Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/2dba5c-9a90-4052-a1eb-6a8477cb6c2a/1/PFBBA4lrKhNwCem9RKvfOnYfCDc.roa
File: PFBBA4lrKhNwCem9RKvfOnYfCDc.roa (raw, json)
Hash identifier: /EjlV3R/5VRkrIm2TPm8gVB2qkL97VXtQAiUN3hx+BU=
Subject key identifier: 3C:50:41:03:89:6B:2A:13:70:09:E9:BD:44:AB:DF:3A:76:1F:08:37
Certificate issuer: /CN=e61c07c951488f04cb3b0fd338af84d77e46bf52
Certificate serial: 01942444A558E086B3E592DA1B1E6A2E4BDD
Authority key identifier: E6:1C:07:C9:51:48:8F:04:CB:3B:0F:D3:38:AF:84:D7:7E:46:BF:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5hwHyVFIjwTLOw_TOK-E135Gv1I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/2dba5c-9a90-4052-a1eb-6a8477cb6c2a/1/PFBBA4lrKhNwCem9RKvfOnYfCDc.roa
Signing time: Wed 01 Jan 2025 23:47:45 +0000
ROA not before: Wed 01 Jan 2025 23:47:45 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 203435
IP address blocks: 185.135.2.0/24 maxlen: 24
205.201.55.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:44:a5:58:e0:86:b3:e5:92:da:1b:1e:6a:2e:4b:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e61c07c951488f04cb3b0fd338af84d77e46bf52
Validity
Not Before: Jan 1 23:47:45 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3c504103896b2a137009e9bd44abdf3a761f0837
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:be:92:73:63:10:a2:77:d4:c0:cb:d2:69:54:
83:ec:74:1f:41:99:b9:93:3f:61:8c:1d:19:50:f7:
92:ef:ad:ed:df:d1:3b:fb:0f:95:a9:c1:13:ae:5e:
48:d0:45:00:98:ea:21:77:92:ce:c8:82:74:83:61:
b7:1f:0c:45:9f:98:35:1f:62:b3:14:c7:01:22:cf:
3b:57:86:fd:9c:c9:d7:a0:69:0b:06:46:33:24:d1:
4d:7c:dc:48:45:7a:99:8f:35:e4:ad:12:14:41:28:
93:6b:00:a7:ae:5c:52:b1:3b:48:a9:41:68:cf:49:
ea:03:13:ea:9a:77:2f:f6:21:39:e5:38:70:47:db:
ee:4f:94:80:30:58:de:ba:eb:ce:2e:4c:c8:6a:71:
32:7c:5b:a0:56:3c:2f:46:7f:23:94:63:ec:dd:b4:
45:32:6a:b3:16:5d:8d:47:3e:76:2c:61:ae:52:34:
73:24:c8:9b:fe:0b:34:1a:6d:d3:15:b1:d9:1a:b0:
fb:dd:43:b0:de:42:ac:42:9a:78:e6:ef:80:ef:72:
cc:4f:4a:fc:87:15:b5:ff:07:69:22:21:2d:6c:86:
f9:b3:59:05:93:ce:0e:d1:e8:a7:b8:5b:0c:8a:56:
1a:75:a8:97:21:fe:0b:6b:59:e5:71:d2:06:2d:ae:
af:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:50:41:03:89:6B:2A:13:70:09:E9:BD:44:AB:DF:3A:76:1F:08:37
X509v3 Authority Key Identifier:
keyid:E6:1C:07:C9:51:48:8F:04:CB:3B:0F:D3:38:AF:84:D7:7E:46:BF:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5hwHyVFIjwTLOw_TOK-E135Gv1I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/2dba5c-9a90-4052-a1eb-6a8477cb6c2a/1/PFBBA4lrKhNwCem9RKvfOnYfCDc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/2dba5c-9a90-4052-a1eb-6a8477cb6c2a/1/5hwHyVFIjwTLOw_TOK-E135Gv1I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.135.2.0/24
205.201.55.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:47:8c:7e:83:35:b7:db:5f:72:93:e4:e1:e9:1d:b1:67:5b:
ec:ee:12:3f:bc:7f:38:d3:8e:e3:65:b5:33:33:7f:4c:90:ae:
86:df:6b:3a:64:e5:d8:8e:25:c3:ec:ae:e2:2d:23:07:ff:53:
d1:ab:ff:03:32:3c:38:fa:fa:cf:56:ad:b7:62:10:62:6f:01:
c8:40:46:fb:b8:b3:bb:64:39:a3:cd:b0:25:03:da:31:67:0c:
6e:79:10:fb:bb:4d:55:82:6f:bf:22:6f:44:7d:3c:64:cf:dc:
c7:a1:6f:d8:aa:5f:bc:51:d1:31:35:e4:4f:57:fc:c3:ad:69:
05:32:56:84:0b:df:f1:1e:bb:dc:e8:df:7d:fe:0a:ec:37:42:
79:37:82:c5:64:ef:e4:99:1b:a1:d8:f6:4f:e1:6e:c1:3a:3e:
08:7d:b2:1c:2e:04:c7:36:2f:30:d4:de:c4:c5:1b:9a:2e:d2:
e9:4b:d8:04:a6:ae:e7:00:cc:41:cc:a1:39:e6:de:28:02:ed:
30:ab:27:fb:1c:b9:0c:cb:96:89:95:20:48:00:fb:e8:c0:ee:
cf:2c:00:60:41:1c:20:a3:27:b0:8c:73:6d:e6:cd:9c:a0:59:
39:86:76:43:d9:ac:10:83:c5:86:12:85:87:16:f8:11:17:9a:
24:ef:77:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:47 2025 by rpki-client on console.sobornost.net