Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/EA04VGqvrPQszKxiTiYT5otCGRs.roa
File: EA04VGqvrPQszKxiTiYT5otCGRs.roa (raw, json)
Hash identifier: jxzccstOx8k+w6FBDeBmh5NVBQOSYOxvaie7YTOrrr0=
Subject key identifier: 10:0D:38:54:6A:AF:AC:F4:2C:CC:AC:62:4E:26:13:E6:8B:42:19:1B
Certificate issuer: /CN=9a1e69368abd34538fe77ddaabcdc835af595eba
Certificate serial: 01941F8C447177FB8B9E05BD5247A5EF2F98
Authority key identifier: 9A:1E:69:36:8A:BD:34:53:8F:E7:7D:DA:AB:CD:C8:35:AF:59:5E:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mh5pNoq9NFOP533aq83INa9ZXro.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/EA04VGqvrPQszKxiTiYT5otCGRs.roa
Signing time: Wed 01 Jan 2025 01:47:53 +0000
ROA not before: Wed 01 Jan 2025 01:47:53 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 15402
IP address blocks: 85.9.76.0/24 maxlen: 24
185.126.18.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:44:71:77:fb:8b:9e:05:bd:52:47:a5:ef:2f:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a1e69368abd34538fe77ddaabcdc835af595eba
Validity
Not Before: Jan 1 01:47:53 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=100d38546aafacf42cccac624e2613e68b42191b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:c0:5a:ee:44:2b:53:f4:d7:f6:5b:2c:64:e4:
7e:04:88:2f:e0:0d:14:4a:52:fa:3c:4d:46:da:dc:
bd:63:63:1f:74:11:59:b6:e6:67:26:5a:a1:e7:98:
4c:12:73:88:6d:36:d2:99:2a:27:2f:43:46:11:1a:
af:af:45:b6:a2:02:e1:2a:f4:78:38:a3:26:0a:bf:
91:58:2d:9f:ed:41:86:11:5e:6d:a5:83:62:4d:16:
05:86:30:2d:e0:77:18:68:29:29:94:58:53:13:86:
f2:f4:ac:55:e2:aa:b7:e1:4c:69:1e:78:6a:39:6f:
be:a8:9e:ba:e9:e7:c1:28:8f:3b:dc:bb:8f:99:6d:
c1:76:a9:d1:a7:dc:c9:6e:a0:20:93:e8:94:db:dc:
4d:7f:ce:f8:da:91:dd:42:1c:71:8c:66:fd:d7:9e:
e4:50:f9:74:e0:49:57:9f:9e:f9:c1:dd:24:e5:ed:
10:99:3b:ce:a3:c4:06:de:08:af:94:b1:cc:fe:ba:
cb:d3:bc:3d:f7:a1:65:8d:75:e6:28:5f:c6:70:d2:
de:3f:ca:be:14:e5:c2:76:4f:5b:a0:f2:2e:d9:e0:
fa:c9:17:6e:39:ea:2f:ed:33:91:cb:b9:4d:4d:a1:
5d:da:5f:f8:56:aa:89:e8:cb:ec:c0:e4:54:0d:5d:
c3:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:0D:38:54:6A:AF:AC:F4:2C:CC:AC:62:4E:26:13:E6:8B:42:19:1B
X509v3 Authority Key Identifier:
keyid:9A:1E:69:36:8A:BD:34:53:8F:E7:7D:DA:AB:CD:C8:35:AF:59:5E:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mh5pNoq9NFOP533aq83INa9ZXro.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/EA04VGqvrPQszKxiTiYT5otCGRs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/mh5pNoq9NFOP533aq83INa9ZXro.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.9.76.0/24
185.126.18.0/23
Signature Algorithm: sha256WithRSAEncryption
a8:24:73:6b:19:6c:db:63:51:ef:f0:77:d9:78:ee:72:36:d5:
e2:f6:91:2a:07:11:da:ac:02:bb:de:b4:a7:6d:46:b9:73:3c:
a1:1e:c7:ee:42:e3:2d:bf:e8:b2:e3:bf:88:7e:0a:d4:17:6d:
a9:47:75:a6:4a:30:5b:94:8b:e8:8c:07:84:d9:ff:09:5f:d3:
2b:4e:16:ed:b4:9d:0c:a7:d7:44:03:85:00:63:c5:d6:15:40:
1f:2c:8a:b3:f0:54:28:1a:b9:45:96:d2:7f:ef:e3:0e:10:2e:
c8:a4:9b:c3:56:a8:35:59:ca:29:d2:b8:fd:9b:5f:62:89:33:
13:e1:12:55:a2:8b:b5:a3:08:8a:d5:d6:a0:f9:76:6b:bf:c4:
e0:f0:4c:5a:73:c0:87:ae:08:6c:ba:b3:ea:11:6b:27:c1:d1:
16:07:b8:c8:1e:80:04:f2:71:92:9c:44:1e:c3:52:0f:e6:1c:
d0:82:1f:b8:aa:48:25:80:dd:98:50:84:6c:32:bf:b3:a3:16:
82:e6:dd:24:25:3b:da:ee:f4:72:2c:e3:ea:63:02:40:f6:24:
10:27:e2:64:06:24:fb:0b:47:7b:34:ef:58:8e:e9:04:19:d5:
7b:e9:0c:9b:10:34:13:de:c3:57:9f:e4:ba:8d:a9:3c:07:75:
ce:60:d3:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:25 2025 by rpki-client on console.sobornost.net