Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/4acc15-bba0-4459-9667-de9b2f8f7e29/1/2sfbpTFq0DQ2ocw7VVE3LVSDIlg.roa
File: 2sfbpTFq0DQ2ocw7VVE3LVSDIlg.roa (raw, json)
Hash identifier: bGHxMUrGetZJKedW/fXRi55NBwExBw0dc8Dq21HOgOY=
Subject key identifier: DA:C7:DB:A5:31:6A:D0:34:36:A1:CC:3B:55:51:37:2D:54:83:22:58
Certificate issuer: /CN=e61bd7dd1f8ac8b4192ba78a592348b5dd0a1a66
Certificate serial: 0194228DDEA074FD84D1A11ADAE30A060D8A
Authority key identifier: E6:1B:D7:DD:1F:8A:C8:B4:19:2B:A7:8A:59:23:48:B5:DD:0A:1A:66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5hvX3R-KyLQZK6eKWSNItd0KGmY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/4acc15-bba0-4459-9667-de9b2f8f7e29/1/2sfbpTFq0DQ2ocw7VVE3LVSDIlg.roa
Signing time: Wed 01 Jan 2025 15:48:30 +0000
ROA not before: Wed 01 Jan 2025 15:48:30 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 56443
IP address blocks: 185.69.120.0/22 maxlen: 22
185.127.176.0/22 maxlen: 22
185.199.196.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:de:a0:74:fd:84:d1:a1:1a:da:e3:0a:06:0d:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e61bd7dd1f8ac8b4192ba78a592348b5dd0a1a66
Validity
Not Before: Jan 1 15:48:30 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=dac7dba5316ad03436a1cc3b5551372d54832258
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:d5:5f:0d:0b:53:5f:9a:9b:50:0f:45:3d:83:
79:8c:13:9b:97:ac:56:b7:0d:ac:ca:bc:b5:b6:3a:
5b:17:0e:84:2c:60:eb:d5:0d:72:6f:01:74:20:48:
87:45:9e:a8:25:ac:f9:cf:a6:de:ae:11:39:0d:6f:
0b:cf:f9:61:2e:65:3a:13:e9:41:72:54:ee:ae:c6:
83:8b:e4:9f:09:06:8b:13:5c:78:4a:6f:58:65:cf:
a0:04:68:8d:0b:24:af:f3:d9:f9:d0:ad:7b:d9:77:
d3:37:49:b8:86:ca:1b:da:46:44:cd:41:6f:26:f8:
bc:f2:82:4f:2b:cc:de:1f:bf:07:03:2f:b8:8c:82:
9c:b7:0f:e7:c7:62:2c:79:46:da:a2:34:0e:92:65:
25:02:11:46:a2:de:40:88:80:ec:f6:67:2a:06:8d:
cc:a5:6a:a1:2f:12:fc:6d:89:08:c4:c5:6f:f4:81:
33:5c:f9:55:d3:9b:f8:4c:ef:9a:d4:fd:ba:f0:57:
8f:97:a4:c9:e5:a7:97:ab:30:17:9c:c5:59:61:2c:
42:12:97:88:c7:30:0a:42:80:e4:da:7f:56:a4:a3:
3d:02:5d:b2:31:0a:5d:e5:e0:e1:eb:71:51:6d:0e:
d0:6c:a7:9e:44:57:42:15:9e:8b:7f:dd:4f:76:a0:
bd:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:C7:DB:A5:31:6A:D0:34:36:A1:CC:3B:55:51:37:2D:54:83:22:58
X509v3 Authority Key Identifier:
keyid:E6:1B:D7:DD:1F:8A:C8:B4:19:2B:A7:8A:59:23:48:B5:DD:0A:1A:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5hvX3R-KyLQZK6eKWSNItd0KGmY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/4acc15-bba0-4459-9667-de9b2f8f7e29/1/2sfbpTFq0DQ2ocw7VVE3LVSDIlg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/4acc15-bba0-4459-9667-de9b2f8f7e29/1/5hvX3R-KyLQZK6eKWSNItd0KGmY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.69.120.0/22
185.127.176.0/22
185.199.196.0/22
Signature Algorithm: sha256WithRSAEncryption
26:e1:5a:a2:af:07:89:b8:e5:dc:46:55:23:fd:71:fc:78:20:
b3:3c:fc:31:da:8e:21:b5:34:91:30:90:f7:80:11:7e:4e:81:
a8:09:c5:d2:d4:94:a9:4f:d6:54:c0:a2:56:ac:b5:c9:50:85:
aa:2c:bf:9f:e2:17:ef:8e:0e:8d:f5:93:bb:2a:b8:96:c6:ed:
8a:7c:a0:f0:51:0a:ed:2c:6f:27:a9:59:70:90:21:fa:fa:03:
21:7d:72:57:20:39:39:35:cd:b5:4f:9d:e4:37:58:39:1a:80:
41:f4:d8:23:0d:ac:b3:3c:ef:35:f5:bb:45:d3:03:11:da:47:
84:3a:d3:e0:22:6a:8b:0b:c6:d7:09:ff:fa:64:ab:9d:cf:96:
73:90:89:3e:bf:7c:92:53:16:41:db:3e:c0:37:28:63:f1:a1:
44:8d:b7:f4:8a:58:c8:d7:65:65:4d:48:49:91:ca:e0:52:d8:
10:3b:7a:34:cc:08:c4:25:30:3c:16:16:82:7c:08:48:bd:4b:
3d:8d:f0:65:ce:49:c8:76:7c:0c:7f:a5:d3:04:35:ce:4e:ca:
30:a1:4e:5a:6e:92:26:87:71:9a:68:73:aa:1e:8e:19:92:cc:
76:27:b2:a8:7d:bb:f6:7a:04:bf:e8:fe:45:fb:3e:9c:5c:46:
06:64:88:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:13 2025 by rpki-client on console.sobornost.net