e:0d:d2:7c:58:b5:2f:f6:e8:11:17:43:
67:96:25:86:b0:67:e4:fa:aa:98:fa:17:ac:39:59:26:fc:e0:
2d:ec:11:4e:d2:89:8a:05:e7:47:b4:d5:a7:64:f7:b1:7d:8c:
ab:6a:54:31:ea:cf:87:38:ca:ac:7d:dc:07:8d:86:64:24:c5:
b4:cb:21:44:90:a4:06:85:db:91:e6:5b:c4:20:65:2e:17:42:
5e:b5:63:43:6d:bb:5c:6f:b7:40:9e:7a:98:bd:58:bc:9d:95:
42:7e:ea:17:e5:57:e4:31:c2:71:c6:37:0a:c9:aa:ed:e5:df:
44:ee:6c:51:7a:e1:64:4e:02:6f:30:a6:33:96:01:6d:2f:63:
75:72:a3:a8:10:1b:f0:b5:db:94:fe:c2:19:24:ef:2f:c5:9a:
54:ef:e1:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:32 2025 by rpki-client on console.sobornost.net