Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/7ed7b1-b8f3-43f3-96e3-1dc54d1c03a3/1/DGY9DRUJrYLpsverneGppUeA19c.roa
File: DGY9DRUJrYLpsverneGppUeA19c.roa (raw, json)
Hash identifier: BCikbUDAbYpSarrQzlAQJBis5jeq62TU6gwB+aPdaEk=
Subject key identifier: 0C:66:3D:0D:15:09:AD:82:E9:B2:F7:AB:9D:E1:A9:A5:47:80:D7:D7
Certificate issuer: /CN=4c3789ecf67e04298c5ee44c67d8fb7f5d6d95a1
Certificate serial: 019421445F6820C29151D5EAA5DD8F384400
Authority key identifier: 4C:37:89:EC:F6:7E:04:29:8C:5E:E4:4C:67:D8:FB:7F:5D:6D:95:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TDeJ7PZ-BCmMXuRMZ9j7f11tlaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/7ed7b1-b8f3-43f3-96e3-1dc54d1c03a3/1/DGY9DRUJrYLpsverneGppUeA19c.roa
Signing time: Wed 01 Jan 2025 09:48:36 +0000
ROA not before: Wed 01 Jan 2025 09:48:36 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 47280
IP address blocks: 185.191.151.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:44:5f:68:20:c2:91:51:d5:ea:a5:dd:8f:38:44:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c3789ecf67e04298c5ee44c67d8fb7f5d6d95a1
Validity
Not Before: Jan 1 09:48:36 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0c663d0d1509ad82e9b2f7ab9de1a9a54780d7d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:4f:56:70:40:07:ab:08:91:f5:48:8d:bd:51:
cd:c2:c8:a4:8e:43:45:93:13:27:a7:ea:a1:58:4a:
39:11:75:cb:69:b2:7e:8a:d5:dc:8f:a9:33:26:b7:
97:52:52:5d:52:7d:30:56:47:4c:2b:f8:58:07:f2:
63:36:39:ee:60:6f:15:1e:66:15:de:53:82:6b:3a:
4e:a6:17:65:38:9a:d3:a8:1a:63:71:82:0d:ed:e8:
3c:5f:5b:0b:a1:1b:1a:d1:3b:78:aa:ae:79:48:2f:
51:6d:ca:3c:6b:2c:ba:86:f8:37:2f:8e:e2:d9:a7:
4f:41:15:41:ec:a8:66:6d:9c:45:9b:6b:e8:97:ec:
75:fc:ea:89:f4:91:10:f7:96:fb:7d:28:52:24:d9:
5a:f6:9b:82:d2:e4:6d:25:97:f4:07:e1:93:7c:fc:
b3:37:0c:46:2d:ef:35:ee:6f:90:32:7a:8d:99:bf:
88:fe:a2:dd:7e:7d:61:ae:61:9f:0b:7d:0e:fe:ca:
70:c8:c6:b2:71:d4:91:15:6d:56:7b:2c:50:25:3f:
5b:fa:a4:5a:ff:a2:b3:c1:55:60:18:02:2b:51:16:
f8:55:40:7d:7f:3d:b7:51:f4:04:65:ad:b5:c1:c4:
ff:b5:22:47:81:83:77:99:95:a1:5c:51:91:ca:88:
6c:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:66:3D:0D:15:09:AD:82:E9:B2:F7:AB:9D:E1:A9:A5:47:80:D7:D7
X509v3 Authority Key Identifier:
keyid:4C:37:89:EC:F6:7E:04:29:8C:5E:E4:4C:67:D8:FB:7F:5D:6D:95:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TDeJ7PZ-BCmMXuRMZ9j7f11tlaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/7ed7b1-b8f3-43f3-96e3-1dc54d1c03a3/1/DGY9DRUJrYLpsverneGppUeA19c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/7ed7b1-b8f3-43f3-96e3-1dc54d1c03a3/1/TDeJ7PZ-BCmMXuRMZ9j7f11tlaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.191.151.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:e5:ca:f1:54:84:85:33:6c:78:4a:f1:44:2a:a6:c2:c9:7d:
c5:86:43:a9:35:99:92:c8:d2:8d:c7:06:a9:fa:03:e4:9b:17:
b3:7e:90:53:d3:f5:65:bc:df:31:bc:a6:50:3f:b8:4f:5e:b8:
c7:74:19:1b:1c:64:70:30:29:ad:12:6f:4f:66:8f:34:e7:32:
c3:9b:4d:b4:e0:d6:bf:16:b2:63:05:93:9d:64:c5:73:97:e2:
35:86:36:05:8c:b9:3d:23:d4:e2:2d:b9:7c:36:3a:a1:16:b5:
ac:72:94:11:81:cc:d2:aa:81:22:3f:5b:27:b7:11:19:51:38:
f7:a8:6c:92:22:dc:7e:77:0a:81:25:a9:9f:fe:df:e6:8e:fa:
75:1c:14:c8:bf:87:d8:70:66:6c:89:c1:e4:e9:b2:42:74:63:
a0:83:c9:d1:8e:45:01:9d:8a:d6:3d:ae:d0:a8:b5:db:25:00:
76:44:5f:89:4f:e5:00:b2:0f:02:ae:7b:da:03:e2:8a:be:e5:
e1:40:d0:aa:a9:6f:e0:1f:9e:7f:20:90:cc:a8:eb:51:e1:c3:
4b:5f:a4:a5:75:77:bf:b2:6f:51:5a:d7:0d:6c:ba:3c:53:6c:
0a:2b:81:52:b3:cc:13:86:50:a7:9c:45:49:2b:f1:8c:1e:30:
5a:be:86:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:49 2025 by rpki-client on console.sobornost.net