Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/17914b-ca63-4980-8740-8d106483e36e/1/P7RY9lh2DjXnqCca2-tY01lrUH0.roa
File: P7RY9lh2DjXnqCca2-tY01lrUH0.roa (raw, json)
Hash identifier: +jPRJQIba+h4xHf7Zl1n+Q824aM0dkkFMJs23vl+wfk=
Subject key identifier: 3F:B4:58:F6:58:76:0E:35:E7:A8:27:1A:DB:EB:58:D3:59:6B:50:7D
Certificate issuer: /CN=ffc4ce78a4d18ca6ef3108f4a365906da6b6b7f3
Certificate serial: 01941FFA58942005FB5D58698EA29BF61BB3
Authority key identifier: FF:C4:CE:78:A4:D1:8C:A6:EF:31:08:F4:A3:65:90:6D:A6:B6:B7:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_8TOeKTRjKbvMQj0o2WQbaa2t_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/17914b-ca63-4980-8740-8d106483e36e/1/P7RY9lh2DjXnqCca2-tY01lrUH0.roa
Signing time: Wed 01 Jan 2025 03:48:07 +0000
ROA not before: Wed 01 Jan 2025 03:48:07 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 202005
IP address blocks: 185.77.184.0/22 maxlen: 22
185.77.184.0/24 maxlen: 24
185.77.185.0/24 maxlen: 24
185.77.186.0/24 maxlen: 24
185.77.187.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:58:94:20:05:fb:5d:58:69:8e:a2:9b:f6:1b:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ffc4ce78a4d18ca6ef3108f4a365906da6b6b7f3
Validity
Not Before: Jan 1 03:48:07 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3fb458f658760e35e7a8271adbeb58d3596b507d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:56:46:97:d9:6c:c9:fa:8f:fd:25:ac:7c:e9:
36:32:5c:9d:56:0c:ff:c6:3d:8a:91:3a:0a:6c:07:
a4:8f:0d:71:39:c6:44:de:2f:8e:20:cc:0c:87:25:
e6:a0:ab:66:87:ee:d5:a1:63:a9:67:dc:8d:cb:29:
b0:d7:22:f5:4d:1a:f5:8d:34:27:14:1f:f5:bf:5d:
2e:3c:92:f2:9a:14:56:17:44:72:dd:77:6b:c7:5a:
ee:04:26:9b:0a:3d:ae:e8:00:a3:46:14:7f:b5:9d:
8a:41:b6:28:65:a1:fb:7a:60:86:c3:8a:97:2d:bd:
f1:ba:b0:c8:28:eb:3a:ba:4b:08:9f:8a:21:4d:49:
5b:92:3c:e2:02:3d:7c:49:e4:5d:70:3b:12:28:44:
1e:97:1f:14:c6:fc:ed:c4:c1:67:6f:13:f8:f1:a6:
9a:ff:14:26:c4:cf:65:c3:74:51:a4:b1:fc:fc:fe:
a1:1b:e6:1b:ff:c9:8e:0b:df:f2:a7:ec:f2:6c:a9:
75:fa:f5:93:c8:4f:94:5b:86:8b:2c:87:44:3a:ff:
e8:f7:38:59:72:9b:de:52:33:18:a4:b9:bb:ea:af:
ea:a2:ae:ec:d0:c1:94:40:15:d7:99:16:0d:e1:11:
e3:4c:bf:2c:91:12:c8:68:e3:18:96:ee:52:29:77:
5a:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:B4:58:F6:58:76:0E:35:E7:A8:27:1A:DB:EB:58:D3:59:6B:50:7D
X509v3 Authority Key Identifier:
keyid:FF:C4:CE:78:A4:D1:8C:A6:EF:31:08:F4:A3:65:90:6D:A6:B6:B7:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_8TOeKTRjKbvMQj0o2WQbaa2t_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/17914b-ca63-4980-8740-8d106483e36e/1/P7RY9lh2DjXnqCca2-tY01lrUH0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/17914b-ca63-4980-8740-8d106483e36e/1/_8TOeKTRjKbvMQj0o2WQbaa2t_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.77.184.0/22
Signature Algorithm: sha256WithRSAEncryption
61:9d:82:be:fd:14:aa:d8:e1:0c:55:6a:35:e3:7f:4b:fb:2d:
48:43:4f:d1:e2:33:3d:15:ca:c1:f6:e0:e0:84:a2:c5:2c:c6:
f2:6b:25:61:f2:24:9b:1a:d7:5b:f9:36:3b:b1:2c:f1:43:e7:
9c:5b:27:78:ab:c0:1b:13:71:8d:de:76:01:71:86:11:e5:fa:
40:40:22:c4:73:6d:bd:b1:3f:6a:5d:79:49:c0:19:dd:27:c7:
eb:00:c7:45:ee:d3:67:83:fd:81:c5:a9:51:8d:97:2f:49:8d:
02:cb:ba:b7:df:5d:c4:43:c2:c1:0e:ed:75:13:dc:87:ac:ef:
87:bf:32:27:3e:93:2f:06:94:0b:c0:de:d4:e9:ee:24:de:c7:
9c:85:8e:32:50:df:21:b0:62:db:51:b7:c8:36:1c:73:a0:aa:
1b:0c:2d:3b:2a:83:16:86:0a:66:43:00:44:7c:35:ab:30:fa:
6f:99:f7:e7:46:cc:d7:38:9e:ff:f3:89:2b:92:de:0a:0a:53:
e8:a9:25:bf:89:e4:ea:1e:9f:53:6d:a0:c9:83:c3:d0:67:85:
61:53:6f:68:ff:fc:f9:36:34:44:e4:13:31:c5:df:16:01:27:
69:e2:ae:f1:e1:73:dd:91:01:75:3a:6f:a4:67:2c:6d:22:1e:
fa:bd:25:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:33 2025 by rpki-client on console.sobornost.net