Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/85ca8e-d74b-4c05-81b6-770f0572c0e7/1/6C-l-Krcx9diUb3Zftv9sijenyA.roa
File: 6C-l-Krcx9diUb3Zftv9sijenyA.roa (raw, json)
Hash identifier: 8qEJJSdL4/1lUqWVRQzqlshhqS0031IQa9tDeTSS/GA=
Subject key identifier: E8:2F:A5:F8:AA:DC:C7:D7:62:51:BD:D9:7E:DB:FD:B2:28:DE:9F:20
Certificate issuer: /CN=6fa32e6581183f2c4897a7652333901f7f5bee73
Certificate serial: 019423D6A8F2EA87B554C86902ABE15C5C4E
Authority key identifier: 6F:A3:2E:65:81:18:3F:2C:48:97:A7:65:23:33:90:1F:7F:5B:EE:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b6MuZYEYPyxIl6dlIzOQH39b7nM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/85ca8e-d74b-4c05-81b6-770f0572c0e7/1/6C-l-Krcx9diUb3Zftv9sijenyA.roa
Signing time: Wed 01 Jan 2025 21:47:37 +0000
ROA not before: Wed 01 Jan 2025 21:47:37 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211488
IP address blocks: 185.218.107.0/24 maxlen: 24
2a10:d1c0::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d6:a8:f2:ea:87:b5:54:c8:69:02:ab:e1:5c:5c:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6fa32e6581183f2c4897a7652333901f7f5bee73
Validity
Not Before: Jan 1 21:47:37 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e82fa5f8aadcc7d76251bdd97edbfdb228de9f20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:66:ca:50:0b:13:d8:a2:f2:d9:be:80:94:fe:
cd:6d:cc:8b:23:c6:dc:35:31:ac:44:af:79:05:0a:
ce:7c:9d:7e:ef:8b:18:4d:97:e7:91:12:8a:1e:f5:
3d:f5:77:06:f4:2f:29:ee:fd:60:72:60:3a:17:82:
4a:fa:6f:b9:07:ea:a0:40:5a:ab:4b:7d:d2:2b:66:
1d:bc:4e:03:b2:64:cd:c8:33:4e:84:b7:2c:1c:01:
6f:f6:34:c0:4a:53:76:18:06:68:6a:50:8d:89:40:
42:cf:9f:26:03:5f:0e:c1:fb:b7:76:a3:71:59:a1:
a3:15:fe:82:76:cb:01:8b:76:a4:5b:6c:bf:d0:83:
67:ad:eb:e4:26:17:c1:6a:91:4a:2a:a2:72:52:b7:
b0:1e:de:4e:74:9e:bc:19:88:8b:e4:f7:57:23:08:
38:b8:29:d7:49:49:d7:26:9d:88:f8:5d:da:ee:15:
55:27:9e:51:c2:6a:72:51:37:2e:09:e6:fd:77:61:
3d:ca:91:44:c4:50:76:38:e5:31:4e:17:0f:96:dd:
20:3c:eb:4a:c5:cd:aa:fb:33:da:8a:07:c3:7b:9d:
94:a1:7c:23:a0:93:fd:fc:6f:5d:45:8a:1a:3f:9a:
ce:1c:3e:a1:3f:3c:63:4f:04:0a:55:e7:a8:c4:b1:
eb:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:2F:A5:F8:AA:DC:C7:D7:62:51:BD:D9:7E:DB:FD:B2:28:DE:9F:20
X509v3 Authority Key Identifier:
keyid:6F:A3:2E:65:81:18:3F:2C:48:97:A7:65:23:33:90:1F:7F:5B:EE:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6MuZYEYPyxIl6dlIzOQH39b7nM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/85ca8e-d74b-4c05-81b6-770f0572c0e7/1/6C-l-Krcx9diUb3Zftv9sijenyA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/85ca8e-d74b-4c05-81b6-770f0572c0e7/1/b6MuZYEYPyxIl6dlIzOQH39b7nM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.218.107.0/24
IPv6:
2a10:d1c0::/32
Signature Algorithm: sha256WithRSAEncryption
68:5c:c8:a1:9f:62:15:cb:7f:ae:70:a0:7e:7a:a9:54:68:cf:
3e:ef:14:ec:22:26:4b:1f:27:e5:c3:76:74:2b:02:f8:dc:8b:
39:3d:ca:cc:b4:1c:e3:e2:7c:30:3e:72:4a:9c:4c:89:6d:c9:
7a:d6:6f:be:f8:18:59:bc:33:ec:b6:a9:ca:20:04:92:f4:a2:
6b:03:6d:52:f0:d4:43:3a:c7:bb:75:5f:c9:3f:9c:88:30:c1:
63:0b:53:9a:4a:f7:05:8a:2d:ae:6b:77:54:99:68:8f:8c:76:
76:83:be:b3:09:72:0a:b5:c6:fc:13:cf:53:f9:a8:3d:8b:cb:
79:c8:57:42:f4:91:59:b1:c6:25:48:df:d6:a2:70:85:2d:70:
51:46:34:bd:2b:8c:68:45:42:2e:b7:af:58:69:1b:15:2f:cf:
a9:11:3a:cf:d5:8b:2e:53:3f:e6:86:16:27:0b:e8:2d:15:db:
36:86:29:61:97:49:e2:ca:8d:da:8c:44:8c:fc:90:9e:ef:40:
f0:b9:25:14:4f:c4:71:17:e1:2b:cc:4f:99:12:23:c6:ba:42:
24:54:ac:44:53:59:89:9c:bd:03:00:b1:30:b8:c9:f6:f2:85:
09:c5:b4:c9:92:47:07:41:cf:e3:25:2e:1b:87:90:ac:d7:a1:
81:be:7f:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:14 2025 by rpki-client on console.sobornost.net