Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/303184-9f7e-4583-80ba-cfd3b53dc456/1/WTiY2Qk1x-geaQsrR6enC5adAMQ.roa
File: WTiY2Qk1x-geaQsrR6enC5adAMQ.roa (raw, json)
Hash identifier: jOYBpT27U7g6ol8yiuxnI6V37MSFQ9qLOBM0L34PdCw=
Subject key identifier: 59:38:98:D9:09:35:C7:E8:1E:69:0B:2B:47:A7:A7:0B:96:9D:00:C4
Certificate issuer: /CN=35b1cce4d5bad8d9c2edca400e2bfc54a24185bf
Certificate serial: 019426D97DBD6EA9AD96DCFB8EE3E325BACB
Authority key identifier: 35:B1:CC:E4:D5:BA:D8:D9:C2:ED:CA:40:0E:2B:FC:54:A2:41:85:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NbHM5NW62NnC7cpADiv8VKJBhb8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/303184-9f7e-4583-80ba-cfd3b53dc456/1/WTiY2Qk1x-geaQsrR6enC5adAMQ.roa
Signing time: Thu 02 Jan 2025 11:49:35 +0000
ROA not before: Thu 02 Jan 2025 11:49:35 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206298
IP address blocks: 185.190.76.0/22 maxlen: 22
2a0a:5c0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:7d:bd:6e:a9:ad:96:dc:fb:8e:e3:e3:25:ba:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35b1cce4d5bad8d9c2edca400e2bfc54a24185bf
Validity
Not Before: Jan 2 11:49:35 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=593898d90935c7e81e690b2b47a7a70b969d00c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:23:b6:11:af:56:3c:eb:2d:24:d7:ea:d9:44:
a9:b5:72:10:fc:8e:7d:76:55:f1:ef:bf:c8:9d:46:
f1:1d:da:62:19:a5:8f:6b:cf:29:3f:fd:80:8e:b2:
fb:3b:21:31:f0:c2:9e:f2:73:5c:93:15:c7:88:4b:
9f:93:a2:67:6c:58:b7:26:11:b3:99:7e:47:fb:cb:
fd:2a:44:8b:f9:e7:e2:f3:c3:ad:07:ad:37:7a:36:
18:57:7f:27:15:44:12:f8:d0:a8:df:d9:01:fa:9f:
25:2c:3a:9f:9d:cc:73:96:c5:67:f7:8a:e5:7a:49:
af:55:10:fd:ab:18:c6:85:56:f6:d1:8a:96:ad:e6:
60:e9:b1:f1:71:1f:2c:b2:5b:87:72:32:f1:26:94:
1c:1d:10:b2:5b:14:39:d5:4f:0f:c1:21:d5:f3:36:
55:fd:fe:74:dc:e5:ef:c6:65:81:1d:fb:1d:44:23:
05:66:25:9f:10:ec:59:91:a0:f4:35:7a:c3:13:6d:
53:14:7f:16:95:9a:4e:c4:86:f5:19:f5:ba:d3:ba:
4f:8e:79:fc:ce:f1:ba:8e:a7:1f:17:cf:42:e8:5b:
c7:5e:d8:27:a9:dd:bc:9b:2e:1c:96:76:76:36:71:
9d:86:0a:e7:77:47:cf:46:51:b3:e5:8c:40:9e:f8:
1f:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:38:98:D9:09:35:C7:E8:1E:69:0B:2B:47:A7:A7:0B:96:9D:00:C4
X509v3 Authority Key Identifier:
keyid:35:B1:CC:E4:D5:BA:D8:D9:C2:ED:CA:40:0E:2B:FC:54:A2:41:85:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NbHM5NW62NnC7cpADiv8VKJBhb8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/303184-9f7e-4583-80ba-cfd3b53dc456/1/WTiY2Qk1x-geaQsrR6enC5adAMQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/303184-9f7e-4583-80ba-cfd3b53dc456/1/NbHM5NW62NnC7cpADiv8VKJBhb8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.190.76.0/22
IPv6:
2a0a:5c0::/29
Signature Algorithm: sha256WithRSAEncryption
29:bb:ba:91:45:31:75:74:a3:38:53:26:80:84:85:8f:42:f2:
79:78:ca:83:10:58:35:77:c1:6d:3f:d7:68:66:10:5e:0a:af:
d9:fd:50:7a:4d:8b:5e:ee:e9:0b:6d:3d:02:db:98:84:bf:61:
3f:e3:0a:3e:82:f9:49:52:74:bc:bd:c9:5c:ca:1e:a3:8b:ca:
09:de:62:eb:c3:17:57:25:f6:70:72:5b:83:28:df:44:df:41:
ca:24:fc:da:4e:0e:a3:ea:a1:eb:b7:7a:cb:19:51:3e:74:27:
a8:f8:3f:74:3e:ed:f2:fd:41:3c:99:a5:87:b5:5e:e5:99:09:
d4:ea:0c:5d:38:1b:64:32:b6:4f:44:f0:3b:78:83:35:5a:ec:
35:fc:ce:53:e7:f6:80:be:50:04:d1:e9:06:9a:2c:c9:f5:8f:
3c:e6:bc:00:9d:b3:a9:f7:77:9f:ba:c5:71:a6:ac:46:24:1c:
3c:d9:12:f6:e3:4c:e7:e4:8d:ca:81:60:fd:98:26:1d:c9:04:
e8:d9:36:c3:62:e7:2e:ae:50:85:a9:2d:0c:a9:8f:f2:48:88:
73:85:e9:f0:49:e9:51:20:1d:9a:bd:4a:c4:c9:2c:2d:04:af:
9a:6e:67:ca:b8:54:b0:f3:fb:35:13:95:c1:ef:60:ec:46:7a:
f0:2e:6a:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:27 2025 by rpki-client on console.sobornost.net