Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/6cac50-3f13-4ef9-8b6d-decec41a71d1/1/O7dVmdulXoSGFdWUdpvv3bkJxU8.roa
File: O7dVmdulXoSGFdWUdpvv3bkJxU8.roa (raw, json)
Hash identifier: hmlWALQMbQbIcNvaSImT+aYBz0m3Sm9TMeYp/ubqBkw=
Subject key identifier: 3B:B7:55:99:DB:A5:5E:84:86:15:D5:94:76:9B:EF:DD:B9:09:C5:4F
Certificate issuer: /CN=db489fbe98994cbc098c876ba63e560ac17e5b2f
Certificate serial: 019425FC513477B13D6837C09415E0102E40
Authority key identifier: DB:48:9F:BE:98:99:4C:BC:09:8C:87:6B:A6:3E:56:0A:C1:7E:5B:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/20ifvpiZTLwJjIdrpj5WCsF-Wy8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/6cac50-3f13-4ef9-8b6d-decec41a71d1/1/O7dVmdulXoSGFdWUdpvv3bkJxU8.roa
Signing time: Thu 02 Jan 2025 07:48:00 +0000
ROA not before: Thu 02 Jan 2025 07:48:00 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 20746
IP address blocks: 185.63.228.0/22 maxlen: 22
185.63.231.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fc:51:34:77:b1:3d:68:37:c0:94:15:e0:10:2e:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db489fbe98994cbc098c876ba63e560ac17e5b2f
Validity
Not Before: Jan 2 07:48:00 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3bb75599dba55e848615d594769befddb909c54f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:cf:80:79:87:ea:a4:e9:76:65:5a:2f:72:db:
dd:27:c6:6d:25:f4:8a:7e:88:d7:e7:b2:55:4f:fc:
dd:f3:f3:19:bd:2f:6f:6d:cc:78:1e:31:00:43:5b:
66:b8:cb:e9:c6:17:e0:ef:83:31:f8:bc:58:ee:b8:
86:b2:18:a9:c6:43:d5:a3:30:ab:af:27:c7:c2:95:
e6:2e:be:b6:c9:70:c3:66:81:53:dc:15:18:9f:4c:
61:2b:49:cd:e1:2d:6e:6a:26:54:03:00:77:7b:99:
4b:d6:d9:5a:aa:b1:71:61:3f:3e:9f:fe:e4:3b:86:
df:32:ad:68:5e:be:aa:26:4d:11:03:37:52:77:f4:
95:85:74:37:68:e0:42:0c:d7:4f:c1:04:14:66:29:
df:6d:db:43:fe:b4:c3:5b:74:2a:e2:f8:3c:88:2f:
78:c8:30:44:62:fb:c2:04:ad:6f:e5:16:6f:99:77:
c9:a1:06:5e:8b:63:d1:48:4d:37:99:1f:cd:40:26:
93:1c:6b:33:06:c2:4d:bc:5d:09:d8:83:a7:b6:84:
dc:d6:8f:69:28:97:ab:33:31:50:64:54:63:e7:1e:
28:58:dd:8b:47:58:2f:85:59:91:4e:88:b8:ce:39:
8d:01:86:35:42:10:b3:ef:10:df:bd:cb:41:65:b3:
16:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:B7:55:99:DB:A5:5E:84:86:15:D5:94:76:9B:EF:DD:B9:09:C5:4F
X509v3 Authority Key Identifier:
keyid:DB:48:9F:BE:98:99:4C:BC:09:8C:87:6B:A6:3E:56:0A:C1:7E:5B:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/20ifvpiZTLwJjIdrpj5WCsF-Wy8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/6cac50-3f13-4ef9-8b6d-decec41a71d1/1/O7dVmdulXoSGFdWUdpvv3bkJxU8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/6cac50-3f13-4ef9-8b6d-decec41a71d1/1/20ifvpiZTLwJjIdrpj5WCsF-Wy8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.63.228.0/22
Signature Algorithm: sha256WithRSAEncryption
15:6b:b5:71:55:4d:50:14:c8:bc:f8:7f:1d:15:e1:72:40:2d:
83:7f:18:81:09:a7:81:47:6e:df:11:6c:4f:22:2f:5b:ab:52:
97:eb:97:e0:1b:3e:35:5e:48:6b:75:98:01:59:7a:89:10:a9:
c5:8e:f5:41:7c:43:f5:c7:5d:39:58:6d:3f:bd:97:6f:fc:8a:
e7:68:3e:c5:48:ee:51:0a:49:c4:89:c4:80:c8:c0:e6:7a:d1:
4b:83:fd:23:29:2e:9d:af:4f:d1:43:f8:50:bd:a5:a5:f5:80:
83:f3:b6:4b:b6:7f:a4:73:ec:e4:03:64:06:c6:90:7b:20:b5:
7c:b4:30:91:07:c6:15:3a:3c:1b:01:65:9d:39:73:62:16:c6:
0e:a1:15:a0:59:61:a1:cb:7f:3a:76:87:6c:b0:ec:ee:26:4f:
35:e4:e0:58:07:41:b9:91:af:f0:b1:a4:e0:a2:a5:70:34:b5:
2b:be:37:8e:fe:a5:31:04:25:3d:e4:c0:1c:1d:a6:20:11:b2:
35:7a:84:f4:c3:63:ee:42:9a:0a:16:59:8c:6d:c2:3b:ba:2d:
ca:57:19:2f:e3:45:7a:98:e7:af:15:1f:61:8e:3c:c3:de:70:
ee:03:d3:2e:a4:76:18:cf:81:bf:aa:3f:1c:e1:ac:10:bf:50:
77:98:8b:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:13 2025 by rpki-client on console.sobornost.net