Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/006d43-3dbf-4cf8-815d-5dc2fa6a3503/1/BkPt0aJALr6XVU6twrxQRhczZl4.roa
File: BkPt0aJALr6XVU6twrxQRhczZl4.roa (raw, json)
Hash identifier: GquW1GHGVn0JJFYtKkWU3g1jrNnF5g+2QT4CBc2mNJo=
Subject key identifier: 06:43:ED:D1:A2:40:2E:BE:97:55:4E:AD:C2:BC:50:46:17:33:66:5E
Certificate issuer: /CN=cd65ee23bff42ccf679d7377fe4da695d341aef0
Certificate serial: 0194266A0E00D035534B7B4F74F08B2EA058
Authority key identifier: CD:65:EE:23:BF:F4:2C:CF:67:9D:73:77:FE:4D:A6:95:D3:41:AE:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zWXuI7_0LM9nnXN3_k2mldNBrvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/006d43-3dbf-4cf8-815d-5dc2fa6a3503/1/BkPt0aJALr6XVU6twrxQRhczZl4.roa
Signing time: Thu 02 Jan 2025 09:47:52 +0000
ROA not before: Thu 02 Jan 2025 09:47:52 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 25234
IP address blocks: 185.71.159.0/24 maxlen: 24
2a02:250:3::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6a:0e:00:d0:35:53:4b:7b:4f:74:f0:8b:2e:a0:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd65ee23bff42ccf679d7377fe4da695d341aef0
Validity
Not Before: Jan 2 09:47:52 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0643edd1a2402ebe97554eadc2bc50461733665e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:45:fa:df:51:2e:b0:c5:29:ab:53:36:61:85:
e4:3c:2f:78:93:8d:1f:c9:d7:d9:20:06:39:47:96:
b7:b8:dc:4b:61:10:1e:8f:57:9c:b7:67:de:40:2e:
73:43:3c:19:87:8f:93:f8:23:b0:33:54:46:25:a6:
9e:2b:45:0d:37:e7:af:40:a3:1d:fa:d9:b0:77:c2:
06:fd:43:61:3a:6f:7b:ce:53:d9:fd:be:78:34:f5:
54:f9:bf:79:aa:69:ac:fb:68:7e:63:fe:52:cb:40:
7e:bb:e6:ed:3d:74:34:e8:b8:27:4b:35:08:1f:bb:
2f:9e:06:d0:33:48:8d:2a:a1:55:42:65:67:f6:0e:
05:e9:1e:b4:bf:39:4c:30:e2:0b:9b:77:a0:56:98:
a2:33:e8:4a:e9:5f:28:be:da:5e:ba:fe:83:d0:01:
da:40:39:3a:71:40:50:f3:87:f5:c0:10:95:14:d6:
0c:6a:d1:fd:0e:68:33:4f:35:91:bb:ad:bc:68:03:
11:e6:b5:c3:8f:10:17:88:17:a2:67:36:24:f0:c8:
6a:bd:d9:5e:c0:70:0a:4c:ef:e4:1c:b0:f2:23:c2:
d5:53:a4:86:8b:72:22:99:61:c5:06:7c:96:54:d3:
89:54:2a:c5:2f:c0:aa:1a:87:14:38:fe:e2:60:9d:
ed:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:43:ED:D1:A2:40:2E:BE:97:55:4E:AD:C2:BC:50:46:17:33:66:5E
X509v3 Authority Key Identifier:
keyid:CD:65:EE:23:BF:F4:2C:CF:67:9D:73:77:FE:4D:A6:95:D3:41:AE:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zWXuI7_0LM9nnXN3_k2mldNBrvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/006d43-3dbf-4cf8-815d-5dc2fa6a3503/1/BkPt0aJALr6XVU6twrxQRhczZl4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/006d43-3dbf-4cf8-815d-5dc2fa6a3503/1/zWXuI7_0LM9nnXN3_k2mldNBrvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.71.159.0/24
IPv6:
2a02:250:3::/48
Signature Algorithm: sha256WithRSAEncryption
c4:11:65:44:52:54:48:49:aa:99:ee:ea:d7:20:91:95:8a:84:
1a:3c:d6:ed:60:ee:bf:9b:ba:c3:44:1e:29:55:f3:5a:cd:7c:
99:2d:2b:c4:fb:6a:96:34:6d:60:1a:21:a0:7d:9f:58:79:43:
42:c2:d6:f0:ed:c5:d7:c2:66:ad:0c:ef:f6:c6:0a:ce:94:47:
b8:55:e1:31:8d:19:f9:f1:e2:8c:e4:e1:64:80:eb:7c:6f:0f:
9c:14:be:e9:67:71:b5:ec:7b:09:63:c4:93:6e:7c:1a:13:a7:
67:be:41:07:8a:c1:14:52:b2:19:fa:3d:74:19:13:fd:2c:c8:
c6:35:98:6f:93:60:aa:62:1a:38:64:74:28:52:30:26:b4:33:
78:b2:e3:ef:3d:55:8e:29:64:16:62:94:c3:1b:ab:ec:d8:ff:
77:20:ea:70:5b:1f:d9:20:e9:89:34:73:df:81:ea:fd:fe:9b:
8f:86:64:8d:6b:0e:4f:4f:a4:27:d1:c2:c8:00:ff:07:19:7e:
7a:fd:42:19:73:ed:09:72:f5:82:8d:77:e9:5b:e3:be:ac:0f:
01:ba:86:10:95:85:84:76:2c:ae:07:46:d4:3f:19:3c:11:ec:
a6:a9:e0:9d:56:b0:0d:4f:01:4f:12:1f:90:31:98:d3:23:30:
a3:33:d2:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:29 2025 by rpki-client on console.sobornost.net