Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/0de899-22e1-463c-a4dd-c34e90d7f8ea/1/VJR7Lo1LB0pD40S4fO2jLPEbihA.roa
File: VJR7Lo1LB0pD40S4fO2jLPEbihA.roa (raw, json)
Hash identifier: RbHjGHvWg7AGicrPJns6EGHLTa9+BO6JRpxrZNUyWo8=
Subject key identifier: 54:94:7B:2E:8D:4B:07:4A:43:E3:44:B8:7C:ED:A3:2C:F1:1B:8A:10
Certificate issuer: /CN=24a55bd68397566895b15ecb97fc1d65c0c879ce
Certificate serial: 019422FB85794D6854598787A64C55ACE537
Authority key identifier: 24:A5:5B:D6:83:97:56:68:95:B1:5E:CB:97:FC:1D:65:C0:C8:79:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JKVb1oOXVmiVsV7Ll_wdZcDIec4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/0de899-22e1-463c-a4dd-c34e90d7f8ea/1/VJR7Lo1LB0pD40S4fO2jLPEbihA.roa
Signing time: Wed 01 Jan 2025 17:48:16 +0000
ROA not before: Wed 01 Jan 2025 17:48:16 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 31543
IP address blocks: 185.110.136.0/22 maxlen: 24
2a06:5680::/29 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fb:85:79:4d:68:54:59:87:87:a6:4c:55:ac:e5:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24a55bd68397566895b15ecb97fc1d65c0c879ce
Validity
Not Before: Jan 1 17:48:16 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=54947b2e8d4b074a43e344b87ceda32cf11b8a10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:bb:ba:ce:72:bd:3d:95:ff:8c:74:a4:05:ce:
0f:ca:e8:99:12:ef:09:1b:d5:48:3f:3d:52:ab:17:
21:e3:29:ec:36:ca:72:1a:db:05:62:4e:12:ed:3a:
35:f6:3a:9f:01:58:6a:96:a0:8c:69:08:bd:e8:75:
b6:b2:04:19:bc:62:f3:fe:1e:69:41:66:77:1e:91:
9f:c4:7d:19:b1:f5:66:ed:a4:41:cd:e4:73:b2:4e:
46:de:13:a1:71:e6:99:35:c2:1c:e6:ad:05:ac:ad:
da:b7:50:4e:13:e7:ca:dd:b2:d9:c0:9d:0d:e8:0d:
fd:f2:4e:37:1b:e0:e9:77:f5:1a:a1:97:f2:5f:6d:
8c:32:e9:aa:a6:1d:bb:7b:4d:29:9c:eb:79:6a:5e:
69:20:58:5b:61:91:62:b8:28:fe:e1:81:74:4d:e2:
81:64:a3:f7:b8:f4:64:26:82:d1:f2:d8:0c:a8:84:
4e:59:4f:d4:c6:33:3c:6f:38:5d:e6:66:aa:f6:c8:
e4:ed:db:f8:b8:95:6c:0a:47:35:75:7f:41:95:f4:
9d:58:f8:ba:12:5d:fc:85:29:96:19:5f:94:50:31:
bd:32:44:93:f3:3b:36:4c:b0:e6:df:a6:7b:17:29:
da:d1:e5:46:01:0d:32:94:e8:e9:04:1f:91:bc:2a:
9d:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:94:7B:2E:8D:4B:07:4A:43:E3:44:B8:7C:ED:A3:2C:F1:1B:8A:10
X509v3 Authority Key Identifier:
keyid:24:A5:5B:D6:83:97:56:68:95:B1:5E:CB:97:FC:1D:65:C0:C8:79:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JKVb1oOXVmiVsV7Ll_wdZcDIec4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/0de899-22e1-463c-a4dd-c34e90d7f8ea/1/VJR7Lo1LB0pD40S4fO2jLPEbihA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/0de899-22e1-463c-a4dd-c34e90d7f8ea/1/JKVb1oOXVmiVsV7Ll_wdZcDIec4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.110.136.0/22
IPv6:
2a06:5680::/29
Signature Algorithm: sha256WithRSAEncryption
51:f4:61:d6:15:46:4a:ab:3f:84:15:e9:43:71:cc:47:eb:a0:
70:54:14:43:61:ec:15:fd:1e:e4:60:ba:a8:37:11:b8:b6:8d:
34:e1:f9:96:a4:88:d7:0f:a0:7c:d4:9c:46:75:38:1d:58:75:
2b:e2:19:68:e2:a9:18:ab:4f:c6:e7:7d:80:14:c5:17:d3:4a:
40:f2:e9:6d:72:ff:b8:50:57:33:29:08:2a:12:e3:d1:43:d5:
fa:06:37:29:d2:9c:82:b9:22:33:4c:19:be:63:4f:22:e9:2c:
d3:72:ff:82:4e:e2:4d:11:76:8e:f3:f4:89:b8:27:8f:4a:75:
9b:9a:7f:a8:f3:92:cb:df:87:3e:66:75:d8:38:68:14:eb:81:
3d:dd:c6:6e:54:d2:e4:38:cb:4e:8d:24:4a:5d:94:c3:3a:e5:
32:6f:e9:e4:cd:95:06:62:b2:cf:01:d3:af:81:32:80:83:d2:
e0:da:5d:b9:05:72:9e:ef:a6:ea:bb:8f:ef:2f:d1:6d:af:12:
ed:c3:8d:44:64:b7:2a:10:be:51:e2:3a:c5:69:1a:61:01:aa:
34:b7:45:29:ab:1b:6a:52:1f:df:4a:b8:59:dc:60:66:d1:2b:
3e:62:b5:4b:ba:8b:74:27:3a:22:36:d2:96:fb:e2:a8:af:45:
9b:9f:84:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:27 2025 by rpki-client on console.sobornost.net