Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/276bf7-7a15-4c56-ac56-7d4e68dd4cce/1/3tngVW8LtfBpGAaHjHlOFUm8OH8.roa
File: 3tngVW8LtfBpGAaHjHlOFUm8OH8.roa (raw, json)
Hash identifier: aEmicBF+rkX/VE/VudL8BN7DqijXENPur1ReRDbdgFc=
Subject key identifier: DE:D9:E0:55:6F:0B:B5:F0:69:18:06:87:8C:79:4E:15:49:BC:38:7F
Certificate issuer: /CN=28cb661a643968f3f81e7b119eeb96c50d2d39c7
Certificate serial: 019425223B76F7DF2D7BD9A8E8CDF4F88214
Authority key identifier: 28:CB:66:1A:64:39:68:F3:F8:1E:7B:11:9E:EB:96:C5:0D:2D:39:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KMtmGmQ5aPP4HnsRnuuWxQ0tOcc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/276bf7-7a15-4c56-ac56-7d4e68dd4cce/1/3tngVW8LtfBpGAaHjHlOFUm8OH8.roa
Signing time: Thu 02 Jan 2025 03:49:47 +0000
ROA not before: Thu 02 Jan 2025 03:49:47 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44545
IP address blocks: 185.212.92.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:22:3b:76:f7:df:2d:7b:d9:a8:e8:cd:f4:f8:82:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28cb661a643968f3f81e7b119eeb96c50d2d39c7
Validity
Not Before: Jan 2 03:49:47 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ded9e0556f0bb5f0691806878c794e1549bc387f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:29:31:55:05:7d:fd:98:da:94:47:24:02:52:
cb:87:e9:28:66:1f:37:46:27:aa:b7:e9:d1:a4:c0:
1a:e9:c7:e0:4e:a8:de:3c:1e:18:64:44:06:ad:ed:
0f:63:7c:f8:ed:7a:eb:24:4a:49:eb:a0:ec:c6:3c:
ed:83:1c:d5:07:1a:5e:ad:43:cd:93:ae:ca:6b:e8:
e9:af:cb:b4:e1:19:ad:c7:1d:11:8c:25:b2:59:ee:
a2:b5:a2:31:e8:8c:8f:6a:d8:c7:d6:21:d3:21:1e:
59:c5:89:f2:5a:3a:d8:2d:1f:59:a5:3b:a7:af:4c:
f7:cc:fc:71:b5:36:37:23:39:5d:67:cc:60:f0:56:
d5:4d:0f:a9:5a:12:4e:87:83:d2:bc:76:2c:f6:c8:
8e:18:61:ce:00:dd:e9:46:03:78:dd:9f:fc:ca:4c:
fb:d0:27:14:57:ed:04:fa:07:ff:97:e9:1a:e5:25:
35:03:cc:e2:d2:e0:a1:12:4b:46:0e:5a:2d:6f:aa:
a6:e8:11:f1:36:45:a6:4c:77:3d:57:4a:a5:11:43:
f6:8e:c9:04:cc:d6:91:9f:bf:8b:4d:7a:0a:68:05:
13:91:39:6f:47:6a:db:c0:18:5d:ae:5e:ff:b0:15:
24:3f:0a:c8:22:36:55:eb:b8:22:bd:32:3a:97:9c:
0a:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:D9:E0:55:6F:0B:B5:F0:69:18:06:87:8C:79:4E:15:49:BC:38:7F
X509v3 Authority Key Identifier:
keyid:28:CB:66:1A:64:39:68:F3:F8:1E:7B:11:9E:EB:96:C5:0D:2D:39:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KMtmGmQ5aPP4HnsRnuuWxQ0tOcc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/276bf7-7a15-4c56-ac56-7d4e68dd4cce/1/3tngVW8LtfBpGAaHjHlOFUm8OH8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/276bf7-7a15-4c56-ac56-7d4e68dd4cce/1/KMtmGmQ5aPP4HnsRnuuWxQ0tOcc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.212.92.0/22
Signature Algorithm: sha256WithRSAEncryption
40:27:b3:ba:1b:6a:40:23:85:8d:91:9a:df:f6:82:60:33:16:
58:6d:8b:cd:07:c5:c3:b4:0c:c7:29:5f:a1:25:e6:0f:c9:13:
fa:7f:96:48:40:a5:82:3b:17:53:73:ca:94:01:e4:46:ac:24:
c7:83:84:ce:9c:4f:ba:e9:17:4d:cd:8d:ee:d4:22:3c:8d:29:
4b:a6:b6:fd:98:e4:bc:76:72:c1:39:8a:39:f1:93:ef:91:c6:
e4:a7:e8:de:0c:f3:bf:a0:0b:0d:c6:d0:cf:ae:3c:6b:ca:27:
f9:d0:1a:6d:e6:6e:9c:05:f0:97:7e:69:6c:33:e3:e2:7f:af:
4f:30:4c:d3:2e:b7:3b:0e:bc:3e:17:5d:62:87:20:56:e2:a9:
51:2b:6e:d5:8b:e2:3a:9d:7a:80:62:fb:47:61:c5:5e:76:7c:
72:e5:64:04:c9:5d:bf:11:60:78:93:2c:db:64:47:5b:4d:05:
f8:f9:75:e0:b8:04:76:7c:f2:7c:06:c7:df:a2:73:1c:84:85:
ed:04:59:89:5b:ba:63:1d:1e:39:ae:c1:58:1c:3b:ee:64:d2:
a5:4e:29:41:6b:1a:56:ae:bd:87:f6:4d:dd:85:56:4d:c8:15:
82:fe:42:d9:1e:8d:66:3f:12:87:49:0e:23:be:2b:4f:35:af:
ca:06:68:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:44 2025 by rpki-client on console.sobornost.net