Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/c078fd-d2b6-46ba-a6ba-44c3b75d3f33/1/BCfHRxvaBlgRu7FF6R1aFrqf-D4.roa
File: BCfHRxvaBlgRu7FF6R1aFrqf-D4.roa (raw, json)
Hash identifier: jY82l74QOduMSK8Hp/MMojju94Gfvr7fCtUmoiSODw8=
Subject key identifier: 04:27:C7:47:1B:DA:06:58:11:BB:B1:45:E9:1D:5A:16:BA:9F:F8:3E
Certificate issuer: /CN=9d2d86c028bfc38e875455cf82689a36265302c2
Certificate serial: 01941F8C0D9CABFB5AD85D0DF5D3239A4785
Authority key identifier: 9D:2D:86:C0:28:BF:C3:8E:87:54:55:CF:82:68:9A:36:26:53:02:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nS2GwCi_w46HVFXPgmiaNiZTAsI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/c078fd-d2b6-46ba-a6ba-44c3b75d3f33/1/BCfHRxvaBlgRu7FF6R1aFrqf-D4.roa
Signing time: Wed 01 Jan 2025 01:47:39 +0000
ROA not before: Wed 01 Jan 2025 01:47:39 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 205321
IP address blocks: 185.217.248.0/22 maxlen: 24
2a0c:af00::/29 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:0d:9c:ab:fb:5a:d8:5d:0d:f5:d3:23:9a:47:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2d86c028bfc38e875455cf82689a36265302c2
Validity
Not Before: Jan 1 01:47:39 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0427c7471bda065811bbb145e91d5a16ba9ff83e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:5d:3f:a6:52:49:51:78:8d:6f:22:46:f3:11:
ed:48:83:13:7b:1b:e7:9c:9c:b4:df:bf:9d:8f:18:
80:2f:f0:d5:a3:a2:51:b9:3e:7c:3b:d7:0c:7d:6f:
15:df:67:cb:ae:4c:67:c4:95:0f:d5:85:95:47:16:
8a:a5:53:0e:23:6d:93:07:8f:8d:ce:5d:cd:7f:9a:
ae:fa:42:89:29:a9:a3:30:68:fb:9c:3c:a7:76:5f:
84:b9:5f:e1:bc:17:09:90:84:2d:26:0f:79:a3:7e:
e6:9c:09:b0:33:40:0f:a6:8a:d9:6c:27:cc:75:b5:
92:fd:6a:e8:1f:27:88:19:b8:fd:99:4d:7c:3a:73:
cb:7f:e7:54:cd:b0:ab:8c:f0:1b:7a:21:d8:12:e1:
a0:2b:68:0e:bb:3b:d5:51:72:4b:b3:ce:94:61:7b:
9f:ec:b5:d1:b5:83:13:0c:1b:a5:62:05:c6:a4:f9:
ca:78:0d:78:4f:42:96:fe:2e:54:f2:70:f7:4d:b3:
5b:ca:74:7f:43:03:51:8f:71:9c:15:56:be:33:22:
eb:c8:7e:3f:00:05:53:49:cb:e2:d6:d9:c1:00:80:
ae:e1:50:38:d1:28:cc:8d:47:d9:8e:ab:89:5e:97:
54:9a:e5:e8:21:b2:8d:c0:8f:c2:8a:1a:b3:b9:0b:
91:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:27:C7:47:1B:DA:06:58:11:BB:B1:45:E9:1D:5A:16:BA:9F:F8:3E
X509v3 Authority Key Identifier:
keyid:9D:2D:86:C0:28:BF:C3:8E:87:54:55:CF:82:68:9A:36:26:53:02:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nS2GwCi_w46HVFXPgmiaNiZTAsI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/c078fd-d2b6-46ba-a6ba-44c3b75d3f33/1/BCfHRxvaBlgRu7FF6R1aFrqf-D4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/c078fd-d2b6-46ba-a6ba-44c3b75d3f33/1/nS2GwCi_w46HVFXPgmiaNiZTAsI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.217.248.0/22
IPv6:
2a0c:af00::/29
Signature Algorithm: sha256WithRSAEncryption
a0:88:0f:ef:6b:cc:86:f5:76:a1:8d:44:e1:a2:af:5a:b2:f1:
d8:2a:03:86:58:e2:3a:c3:44:46:03:65:c3:42:5c:9a:b7:f7:
57:4f:2c:8e:73:67:09:4f:d3:3a:d3:53:49:68:6d:fa:21:61:
bb:31:24:40:76:37:8c:16:e4:44:1b:82:8a:ea:28:95:50:46:
c0:13:c4:4d:ff:70:b5:ce:5e:ba:00:31:49:c3:c1:18:db:93:
c9:c5:b6:e4:16:4b:13:d8:45:23:65:7e:7e:10:45:e3:f2:07:
8b:87:cc:eb:63:67:53:b7:30:97:11:fb:ad:67:1d:39:66:fb:
bf:f2:e8:54:09:1d:24:68:1a:7c:30:d3:1a:55:2d:a4:ca:08:
da:81:28:4a:b8:d3:71:9a:1c:6f:49:79:f9:15:9d:3a:5e:8e:
da:3e:1a:5b:4f:83:07:bd:7b:ac:64:74:a9:54:ac:20:53:a9:
ce:21:91:ec:5a:87:ef:bb:8f:46:08:df:96:0f:fc:03:c4:1d:
48:04:a0:b5:b7:ff:2f:a2:51:6a:f4:1e:d0:b6:c8:3b:17:51:
66:0f:82:a7:39:4c:d1:93:01:10:bd:6e:73:2e:86:87:31:2b:
90:97:05:0f:73:40:e0:05:8d:cc:38:85:1e:ce:46:8f:20:d9:
54:11:b7:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:43 2025 by rpki-client on console.sobornost.net