Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/b73d31-7182-4aa8-b0f9-23b463b5ea77/1/AZz9ksdLlVeAbzeaU8MVCEKWTng.roa
File: AZz9ksdLlVeAbzeaU8MVCEKWTng.roa (raw, json)
Hash identifier: qwHNEbBQRa3YgFdH3RqllR/ytjATMfupEyjMH48twWU=
Subject key identifier: 01:9C:FD:92:C7:4B:95:57:80:6F:37:9A:53:C3:15:08:42:96:4E:78
Certificate issuer: /CN=d8f90da42a33ffd9164d0c05b0de4f656287076e
Certificate serial: 0194266BD457B14D0064317E0B7462283434
Authority key identifier: D8:F9:0D:A4:2A:33:FF:D9:16:4D:0C:05:B0:DE:4F:65:62:87:07:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2PkNpCoz_9kWTQwFsN5PZWKHB24.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/b73d31-7182-4aa8-b0f9-23b463b5ea77/1/AZz9ksdLlVeAbzeaU8MVCEKWTng.roa
Signing time: Thu 02 Jan 2025 09:49:48 +0000
ROA not before: Thu 02 Jan 2025 09:49:48 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 203256
IP address blocks: 185.130.228.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:d4:57:b1:4d:00:64:31:7e:0b:74:62:28:34:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8f90da42a33ffd9164d0c05b0de4f656287076e
Validity
Not Before: Jan 2 09:49:48 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=019cfd92c74b9557806f379a53c3150842964e78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:9f:28:01:d8:c2:a1:e8:92:6f:dd:74:cd:88:
85:a3:fd:2d:7e:d8:fc:04:88:e4:31:be:ed:5f:3d:
26:16:11:41:bf:c5:b9:17:45:b3:7c:24:ec:bb:97:
23:c0:96:23:8b:e4:fe:e3:69:d8:29:ff:0f:fd:5e:
62:c5:d8:26:6d:1b:6e:58:75:7b:43:c8:4e:d8:4d:
d2:87:45:7e:25:bb:bc:7b:78:5c:59:5f:f0:9b:74:
92:dd:83:76:15:57:6a:1b:9c:b0:ad:c7:ab:bb:3e:
99:33:ef:52:f4:0e:6c:eb:c5:ba:9e:47:96:a1:1d:
92:cd:5f:0f:15:3f:33:62:fb:fc:89:12:99:a1:bb:
56:fd:be:50:47:16:79:40:31:aa:4e:6a:1a:2a:a2:
65:95:eb:d3:db:4a:3b:83:dd:d1:88:23:3e:61:0f:
7e:47:ef:d8:c8:59:d0:69:ed:b5:9f:ff:79:35:3a:
24:27:5d:a9:73:f0:80:56:05:88:3b:fa:86:01:7d:
c0:1f:34:70:bb:fe:62:38:7d:36:20:b4:3f:c5:14:
76:f6:bd:52:48:2f:71:b6:c8:1e:7c:c2:11:c4:af:
07:e0:b1:e9:83:9c:43:48:93:22:46:42:b1:ee:11:
b5:99:f3:6a:14:a0:84:dd:db:59:a1:d0:bd:50:1d:
d1:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:9C:FD:92:C7:4B:95:57:80:6F:37:9A:53:C3:15:08:42:96:4E:78
X509v3 Authority Key Identifier:
keyid:D8:F9:0D:A4:2A:33:FF:D9:16:4D:0C:05:B0:DE:4F:65:62:87:07:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2PkNpCoz_9kWTQwFsN5PZWKHB24.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/b73d31-7182-4aa8-b0f9-23b463b5ea77/1/AZz9ksdLlVeAbzeaU8MVCEKWTng.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/b73d31-7182-4aa8-b0f9-23b463b5ea77/1/2PkNpCoz_9kWTQwFsN5PZWKHB24.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.130.228.0/24
Signature Algorithm: sha256WithRSAEncryption
28:ac:f0:f8:be:2a:b4:4b:a7:1c:17:cc:9c:42:0c:37:77:d0:
20:b4:58:6c:2a:a4:cb:f2:bc:77:2f:d3:8d:0d:fd:2a:33:9b:
7f:1a:90:cc:11:3e:db:88:94:da:92:a9:20:38:d0:7c:d9:31:
1e:e2:11:ff:b8:45:2c:fa:87:2f:f9:85:7f:ca:6b:8b:e8:20:
8b:81:67:32:b1:ab:9b:c1:68:7c:78:a3:97:e9:fc:1d:23:76:
fb:5a:1e:51:9c:1b:5d:d5:aa:60:c0:7c:19:a0:d1:3e:49:36:
64:23:aa:a9:33:52:27:dc:fb:63:f6:c0:89:89:e9:9b:6b:33:
96:c0:35:7b:a8:d8:62:48:64:50:0a:fb:ef:dc:25:2c:99:ed:
1b:9b:6b:d4:f5:e3:49:11:eb:03:ed:64:9d:02:f4:86:93:40:
f4:c3:a8:04:85:2b:52:1d:ce:90:d4:3b:be:8e:60:4e:f6:96:
d7:08:d6:3f:1e:59:5e:38:96:2f:32:b1:ca:a8:51:df:49:76:
e4:69:17:96:ab:44:1d:5a:db:86:c1:d5:78:0a:c1:98:5d:be:
13:90:ea:31:7f:f7:9f:ef:88:53:a7:d6:72:95:e5:e7:a6:82:
0d:b9:7b:08:ad:67:19:14:6f:b2:59:e1:ab:ac:bd:05:1a:70:
81:6f:b3:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:26 2025 by rpki-client on console.sobornost.net