Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/dcff3a-8d3d-47ce-a0e4-2f49efc5ccb0/1/y7o-lUvuIs5VxkfuF0VMDPEaKG8.roa
File: y7o-lUvuIs5VxkfuF0VMDPEaKG8.roa (raw, json)
Hash identifier: nsJREZcrWUijQ6/mIyur3A5TZk93qQs68UFsbnGedCw=
Subject key identifier: CB:BA:3E:95:4B:EE:22:CE:55:C6:47:EE:17:45:4C:0C:F1:1A:28:6F
Certificate issuer: /CN=08357f5bee185fc61157086d5985485369b2acd2
Certificate serial: 0195B3385B407C6BDBCB0F17A8D5E2D59075
Authority key identifier: 08:35:7F:5B:EE:18:5F:C6:11:57:08:6D:59:85:48:53:69:B2:AC:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CDV_W-4YX8YRVwhtWYVIU2myrNI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/dcff3a-8d3d-47ce-a0e4-2f49efc5ccb0/1/y7o-lUvuIs5VxkfuF0VMDPEaKG8.roa
Signing time: Thu 20 Mar 2025 11:02:49 +0000
ROA not before: Thu 20 Mar 2025 11:02:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 202626
IP address blocks: 185.144.174.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:b3:38:5b:40:7c:6b:db:cb:0f:17:a8:d5:e2:d5:90:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08357f5bee185fc61157086d5985485369b2acd2
Validity
Not Before: Mar 20 11:02:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=cbba3e954bee22ce55c647ee17454c0cf11a286f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:ef:43:96:22:a7:06:e5:c4:8c:54:31:e7:0a:
8e:3b:21:a7:9b:39:e4:12:53:0e:48:d2:e3:6e:76:
6e:ad:87:31:5a:86:97:8f:0d:b0:4f:55:c1:55:64:
d9:d3:f5:86:89:ea:e9:87:56:04:87:95:5c:37:bd:
a7:b4:d5:0c:19:d9:35:cb:4a:af:56:83:f1:db:14:
2a:f9:54:f1:5f:a0:46:c3:26:36:1c:63:ed:37:a8:
d0:3b:a1:9f:f1:70:00:bb:e3:50:7c:d8:e7:83:3d:
06:53:4f:83:1b:c3:78:2b:83:fb:69:88:32:8c:c3:
af:fc:73:b3:cb:c3:0f:0d:e4:19:05:a3:be:7b:bb:
66:d0:17:d9:b3:b1:ae:5f:be:8b:ab:3c:ca:88:04:
a2:9e:2c:b1:39:13:8d:b5:c6:6e:36:2d:c6:e6:0e:
60:6e:c3:bd:58:37:3f:f8:b0:a0:4a:b3:bd:21:2e:
ef:22:b9:4c:fc:ef:79:9d:81:d4:be:c5:3b:f7:6a:
08:ac:97:50:bf:41:bd:d9:2c:88:ae:2f:8f:10:59:
28:5b:d9:46:14:10:8b:55:42:a9:0c:72:43:29:79:
9d:d4:6c:ae:b2:83:71:2f:48:7c:7e:7d:e3:19:1b:
7d:31:a4:8d:b6:f2:7a:ac:54:93:30:eb:1c:04:34:
d2:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:BA:3E:95:4B:EE:22:CE:55:C6:47:EE:17:45:4C:0C:F1:1A:28:6F
X509v3 Authority Key Identifier:
keyid:08:35:7F:5B:EE:18:5F:C6:11:57:08:6D:59:85:48:53:69:B2:AC:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CDV_W-4YX8YRVwhtWYVIU2myrNI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/dcff3a-8d3d-47ce-a0e4-2f49efc5ccb0/1/y7o-lUvuIs5VxkfuF0VMDPEaKG8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/dcff3a-8d3d-47ce-a0e4-2f49efc5ccb0/1/CDV_W-4YX8YRVwhtWYVIU2myrNI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.144.174.0/23
Signature Algorithm: sha256WithRSAEncryption
08:bf:93:24:4e:e9:18:58:d9:63:a6:8c:04:c2:ef:7f:61:7e:
82:c9:e4:f7:d4:9e:60:cf:3f:63:d4:55:66:e6:01:84:f4:90:
86:6d:1c:59:98:85:b9:4b:a2:51:1e:62:ff:62:6d:27:f0:c5:
d2:68:b4:93:b2:99:db:ba:b7:ca:52:1e:a6:51:9b:9d:0f:35:
15:0a:65:72:19:f2:b7:8b:9d:2c:ab:82:0e:27:a8:fe:ad:06:
4b:51:2b:79:0f:34:46:d4:e3:92:be:66:22:4e:b9:24:07:3c:
35:16:bc:da:08:fa:85:f8:32:03:0e:92:e8:a6:c5:85:78:37:
4e:9b:3d:f3:e8:ba:db:a5:d7:1f:a1:9d:a9:f9:b0:d2:24:d7:
67:cc:76:23:8e:9d:10:30:b5:3f:71:d8:5a:b1:4e:f7:15:2c:
06:07:90:9b:30:6b:84:16:05:bb:50:d4:7a:95:97:e3:7c:cd:
77:8b:78:22:81:c5:92:08:f0:f2:db:95:e6:e4:ea:24:92:45:
0e:e6:ae:76:7e:5f:48:bb:c2:2f:f3:3b:1d:48:4a:3d:1c:9a:
34:60:4f:8d:69:4c:d1:39:57:08:33:64:3a:88:0b:ea:ce:fc:
da:6f:b8:b4:3a:13:1d:c4:24:f2:c3:43:f8:b3:b2:2c:13:79:
68:6a:fc:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:40 2025 by rpki-client on console.sobornost.net