Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/6256b6-36a1-4f2f-a0b9-411f5837fefa/1/tJWty-Myp1bMv-YOuzd4M1wDOVI.roa
File: tJWty-Myp1bMv-YOuzd4M1wDOVI.roa (raw, json)
Hash identifier: g/a3N7RSWTo3iJRyoUMcVa6AkUH9ej5k+J2S9ybi0Eg=
Subject key identifier: B4:95:AD:CB:E3:32:A7:56:CC:BF:E6:0E:BB:37:78:33:5C:03:39:52
Certificate issuer: /CN=a8e75802e7efb8653e3af59cbf1bc06538bca671
Certificate serial: 019422FB9EEED013E49A6523D465EF0CE8C0
Authority key identifier: A8:E7:58:02:E7:EF:B8:65:3E:3A:F5:9C:BF:1B:C0:65:38:BC:A6:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qOdYAufvuGU-OvWcvxvAZTi8pnE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/6256b6-36a1-4f2f-a0b9-411f5837fefa/1/tJWty-Myp1bMv-YOuzd4M1wDOVI.roa
Signing time: Wed 01 Jan 2025 17:48:22 +0000
ROA not before: Wed 01 Jan 2025 17:48:22 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212866
IP address blocks: 185.111.252.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fb:9e:ee:d0:13:e4:9a:65:23:d4:65:ef:0c:e8:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a8e75802e7efb8653e3af59cbf1bc06538bca671
Validity
Not Before: Jan 1 17:48:22 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b495adcbe332a756ccbfe60ebb3778335c033952
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:96:cc:0a:19:ed:10:47:b3:2a:b7:96:c4:a7:
c0:f0:6a:f2:3c:24:e6:06:ef:18:b4:b1:e6:84:72:
8e:53:e8:5e:0e:82:e7:77:7c:5a:d4:f7:05:de:b3:
0b:c4:c6:40:39:68:fa:e1:59:7c:c4:76:f8:68:2b:
a7:27:5b:0a:97:93:d5:17:5f:25:7c:32:b9:ed:7b:
8c:f6:92:95:74:fe:f0:4a:72:a5:6a:f5:5c:0f:0d:
6a:34:9e:1b:c2:41:51:6e:4d:c5:0a:0a:66:fb:f2:
e8:a5:f6:e9:04:c2:6b:98:0e:3c:d1:39:0d:c5:57:
93:68:30:f0:cd:2f:07:aa:3b:d5:d6:aa:e9:67:c1:
6f:ef:1f:89:88:37:70:6a:52:3e:8c:00:f3:2f:58:
db:12:f1:9d:02:76:fe:f1:77:a7:24:a7:7e:5e:4a:
1e:61:18:5d:b1:d1:3b:c6:f4:5e:29:75:e4:ef:17:
76:dc:3d:ee:a9:0f:e6:e9:0c:de:48:65:27:7d:01:
db:e2:e9:b4:4a:5a:a0:bb:5f:e5:8a:70:40:e4:23:
2d:9f:f5:07:3d:a3:ac:7c:35:f9:6a:bd:ff:8c:80:
cd:0b:3b:66:ca:52:e9:89:2f:1a:8f:d2:1f:50:bd:
73:c4:77:f5:23:d1:21:94:33:03:12:e3:ff:3f:2d:
ee:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:95:AD:CB:E3:32:A7:56:CC:BF:E6:0E:BB:37:78:33:5C:03:39:52
X509v3 Authority Key Identifier:
keyid:A8:E7:58:02:E7:EF:B8:65:3E:3A:F5:9C:BF:1B:C0:65:38:BC:A6:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qOdYAufvuGU-OvWcvxvAZTi8pnE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/6256b6-36a1-4f2f-a0b9-411f5837fefa/1/tJWty-Myp1bMv-YOuzd4M1wDOVI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/6256b6-36a1-4f2f-a0b9-411f5837fefa/1/qOdYAufvuGU-OvWcvxvAZTi8pnE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.111.252.0/22
Signature Algorithm: sha256WithRSAEncryption
94:43:8c:2c:0d:57:b3:9a:38:70:d5:f5:75:da:a1:8b:ba:0d:
1a:f3:c0:6c:7a:7e:74:90:d8:23:a6:a2:b2:59:d1:a1:7b:4d:
88:6a:c8:13:04:cc:26:02:d3:a0:cc:73:de:d8:03:99:eb:a9:
1b:91:7f:e8:27:6b:e0:fc:b2:f3:1f:78:02:7b:96:cd:4e:61:
30:82:28:1e:23:0d:ba:02:ab:bd:3a:2f:17:9c:4b:4c:72:70:
af:ff:09:34:d4:8b:a9:52:61:34:e8:df:32:f5:48:4a:45:2c:
1c:a3:1a:2b:44:5e:d2:31:c5:fe:ea:9b:18:97:56:73:c7:b7:
13:03:f0:ca:66:5d:46:72:5c:38:dd:c6:78:50:89:76:3e:f5:
7b:10:5b:9e:6a:52:96:5d:6e:d7:c2:35:10:7b:b2:06:0e:92:
0a:49:75:ae:02:bd:6e:05:c2:f5:38:15:b6:df:4e:ae:fa:2f:
e1:c7:ca:bf:bc:48:29:c8:a2:1a:e4:2f:51:b9:0c:a8:bc:70:
d0:88:da:e6:97:ce:4e:67:47:2a:ff:3d:a3:64:90:11:ad:43:
36:2c:cd:df:c5:fe:82:d1:2f:c8:c8:0b:cc:65:e7:01:6d:de:
64:02:0a:e2:09:55:b2:49:d0:d4:78:8b:2b:0d:c7:26:e3:a8:
36:ce:20:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:40 2025 by rpki-client on console.sobornost.net