Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/066478-b066-4736-ad9f-53f41dfe407f/1/UrYUfB7-9QBFEXvwUFl-0XUQovA.roa
File: UrYUfB7-9QBFEXvwUFl-0XUQovA.roa (raw, json)
Hash identifier: G/5hnkVEk84Gqy7j4bvtXLnvzsAvKdTVP3l2AbTaaE4=
Subject key identifier: 52:B6:14:7C:1E:FE:F5:00:45:11:7B:F0:50:59:7E:D1:75:10:A2:F0
Certificate issuer: /CN=1ba5167888397ff9caa844f554ff837cfdbf9722
Certificate serial: 019426D943351DE375A6A756E0FB67D6A126
Authority key identifier: 1B:A5:16:78:88:39:7F:F9:CA:A8:44:F5:54:FF:83:7C:FD:BF:97:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G6UWeIg5f_nKqET1VP-DfP2_lyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/066478-b066-4736-ad9f-53f41dfe407f/1/UrYUfB7-9QBFEXvwUFl-0XUQovA.roa
Signing time: Thu 02 Jan 2025 11:49:20 +0000
ROA not before: Thu 02 Jan 2025 11:49:20 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 9063
IP address blocks: 185.44.200.0/22 maxlen: 22
2a01:7820::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:43:35:1d:e3:75:a6:a7:56:e0:fb:67:d6:a1:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ba5167888397ff9caa844f554ff837cfdbf9722
Validity
Not Before: Jan 2 11:49:20 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=52b6147c1efef50045117bf050597ed17510a2f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:e2:54:65:b8:ef:fa:f5:df:fb:28:cc:80:06:
59:5b:9d:db:e1:83:79:d5:07:b9:61:4d:5d:e7:94:
2e:b0:51:ef:da:89:6a:54:d6:a2:06:7c:96:29:db:
ab:58:96:0a:3c:49:9e:08:5c:cd:3a:da:66:c5:c0:
a1:9a:11:f5:84:05:ae:1c:53:a0:02:f6:6a:bc:5e:
e7:54:6e:83:2f:2e:06:f4:bd:52:62:78:00:fa:c1:
33:77:a9:db:06:83:2e:61:72:50:fc:a8:59:68:ab:
48:ba:67:4e:65:5a:b1:53:f3:d3:0f:a7:1a:d5:56:
11:35:d7:98:ea:c1:d2:48:6e:91:1d:66:a0:39:56:
ca:37:16:61:b1:94:81:a7:f5:76:49:af:21:b4:b2:
6f:25:80:67:38:2a:1e:c9:46:46:95:ed:c9:bf:1d:
55:98:3a:e4:cc:70:d2:7a:33:e3:e0:aa:e0:80:1a:
0c:fb:1d:ec:12:cd:34:05:e9:72:f7:22:d7:33:80:
51:f8:e0:ae:1b:eb:e3:e2:3a:b0:3b:14:6c:a2:24:
c8:6c:6b:24:26:73:47:6f:c1:17:a3:b7:57:19:46:
61:d4:aa:2f:af:4c:bb:83:57:83:97:94:da:37:2c:
03:e3:74:56:15:60:90:de:74:98:4c:d6:2f:42:56:
f3:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:B6:14:7C:1E:FE:F5:00:45:11:7B:F0:50:59:7E:D1:75:10:A2:F0
X509v3 Authority Key Identifier:
keyid:1B:A5:16:78:88:39:7F:F9:CA:A8:44:F5:54:FF:83:7C:FD:BF:97:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G6UWeIg5f_nKqET1VP-DfP2_lyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/066478-b066-4736-ad9f-53f41dfe407f/1/UrYUfB7-9QBFEXvwUFl-0XUQovA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/066478-b066-4736-ad9f-53f41dfe407f/1/G6UWeIg5f_nKqET1VP-DfP2_lyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.44.200.0/22
IPv6:
2a01:7820::/32
Signature Algorithm: sha256WithRSAEncryption
54:61:47:cc:19:e5:44:31:7f:f2:54:19:7d:70:f1:34:e3:bb:
c0:1b:2a:15:42:35:1e:ea:f6:84:d1:66:26:8b:9c:92:d0:be:
47:e0:4c:4c:1a:95:d2:f2:7e:4e:36:7a:21:bb:8b:0b:bb:ad:
12:53:2a:02:00:9d:97:e4:8f:c8:c7:73:32:76:b6:c1:35:0d:
5b:cd:56:83:9e:8e:5a:86:79:30:5f:c1:f7:f1:72:7c:c9:09:
21:ea:4d:37:af:c5:40:98:90:cc:75:f4:f3:e7:0b:3a:68:cf:
90:be:05:4f:dc:de:23:3b:36:7c:e3:66:be:03:7b:a7:22:7d:
f0:be:aa:b5:f4:62:ab:5f:73:25:cc:7e:f5:9f:48:28:a2:40:
bd:90:f4:77:2d:84:c1:eb:13:b7:7c:a3:c0:47:3c:06:d4:51:
4e:a3:05:74:b6:86:5e:85:9b:84:91:a5:7c:55:36:aa:1a:eb:
e5:bf:06:42:ff:1e:31:b3:24:45:d2:73:ae:9e:0d:77:ca:d2:
ad:e8:fc:48:28:df:54:21:f3:d9:7a:6f:af:63:a9:8a:3e:aa:
bf:84:8c:30:c3:1f:ee:a5:58:f0:2f:3e:9d:9c:01:2d:79:cc:
32:bc:2c:41:58:77:84:62:e0:06:a1:e9:92:21:ff:ce:3e:10:
d6:5f:8d:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 8 04:54:58 2025 by rpki-client on console.sobornost.net