Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/6426a5-6b14-4911-88e1-a75f3df46af1/1/wlY-QtAkBrD3gjKIpeQoXPyzFOM.roa
File: wlY-QtAkBrD3gjKIpeQoXPyzFOM.roa (raw, json)
Hash identifier: zJBXQ4JCSb3Ylp4EVKprUMeUDS30W25c/gEiCbzENgQ=
Subject key identifier: C2:56:3E:42:D0:24:06:B0:F7:82:32:88:A5:E4:28:5C:FC:B3:14:E3
Certificate issuer: /CN=176c34e5ae7016c3605d3269564ae9685443595d
Certificate serial: 0194228D1B435CF2643CEE097DA6A86EA1ED
Authority key identifier: 17:6C:34:E5:AE:70:16:C3:60:5D:32:69:56:4A:E9:68:54:43:59:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F2w05a5wFsNgXTJpVkrpaFRDWV0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/6426a5-6b14-4911-88e1-a75f3df46af1/1/wlY-QtAkBrD3gjKIpeQoXPyzFOM.roa
Signing time: Wed 01 Jan 2025 15:47:40 +0000
ROA not before: Wed 01 Jan 2025 15:47:40 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 51595
IP address blocks: 185.90.112.0/22 maxlen: 22
194.0.155.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:1b:43:5c:f2:64:3c:ee:09:7d:a6:a8:6e:a1:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=176c34e5ae7016c3605d3269564ae9685443595d
Validity
Not Before: Jan 1 15:47:40 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c2563e42d02406b0f7823288a5e4285cfcb314e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:ed:37:9f:36:bf:5f:e8:d4:cc:3f:ef:2a:c2:
e9:4d:9b:09:e2:49:05:f7:97:09:cb:b1:72:f1:19:
e4:1e:06:00:fa:3c:04:56:5e:04:d3:ad:a1:20:4f:
44:71:3c:b9:69:be:cb:80:e0:3f:2b:21:bf:bf:46:
36:79:8a:83:f4:f5:d8:2d:29:cc:46:87:58:f2:01:
1b:d7:e3:5a:fa:f1:5a:5d:4f:59:88:86:60:e2:96:
7d:f7:3e:c6:2f:32:06:14:51:ec:17:d1:85:dd:1d:
b8:00:bf:a3:7a:7e:53:59:9e:3c:d6:e5:17:d4:3a:
b2:94:df:28:88:aa:f0:87:c5:18:19:ea:4f:d3:07:
2c:78:14:a5:54:94:2b:e8:a3:69:21:3e:6a:9f:79:
f5:f3:80:8b:09:a7:85:be:78:af:3c:1f:3f:15:fe:
e7:02:6d:80:a3:e6:c1:92:62:ad:f0:04:5d:14:5c:
25:d6:6d:8a:d0:d8:6a:26:3d:81:84:3e:a1:d1:88:
8e:80:b6:f8:01:2f:18:22:96:6f:4e:95:d7:b4:bf:
07:69:97:64:fb:ff:b7:5b:7a:96:ca:43:aa:45:a4:
7c:07:71:8d:46:06:c7:b1:71:b2:c3:24:b4:14:74:
f7:c5:e1:88:b2:27:51:9d:6f:33:8a:36:fe:de:84:
4d:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:56:3E:42:D0:24:06:B0:F7:82:32:88:A5:E4:28:5C:FC:B3:14:E3
X509v3 Authority Key Identifier:
keyid:17:6C:34:E5:AE:70:16:C3:60:5D:32:69:56:4A:E9:68:54:43:59:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F2w05a5wFsNgXTJpVkrpaFRDWV0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/6426a5-6b14-4911-88e1-a75f3df46af1/1/wlY-QtAkBrD3gjKIpeQoXPyzFOM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/6426a5-6b14-4911-88e1-a75f3df46af1/1/F2w05a5wFsNgXTJpVkrpaFRDWV0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.90.112.0/22
194.0.155.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:62:62:b6:e1:92:3f:f1:03:3f:51:69:c6:de:03:01:d0:0e:
90:21:9b:0a:8d:6f:e7:2c:a2:1b:02:5d:36:33:94:40:55:39:
f4:94:2a:8e:b6:23:e9:e0:31:69:fa:a0:25:a2:25:b9:1e:47:
38:9c:34:df:1c:98:5d:af:49:02:cc:ee:ba:e6:26:c9:ad:13:
13:bc:e6:42:1d:10:f9:94:3e:52:fc:e1:cd:66:df:df:b6:18:
32:57:97:7d:de:dd:72:ae:61:4b:8f:5b:56:49:96:48:52:4c:
10:98:cc:e3:2c:c1:72:20:5e:b0:62:ac:b3:81:4b:9e:51:52:
18:bd:8c:e1:be:ad:89:a3:ae:b9:8c:4b:54:46:d8:2b:12:27:
75:5a:79:3a:c8:83:1c:ad:ae:8e:c4:5c:9b:83:b4:e1:47:18:
7d:6e:32:5d:a6:41:84:1a:3d:17:99:9d:8b:59:ac:13:19:8b:
63:44:17:d6:59:19:43:dd:d9:91:88:5b:39:f7:84:df:3d:2e:
b0:13:0f:83:49:ff:75:e6:dd:6e:fb:fe:6e:74:1e:8a:a6:a2:
0d:48:b9:30:7e:a5:96:df:9f:e0:cc:38:b9:ca:a5:4a:ee:66:
a0:ca:72:c7:f6:ce:a6:db:d4:93:80:ec:e9:0a:d6:c4:6a:82:
b3:2a:15:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:04 2025 by rpki-client on console.sobornost.net