Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/5dc27d-5adb-4df3-99c2-98d9c4257fc6/1/CGcYt6qx267X0glJTA7aL9VX3lc.roa
File: CGcYt6qx267X0glJTA7aL9VX3lc.roa (raw, json)
Hash identifier: C7Akg4uPsnwTrDUVpipPgKYJ70rbAz3rIOj8sk4nXFE=
Subject key identifier: 08:67:18:B7:AA:B1:DB:AE:D7:D2:09:49:4C:0E:DA:2F:D5:57:DE:57
Certificate issuer: /CN=f0d444bc7d5334da14de805172b2625e9830763f
Certificate serial: 0194258F9CF4BC3A8643206F8974EDCDC2A1
Authority key identifier: F0:D4:44:BC:7D:53:34:DA:14:DE:80:51:72:B2:62:5E:98:30:76:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8NREvH1TNNoU3oBRcrJiXpgwdj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/5dc27d-5adb-4df3-99c2-98d9c4257fc6/1/CGcYt6qx267X0glJTA7aL9VX3lc.roa
Signing time: Thu 02 Jan 2025 05:49:16 +0000
ROA not before: Thu 02 Jan 2025 05:49:16 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215573
IP address blocks: 185.246.176.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:9c:f4:bc:3a:86:43:20:6f:89:74:ed:cd:c2:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0d444bc7d5334da14de805172b2625e9830763f
Validity
Not Before: Jan 2 05:49:16 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=086718b7aab1dbaed7d209494c0eda2fd557de57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:9e:05:eb:78:90:dc:29:ba:6e:2b:2f:bc:0c:
62:6a:04:63:87:a3:45:3e:1b:31:5a:63:f6:36:00:
c4:0e:10:f4:45:e6:c6:28:9e:cc:fc:20:5a:9a:f5:
0f:8d:e1:f5:d1:2f:a2:68:83:2d:cd:b5:ee:11:0d:
01:ec:d7:b1:d3:01:da:b9:4a:f7:38:e0:c2:78:70:
50:c5:a2:21:6e:09:36:78:a7:86:97:58:4f:bc:5c:
cd:52:06:6c:b9:b3:98:6f:93:63:d4:c5:8f:98:90:
f1:8d:12:0a:83:6b:f9:20:47:2f:98:bc:2f:02:c7:
f3:cf:ca:0d:5e:fd:a1:88:07:d6:a9:78:ee:b6:56:
fc:77:15:ce:b0:09:c7:d3:7b:9d:c3:8d:c7:d5:77:
24:22:cf:4e:a1:ad:1c:df:d0:8b:df:22:3a:d4:31:
30:f0:89:ab:0d:8e:e2:62:66:aa:ae:f4:c0:92:cd:
d9:17:ab:83:2d:a7:15:ee:63:78:ff:dd:3e:12:1f:
54:cc:f4:04:1e:36:b0:ff:a9:83:4c:05:a5:1e:01:
84:77:83:91:ac:b1:80:63:f3:c1:51:27:b4:ac:b1:
82:64:b4:94:6f:51:f3:d0:43:60:af:4e:bd:ea:75:
ef:b6:7d:84:69:02:2a:fd:be:53:dd:f0:97:5c:56:
f9:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:67:18:B7:AA:B1:DB:AE:D7:D2:09:49:4C:0E:DA:2F:D5:57:DE:57
X509v3 Authority Key Identifier:
keyid:F0:D4:44:BC:7D:53:34:DA:14:DE:80:51:72:B2:62:5E:98:30:76:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8NREvH1TNNoU3oBRcrJiXpgwdj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/5dc27d-5adb-4df3-99c2-98d9c4257fc6/1/CGcYt6qx267X0glJTA7aL9VX3lc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/5dc27d-5adb-4df3-99c2-98d9c4257fc6/1/8NREvH1TNNoU3oBRcrJiXpgwdj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.246.176.0/22
Signature Algorithm: sha256WithRSAEncryption
7c:79:b2:f9:e7:34:68:58:01:02:0a:c5:04:ee:54:23:ed:2f:
f2:cc:6e:41:3d:b6:29:19:29:38:0e:ed:7d:64:e1:23:65:85:
93:c0:c7:ec:f2:9a:c8:94:73:40:6d:ff:b8:ac:49:9c:91:79:
d4:bb:1e:ea:4f:ab:e8:25:4a:ef:2d:ce:b1:d9:30:e0:6c:1f:
bd:ce:9f:25:dc:75:79:32:50:6e:e2:b5:24:ba:f0:4d:71:7f:
13:09:34:4f:dd:f2:d3:ab:0e:ee:f5:50:ff:6d:21:90:8f:a0:
b5:e2:02:a0:12:73:93:d9:a9:6e:1f:f2:e3:2c:e2:34:fc:ce:
21:65:81:00:e3:06:ff:a6:2d:6d:04:c5:7b:f0:42:1e:60:fe:
28:eb:49:5a:c1:08:13:a8:06:c9:16:91:18:be:30:5f:61:f8:
7b:99:1b:31:44:82:45:0f:43:89:52:54:1f:ed:f4:93:48:19:
d2:9b:52:21:0f:eb:67:b6:07:ad:1f:5c:12:e5:8e:74:34:8e:
9f:bb:50:40:7b:5a:47:68:e6:0f:81:4a:f4:48:3b:0f:50:db:
d7:94:6d:51:8e:19:67:20:f2:f8:d4:96:4e:a0:8d:72:e8:53:
15:2d:63:71:ae:51:5d:57:da:a2:35:3d:b2:c0:6a:80:17:31:
f7:13:0d:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:33 2025 by rpki-client on console.sobornost.net