Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/059d1a-ef94-4729-bf6d-42ae75b7957d/1/1-KvMzZmip20mq_6TE6zao4jxRAY.roa
File: 1-KvMzZmip20mq_6TE6zao4jxRAY.roa (raw, json)
Hash identifier: +e++mFx5okLj8UNvWINUv13IrPw1m2hTZhWWjifAWCI=
Subject key identifier: F8:AB:CC:CD:99:A2:A7:6D:26:AB:FE:93:13:AC:DA:A3:88:F1:44:06
Certificate issuer: /CN=0d7a912569b787d92e5355fffaed581fe50a29c0
Certificate serial: 019423D71244754E98447A8E74BFB90CB514
Authority key identifier: 0D:7A:91:25:69:B7:87:D9:2E:53:55:FF:FA:ED:58:1F:E5:0A:29:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DXqRJWm3h9kuU1X_-u1YH-UKKcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/059d1a-ef94-4729-bf6d-42ae75b7957d/1/1-KvMzZmip20mq_6TE6zao4jxRAY.roa
Signing time: Wed 01 Jan 2025 21:48:04 +0000
ROA not before: Wed 01 Jan 2025 21:48:04 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 51580
IP address blocks: 185.208.19.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:12:44:75:4e:98:44:7a:8e:74:bf:b9:0c:b5:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d7a912569b787d92e5355fffaed581fe50a29c0
Validity
Not Before: Jan 1 21:48:04 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f8abcccd99a2a76d26abfe9313acdaa388f14406
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:8c:b8:a9:b6:56:18:4c:60:90:92:81:b3:bc:
f8:34:2d:00:d3:0d:8b:c1:1a:f0:29:8b:61:96:b0:
85:24:74:6f:16:b4:e1:d9:08:03:0a:0a:a3:10:29:
8d:4d:03:b0:bf:14:80:6c:20:1c:c0:f6:55:56:82:
9a:f5:48:29:4c:59:67:a4:bc:58:1b:5f:de:aa:0b:
86:5e:63:b9:ca:0b:20:db:e5:29:b0:6e:b9:d6:bf:
38:61:1b:59:8c:58:ad:9f:d1:90:ad:d6:60:f5:4a:
a4:e4:72:7e:3a:37:e2:0c:41:ae:2e:26:db:38:39:
3f:d6:83:2b:2d:cb:0f:7d:26:81:b8:83:28:e5:fd:
68:fe:60:9d:b8:2d:e6:5d:21:77:99:27:90:34:b3:
69:8a:95:cd:70:f7:d0:ca:c2:fb:d3:0a:a7:db:be:
46:84:85:47:0d:da:47:bf:8e:48:11:08:aa:f0:82:
a6:d5:b4:47:66:6b:11:85:75:ac:82:e7:78:b9:4d:
af:b3:40:a8:d2:94:d3:55:b8:db:69:91:eb:4a:0d:
e1:85:da:ca:80:2b:6e:20:05:ce:26:d5:14:73:c4:
73:d9:ad:9d:cb:2e:57:f4:0b:0c:97:52:64:a2:b7:
dd:55:3a:c9:50:b6:46:58:40:e1:44:09:c8:10:52:
2b:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:AB:CC:CD:99:A2:A7:6D:26:AB:FE:93:13:AC:DA:A3:88:F1:44:06
X509v3 Authority Key Identifier:
keyid:0D:7A:91:25:69:B7:87:D9:2E:53:55:FF:FA:ED:58:1F:E5:0A:29:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DXqRJWm3h9kuU1X_-u1YH-UKKcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/059d1a-ef94-4729-bf6d-42ae75b7957d/1/1-KvMzZmip20mq_6TE6zao4jxRAY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/059d1a-ef94-4729-bf6d-42ae75b7957d/1/DXqRJWm3h9kuU1X_-u1YH-UKKcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.208.19.0/24
Signature Algorithm: sha256WithRSAEncryption
86:6f:52:89:8f:7a:54:7c:be:3b:99:37:68:ab:58:1c:d7:07:
8a:47:fd:3e:3c:65:30:39:e8:86:81:78:68:43:b0:e9:0c:9b:
c5:b5:88:ed:6e:29:33:3c:b9:fe:60:fa:48:ee:47:32:1f:e1:
12:c3:ea:92:f1:b5:c3:a6:b6:96:29:7d:d4:6a:05:a6:a9:ee:
a1:5d:f7:76:fc:5c:52:34:95:85:dc:07:ad:74:fe:58:30:cc:
03:90:a9:ce:1a:62:f9:f0:3a:ce:12:6a:8f:32:61:cc:f8:10:
33:0b:55:e7:98:97:bb:6a:ef:ea:a6:f3:bc:6a:dd:90:97:1a:
30:17:a1:f7:c0:3d:4c:90:3b:3f:67:7c:8e:a3:19:90:30:c8:
7f:09:4e:03:ef:2f:8c:6a:77:f7:4f:03:31:7c:50:9a:c4:7d:
31:a6:70:ca:b4:3e:dc:65:ac:72:0d:00:04:de:ce:28:c1:f2:
5a:d8:05:f4:75:15:3d:66:3d:45:32:b7:bc:e9:ab:d7:26:c9:
24:67:61:94:c2:2b:af:ca:f7:02:f6:db:50:76:07:94:cc:ef:
02:e1:3c:4b:5e:cc:e0:9c:03:bf:7b:7c:46:12:3c:b5:ba:cb:
2d:2e:f3:81:23:5e:34:dd:a4:9c:78:51:bb:88:f7:6d:1c:88:
8d:89:dd:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:01 2025 by rpki-client on console.sobornost.net