Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/8IzFt4pp6ir9QNOo_kewPeZnr9c.roa
File: 8IzFt4pp6ir9QNOo_kewPeZnr9c.roa (raw, json)
Hash identifier: 86W1OIJqP8UU/XqsMMiC1qL6h7uv6OvCGioqyVNLmh0=
Subject key identifier: F0:8C:C5:B7:8A:69:EA:2A:FD:40:D3:A8:FE:47:B0:3D:E6:67:AF:D7
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0195EB7073DBB0CE7F08B32ECE8FB57CE470
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/8IzFt4pp6ir9QNOo_kewPeZnr9c.roa
Signing time: Mon 31 Mar 2025 09:02:50 +0000
ROA not before: Mon 31 Mar 2025 09:02:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214024
IP address blocks: 185.206.250.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:eb:70:73:db:b0:ce:7f:08:b3:2e:ce:8f:b5:7c:e4:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Mar 31 09:02:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f08cc5b78a69ea2afd40d3a8fe47b03de667afd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:85:95:33:03:dc:cf:d2:b2:03:59:22:e2:03:
e9:f4:76:82:e9:57:31:8e:21:55:aa:92:a1:0b:f6:
24:c6:45:f5:91:89:e2:fa:ae:dc:a5:3c:b1:35:b6:
f0:c7:d9:8b:19:85:30:4d:04:fa:d3:32:71:4c:04:
55:7c:78:14:65:0a:26:89:14:9c:68:d3:9d:fc:1c:
22:65:36:17:47:f0:d2:9d:c8:d6:3a:9f:5c:76:af:
7b:e3:2c:47:f3:7f:66:ce:e6:03:7d:e5:1e:a7:b1:
8b:d5:78:cc:16:4b:d1:df:61:85:ac:1b:39:d2:c1:
b5:d1:1a:e3:cd:df:e5:04:3a:99:bb:0a:01:5c:16:
a4:d8:94:00:b9:50:d5:0e:1f:08:2e:36:16:4a:07:
56:ce:5a:25:b7:ed:6c:f0:d6:70:88:a7:27:2d:2d:
23:a2:12:83:24:0d:5f:e8:52:07:49:64:2c:5d:c7:
f8:20:9b:1d:93:ac:8b:03:b2:8b:fd:75:5f:93:b0:
f6:b6:68:c1:e0:d4:bd:e6:10:d7:8b:c1:dd:04:5d:
ac:69:1e:86:e5:a1:fb:ce:26:a0:90:ac:55:b9:12:
2d:36:7b:b4:cc:ff:6b:e2:cf:30:22:81:56:62:b1:
5d:9e:fa:2b:34:73:63:0c:b2:95:91:37:c0:1f:ec:
c4:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:8C:C5:B7:8A:69:EA:2A:FD:40:D3:A8:FE:47:B0:3D:E6:67:AF:D7
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/8IzFt4pp6ir9QNOo_kewPeZnr9c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.206.250.0/24
Signature Algorithm: sha256WithRSAEncryption
c0:8d:17:74:07:ba:37:d2:4e:3a:dc:e9:ad:1a:17:ad:97:5e:
5c:40:49:7f:1d:2d:7a:b8:d9:3b:7b:8f:9c:95:38:05:32:c7:
af:ff:98:a8:ed:1a:d0:d3:8c:f5:5c:0b:95:87:7c:34:83:cf:
18:7a:35:0f:dc:d7:8d:77:b1:e7:65:f9:a7:8d:22:41:49:62:
4d:b8:f8:33:2e:98:9b:2a:64:81:e8:9b:31:4a:09:8f:74:07:
aa:2d:ab:7b:8b:38:c0:9d:98:aa:14:96:02:8a:62:bb:52:27:
66:c9:c7:5b:20:0d:4b:8e:cd:9a:94:13:b0:88:ee:32:73:3b:
3b:d5:5b:98:5b:c4:53:8e:86:ac:e6:17:ef:2a:00:75:87:08:
8a:15:db:1a:28:74:43:fa:bb:a7:21:93:b3:e8:98:93:4e:db:
a0:6d:44:65:2a:5f:f6:f2:d2:b3:60:51:f4:26:9b:0b:dd:b3:
51:19:29:0c:a8:95:18:ea:1d:08:e7:a2:f5:42:31:ed:9e:7c:
95:70:be:a5:e3:0a:3f:18:f2:46:87:00:5e:5b:00:53:19:a1:
06:be:72:17:e7:f0:ea:68:59:08:8b:ee:cd:77:2f:03:27:1a:
da:57:e9:83:8a:a0:35:34:c2:54:dd:44:c6:53:fc:88:34:eb:
3d:28:04:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:12 2025 by rpki-client on console.sobornost.net