Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/d4635f-2195-4d94-8d16-470a93b3d3e7/1/70lNK5fBDtyKP1-Uoyim5AlDIhs.roa
File: 70lNK5fBDtyKP1-Uoyim5AlDIhs.roa (raw, json)
Hash identifier: j96/AeWDc3evjhceJaK+DEno6uY4hCQMsDxAEfX1LUM=
Subject key identifier: EF:49:4D:2B:97:C1:0E:DC:8A:3F:5F:94:A3:28:A6:E4:09:43:22:1B
Certificate issuer: /CN=bedb6a4ed393d8a3b7507f96a38bee0c4c8b477f
Certificate serial: 0194236A1D8BA755E8DAF0CF83831188996F
Authority key identifier: BE:DB:6A:4E:D3:93:D8:A3:B7:50:7F:96:A3:8B:EE:0C:4C:8B:47:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vttqTtOT2KO3UH-Wo4vuDEyLR38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/d4635f-2195-4d94-8d16-470a93b3d3e7/1/70lNK5fBDtyKP1-Uoyim5AlDIhs.roa
Signing time: Wed 01 Jan 2025 19:49:04 +0000
ROA not before: Wed 01 Jan 2025 19:49:04 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 35258
IP address blocks: 95.214.220.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:6a:1d:8b:a7:55:e8:da:f0:cf:83:83:11:88:99:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bedb6a4ed393d8a3b7507f96a38bee0c4c8b477f
Validity
Not Before: Jan 1 19:49:04 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ef494d2b97c10edc8a3f5f94a328a6e40943221b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:f4:16:f5:6d:23:d4:73:6d:27:c9:69:cb:9a:
ec:03:8f:0b:dd:46:28:14:2b:b5:79:24:d2:cf:a9:
92:07:72:62:bd:e9:c5:d5:85:56:5c:71:e9:14:90:
37:26:90:42:e0:ca:25:fb:93:ae:be:01:28:fd:90:
ab:53:f9:bf:9d:0c:55:7e:3e:38:60:cc:c9:6c:c4:
10:81:de:17:02:21:a0:4f:47:5d:b1:13:7e:ab:70:
d7:07:39:a8:b2:24:5f:55:30:83:95:a6:2d:52:32:
de:c3:2c:a6:d5:93:a6:eb:94:2a:2d:cc:e1:99:dc:
53:25:0d:df:15:1d:c8:23:42:1f:1b:17:3e:0e:6f:
5d:bf:e1:34:af:58:e2:09:0b:cc:3b:5c:37:3c:bd:
25:4a:a9:fe:1c:d8:c9:07:c0:d2:03:c7:d2:4d:ad:
0d:b7:03:4c:fa:41:36:90:a7:d5:17:f5:56:20:11:
4e:81:52:98:4d:45:38:ee:c9:37:b9:ac:85:8c:43:
ab:2b:d5:a6:fa:f4:83:f4:3c:1c:86:5b:e7:f9:be:
84:0f:3a:4b:e0:29:53:20:2c:cc:e5:5f:e5:e4:68:
a8:73:d1:73:37:af:1a:6d:c9:d7:50:85:e6:96:70:
6a:e2:11:ec:44:f9:aa:97:03:68:e1:b0:fc:28:28:
e8:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:49:4D:2B:97:C1:0E:DC:8A:3F:5F:94:A3:28:A6:E4:09:43:22:1B
X509v3 Authority Key Identifier:
keyid:BE:DB:6A:4E:D3:93:D8:A3:B7:50:7F:96:A3:8B:EE:0C:4C:8B:47:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vttqTtOT2KO3UH-Wo4vuDEyLR38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/d4635f-2195-4d94-8d16-470a93b3d3e7/1/70lNK5fBDtyKP1-Uoyim5AlDIhs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/d4635f-2195-4d94-8d16-470a93b3d3e7/1/vttqTtOT2KO3UH-Wo4vuDEyLR38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.214.220.0/22
Signature Algorithm: sha256WithRSAEncryption
94:42:48:81:56:c4:70:25:05:a4:2c:dd:ae:54:d6:c3:80:2c:
a0:3f:b0:e4:17:71:72:54:43:8e:cc:1a:15:ad:65:49:2f:dd:
8a:55:df:0c:f2:41:e9:b3:30:b3:96:48:76:cf:b2:ac:57:88:
67:1f:34:f5:a7:33:0f:7e:02:1e:f7:54:ee:51:a4:46:2e:34:
45:94:a7:27:df:aa:5b:f7:a1:a3:8b:67:2d:08:a2:7d:7e:a7:
f0:25:9c:a0:44:94:19:24:aa:94:34:7f:73:18:ae:ae:89:04:
9d:06:85:27:a8:a3:b3:1b:3b:47:d3:ba:c3:e9:66:44:41:1f:
f4:75:3a:f1:53:7b:93:ef:7b:dd:00:95:65:25:ad:11:f1:f8:
c8:69:7b:6d:22:cf:b1:1f:6c:6c:95:40:fa:be:58:b7:1f:a4:
44:8c:95:35:1d:fa:78:ab:87:e3:39:d9:5a:07:18:71:91:04:
f0:12:9d:a3:94:fa:2f:b1:35:d9:16:fc:43:34:69:27:39:8a:
22:cf:d7:0c:43:21:6e:d4:43:3a:8a:b9:38:66:9a:4d:5b:0a:
94:d7:54:2c:1e:d6:c3:87:a0:9d:3a:e7:fe:a2:6c:25:32:fb:
fe:a8:83:b5:06:6c:c1:57:c7:69:11:60:63:d0:5d:41:d9:ae:
7c:86:83:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:48 2025 by rpki-client on console.sobornost.net