Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/14f2c5-46fe-4670-9dd6-21c58470b8d2/1/iKTuxv4Yqf578q1_iFTo3TPgi90.roa
File: iKTuxv4Yqf578q1_iFTo3TPgi90.roa (raw, json)
Hash identifier: QHxod4UDwKbxQ6rdrgBlgaKVAnbxo593qR7aG+M2Ul8=
Subject key identifier: 88:A4:EE:C6:FE:18:A9:FE:7B:F2:AD:7F:88:54:E8:DD:33:E0:8B:DD
Certificate issuer: /CN=e1e8b7cab521e88e8022a36424544185538a7b33
Certificate serial: 019423D7428BBC335C95561E5147166A9D18
Authority key identifier: E1:E8:B7:CA:B5:21:E8:8E:80:22:A3:64:24:54:41:85:53:8A:7B:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4ei3yrUh6I6AIqNkJFRBhVOKezM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/14f2c5-46fe-4670-9dd6-21c58470b8d2/1/iKTuxv4Yqf578q1_iFTo3TPgi90.roa
Signing time: Wed 01 Jan 2025 21:48:17 +0000
ROA not before: Wed 01 Jan 2025 21:48:17 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44947
IP address blocks: 185.154.190.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:42:8b:bc:33:5c:95:56:1e:51:47:16:6a:9d:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1e8b7cab521e88e8022a36424544185538a7b33
Validity
Not Before: Jan 1 21:48:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=88a4eec6fe18a9fe7bf2ad7f8854e8dd33e08bdd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:e3:19:22:31:3f:f4:9e:13:4e:22:69:b6:36:
48:d2:e9:2b:34:1e:e2:57:54:ef:1a:85:92:c6:65:
a2:be:ef:0e:cc:de:91:47:5e:e8:ba:47:33:7f:67:
f0:4f:b6:48:48:e7:b4:f0:61:19:cc:88:0f:82:78:
97:81:44:04:1c:36:0c:0d:a4:a4:cd:10:09:2b:b7:
9d:ad:88:4a:6c:a3:33:61:c6:9e:ad:19:1d:80:8c:
d0:65:ec:0e:ad:d9:0e:e4:27:68:3f:76:ff:6a:f8:
b9:da:97:97:87:4b:14:7a:32:d5:f4:1d:70:6f:ff:
32:96:99:bc:8b:5a:cc:a0:ef:ab:0f:64:0e:90:6f:
b3:3b:4b:f0:fc:cb:8b:19:ff:c6:e2:9e:ba:57:ca:
e0:92:e5:23:d0:8b:6e:8a:98:bd:4f:3e:03:9c:24:
cd:d4:89:2b:dd:f8:f6:0d:6c:4c:61:13:db:6e:7b:
00:40:64:fb:12:00:60:0b:29:38:87:25:05:28:46:
a2:f8:5d:bb:2f:66:02:03:9d:14:e5:4c:12:be:2e:
c4:ac:0f:0a:fb:32:2e:ba:a9:67:94:32:1c:4d:3f:
bf:ad:b4:b8:db:a9:b5:a9:38:ed:98:a0:93:e8:fe:
36:92:03:65:25:c5:12:24:f9:f9:85:5a:8e:44:82:
2c:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:A4:EE:C6:FE:18:A9:FE:7B:F2:AD:7F:88:54:E8:DD:33:E0:8B:DD
X509v3 Authority Key Identifier:
keyid:E1:E8:B7:CA:B5:21:E8:8E:80:22:A3:64:24:54:41:85:53:8A:7B:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4ei3yrUh6I6AIqNkJFRBhVOKezM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/14f2c5-46fe-4670-9dd6-21c58470b8d2/1/iKTuxv4Yqf578q1_iFTo3TPgi90.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/14f2c5-46fe-4670-9dd6-21c58470b8d2/1/4ei3yrUh6I6AIqNkJFRBhVOKezM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.154.190.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:be:00:8c:ca:04:60:42:2e:11:ec:ec:b9:30:80:20:e0:7a:
f0:a2:01:2d:51:9c:5c:17:0f:36:4d:32:59:f1:23:19:f0:ec:
be:be:0b:d3:68:3d:01:f0:60:17:40:58:23:9b:a8:c0:53:a5:
08:fa:f7:2c:d9:10:11:a0:16:c4:13:a0:85:11:b9:e6:60:6d:
ee:28:24:cd:47:5c:8c:64:b2:69:e6:58:21:46:a2:1a:bd:25:
e8:55:f7:f8:90:80:77:8a:91:bb:b5:77:97:81:22:3a:89:4b:
b3:64:47:33:e5:0b:c0:5e:3c:67:ed:12:22:4b:a9:58:68:19:
30:ed:d3:6f:2a:9e:cc:12:ed:13:42:46:64:93:dd:b9:24:df:
0c:cc:9f:4e:5f:d6:fa:74:87:5c:e8:43:d6:0a:66:fe:87:3b:
27:ef:ba:c0:ef:3c:87:40:46:8f:21:b4:8b:96:e6:5b:65:e2:
e7:c5:16:d6:02:66:18:c8:0e:b0:82:c5:31:b7:b9:ac:d8:a1:
c4:b7:69:e0:8e:b5:47:b4:5c:23:2d:7d:7d:ce:bf:3f:b8:03:
93:d7:8c:d8:01:6e:37:9e:11:a8:b8:32:22:9b:c4:89:b0:3c:
56:12:d7:9d:b6:a0:e2:7f:0c:97:c5:4a:f7:d1:a0:c2:32:42:
ba:b5:db:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 23 16:41:40 2025 by rpki-client on console.sobornost.net