Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/602244-7699-4103-bc7e-c4711482380e/1/jPdoFO28ZYmIy0FwhFbaKyywLn4.roa
File: jPdoFO28ZYmIy0FwhFbaKyywLn4.roa (raw, json)
Hash identifier: 2DMBsYGpILPZ83xfOVSe8IYb5O9R3Gf6YlNKmTmqMeg=
Subject key identifier: 8C:F7:68:14:ED:BC:65:89:88:CB:41:70:84:56:DA:2B:2C:B0:2E:7E
Certificate issuer: /CN=3787b324b0d32fb1a3678b02c482286d4c26ba0f
Certificate serial: 019421B1F8A2569FF75BD452C5EAC5903C17
Authority key identifier: 37:87:B3:24:B0:D3:2F:B1:A3:67:8B:02:C4:82:28:6D:4C:26:BA:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N4ezJLDTL7GjZ4sCxIIobUwmug8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/602244-7699-4103-bc7e-c4711482380e/1/jPdoFO28ZYmIy0FwhFbaKyywLn4.roa
Signing time: Wed 01 Jan 2025 11:48:19 +0000
ROA not before: Wed 01 Jan 2025 11:48:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 205315
IP address blocks: 185.222.116.0/24 maxlen: 24
2a0c:3800::/40 maxlen: 48
2a0c:3800:ff::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b1:f8:a2:56:9f:f7:5b:d4:52:c5:ea:c5:90:3c:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3787b324b0d32fb1a3678b02c482286d4c26ba0f
Validity
Not Before: Jan 1 11:48:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8cf76814edbc658988cb41708456da2b2cb02e7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:fa:0e:4e:be:24:b1:be:c0:98:c6:c4:79:6f:
96:c9:55:1a:43:e6:56:a8:b2:42:5b:99:bd:b7:c2:
69:96:a8:16:16:48:94:61:56:cb:63:d4:aa:43:f1:
3d:86:72:e1:b4:23:6e:e9:93:a6:00:1d:b4:d3:35:
43:a3:81:be:2d:06:61:11:ab:8d:47:f5:4a:0c:70:
8f:8a:cb:6d:63:ce:fb:80:ba:2b:d7:2f:c7:47:89:
01:fd:75:7b:81:0a:1d:ec:94:a9:2f:e5:e9:13:57:
44:89:72:e0:19:8a:41:0d:87:fe:a6:55:bb:5d:70:
74:1c:72:5c:62:1e:5d:18:1b:a3:b5:33:dc:48:fb:
a1:8d:76:5d:c3:d1:29:9a:ce:66:7c:2a:6f:8c:6d:
ee:31:68:39:a8:27:fb:6b:f8:b5:12:28:e4:ed:a8:
ee:1b:92:ba:ab:fa:8d:6b:cc:71:b5:69:9b:5f:0a:
06:89:32:13:d5:34:ad:52:0c:2b:eb:5d:c7:2a:6c:
41:1a:84:aa:fc:dc:f0:15:9b:03:5c:9c:9d:40:01:
4a:45:bc:1d:11:62:56:de:3b:67:de:87:0f:76:cd:
dc:dd:19:2b:43:1c:71:9e:7f:e5:14:e6:f3:cf:ce:
2e:6b:b4:42:ba:31:7b:5e:b0:82:14:e4:8a:89:e7:
c6:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:F7:68:14:ED:BC:65:89:88:CB:41:70:84:56:DA:2B:2C:B0:2E:7E
X509v3 Authority Key Identifier:
keyid:37:87:B3:24:B0:D3:2F:B1:A3:67:8B:02:C4:82:28:6D:4C:26:BA:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N4ezJLDTL7GjZ4sCxIIobUwmug8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/602244-7699-4103-bc7e-c4711482380e/1/jPdoFO28ZYmIy0FwhFbaKyywLn4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/602244-7699-4103-bc7e-c4711482380e/1/N4ezJLDTL7GjZ4sCxIIobUwmug8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.222.116.0/24
IPv6:
2a0c:3800::/40
Signature Algorithm: sha256WithRSAEncryption
2d:bd:cc:39:a5:e6:b8:64:7b:bd:96:9f:2b:8f:d9:6a:45:fe:
fc:81:1a:79:27:28:43:1c:c5:c6:18:48:c9:3e:e2:eb:14:54:
20:52:d8:00:6d:ce:0d:ab:e6:66:9f:f4:f0:d8:5f:1f:8d:0f:
ca:37:67:a4:c2:0a:9f:b8:33:79:02:e3:a8:93:01:bb:5b:b2:
c8:48:f8:4e:04:d8:5f:5b:cf:58:5b:e5:a8:c4:99:3f:1a:46:
c1:b9:8f:e9:ca:99:8a:4f:9e:42:fa:17:c9:bd:bb:9e:c4:fd:
75:12:1c:bf:ff:f3:70:03:bd:f3:ab:a7:f7:82:25:7d:2a:cc:
78:9a:41:8e:46:10:28:a6:c7:ac:11:77:2b:45:03:b4:7b:51:
14:27:46:db:96:58:bd:04:a0:6f:51:a8:e7:62:10:d1:cb:e5:
59:04:2d:b4:da:18:4e:2a:b0:85:f7:2c:89:5c:b9:0b:4d:c0:
29:95:56:53:f8:d1:82:5b:29:13:fb:0b:c4:b1:4e:a1:b4:b8:
c9:1d:ab:5e:62:e7:ca:eb:4b:d1:67:28:c6:f0:c2:c4:e8:b1:
38:f8:80:30:00:29:02:a0:59:31:1a:4e:b4:28:d9:30:09:58:
1a:0f:37:24:e2:12:5a:91:48:87:cc:31:69:13:ee:c3:f6:25:
7c:86:8c:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:29 2025 by rpki-client on console.sobornost.net