Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/00e33e-fd74-4583-984e-c6b84cc58610/1/0pJ-rwxVG5S_Uu-XF3E61P1dlA8.roa
File: 0pJ-rwxVG5S_Uu-XF3E61P1dlA8.roa (raw, json)
Hash identifier: dUKNac33kPa6HT3Uru5uUtqJz9KxFM++FuLr8tWIwQw=
Subject key identifier: D2:92:7E:AF:0C:55:1B:94:BF:52:EF:97:17:71:3A:D4:FD:5D:94:0F
Certificate issuer: /CN=04a5ec5f52668be50b4518b687cf8bd95930ae39
Certificate serial: 01942067F00DB41A91472E8AA100BE5A533A
Authority key identifier: 04:A5:EC:5F:52:66:8B:E5:0B:45:18:B6:87:CF:8B:D9:59:30:AE:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BKXsX1Jmi-ULRRi2h8-L2Vkwrjk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/00e33e-fd74-4583-984e-c6b84cc58610/1/0pJ-rwxVG5S_Uu-XF3E61P1dlA8.roa
Signing time: Wed 01 Jan 2025 05:47:50 +0000
ROA not before: Wed 01 Jan 2025 05:47:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 8375
IP address blocks: 185.60.20.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:67:f0:0d:b4:1a:91:47:2e:8a:a1:00:be:5a:53:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04a5ec5f52668be50b4518b687cf8bd95930ae39
Validity
Not Before: Jan 1 05:47:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d2927eaf0c551b94bf52ef9717713ad4fd5d940f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:a1:46:bf:33:78:40:6c:4d:99:f9:dc:24:26:
48:f7:5c:02:b9:d7:f7:c3:d3:a9:2d:ce:b2:2c:b8:
e6:2a:0e:70:1f:54:9d:a6:b7:b6:26:84:8c:95:e3:
31:2d:4f:e8:30:7d:69:95:fe:56:5a:06:a2:a3:b9:
9b:b0:bb:d9:77:c4:8d:72:ca:f9:83:bd:b5:0a:61:
e7:96:0e:2b:51:2b:22:80:45:59:64:66:e3:fc:44:
a4:69:4f:c6:0c:82:be:dc:fd:1b:93:6b:7e:6b:ad:
47:14:82:d7:a0:7d:be:0f:1e:ee:39:a9:22:c5:ad:
42:fd:6d:5d:68:95:9e:bf:ec:a7:f1:c4:63:7f:1e:
d9:37:35:9f:ce:a9:0d:65:cd:65:28:02:26:d2:f6:
c5:35:98:92:2b:40:c9:62:68:cc:6a:80:49:74:48:
b1:a7:8b:34:3a:ce:cf:98:4d:e2:38:70:1b:c8:7d:
44:63:38:c9:59:11:8c:a8:d1:d6:2d:86:2b:7c:37:
76:4e:ec:d5:7a:f5:30:9a:24:8d:ba:34:ed:2a:70:
61:af:c7:3e:da:18:8e:1a:84:a8:ea:1b:c4:17:d5:
03:76:26:e4:64:cb:26:e8:48:94:a4:ae:92:7a:63:
e3:b5:f6:c8:c5:06:48:6b:42:03:dd:d3:45:83:09:
5d:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:92:7E:AF:0C:55:1B:94:BF:52:EF:97:17:71:3A:D4:FD:5D:94:0F
X509v3 Authority Key Identifier:
keyid:04:A5:EC:5F:52:66:8B:E5:0B:45:18:B6:87:CF:8B:D9:59:30:AE:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BKXsX1Jmi-ULRRi2h8-L2Vkwrjk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/00e33e-fd74-4583-984e-c6b84cc58610/1/0pJ-rwxVG5S_Uu-XF3E61P1dlA8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/00e33e-fd74-4583-984e-c6b84cc58610/1/BKXsX1Jmi-ULRRi2h8-L2Vkwrjk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.60.20.0/24
Signature Algorithm: sha256WithRSAEncryption
89:87:61:4c:2f:40:2a:e8:b5:5a:88:e5:34:b7:62:f4:ee:6b:
a4:50:1c:bf:8f:96:52:e3:ea:8a:b3:d6:ba:eb:b0:5c:f5:06:
89:19:35:b2:ae:7f:2f:be:fa:a7:b1:fb:af:a3:b1:a3:27:ce:
5b:fe:be:14:8f:b9:fd:cc:9e:79:f6:30:0a:86:86:b8:e6:3b:
45:c1:35:fc:38:27:ca:06:42:a9:7f:cc:d2:e0:f4:48:1c:73:
de:a2:00:38:c9:13:e3:a8:c3:92:a9:16:ed:14:59:9c:bb:4d:
dc:c4:89:8d:c3:85:84:a7:49:54:cb:89:a7:18:d4:41:69:3c:
fe:a9:de:fa:1e:69:a2:81:44:41:48:59:f1:a2:71:3c:40:f2:
cc:9f:46:41:aa:b7:04:06:5b:e2:0a:3c:16:62:ba:35:bf:8a:
9b:e2:18:58:fd:a6:75:47:0f:e0:e7:de:9b:4e:10:86:a0:aa:
25:66:a3:63:6d:92:58:f0:c6:da:4e:21:61:bc:f2:e7:02:e0:
fc:19:9f:d5:40:77:22:84:16:37:a7:6a:f2:7b:34:73:d3:0f:
60:a3:19:2a:48:d6:b9:1a:35:12:73:2c:48:14:67:47:88:73:
4e:2c:dd:f0:5f:e9:c5:d3:21:16:23:f0:1f:09:0d:d3:67:55:
29:3a:98:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:57 2025 by rpki-client on console.sobornost.net