Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/00898a-e7c0-4836-a96b-92b2ea319bc1/1/U5_8oTuDnte69dU3vdG0YoeLHOc.roa
File: U5_8oTuDnte69dU3vdG0YoeLHOc.roa (raw, json)
Hash identifier: rv7n9SJHDz/xEcEFGYa9oVX9oX3xMxXlPJsPEJruS+w=
Subject key identifier: 53:9F:FC:A1:3B:83:9E:D7:BA:F5:D5:37:BD:D1:B4:62:87:8B:1C:E7
Certificate issuer: /CN=af0b1da79ef7fc1ef95962dc8a01f2b8d4b352bf
Certificate serial: 019425217B7756E92E9B1EB8973CFE67FBC7
Authority key identifier: AF:0B:1D:A7:9E:F7:FC:1E:F9:59:62:DC:8A:01:F2:B8:D4:B3:52:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rwsdp573_B75WWLcigHyuNSzUr8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/00898a-e7c0-4836-a96b-92b2ea319bc1/1/U5_8oTuDnte69dU3vdG0YoeLHOc.roa
Signing time: Thu 02 Jan 2025 03:48:58 +0000
ROA not before: Thu 02 Jan 2025 03:48:58 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 200748
IP address blocks: 185.241.180.0/22 maxlen: 22
2a0c:a780::/31 maxlen: 31
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:7b:77:56:e9:2e:9b:1e:b8:97:3c:fe:67:fb:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af0b1da79ef7fc1ef95962dc8a01f2b8d4b352bf
Validity
Not Before: Jan 2 03:48:58 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=539ffca13b839ed7baf5d537bdd1b462878b1ce7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:84:0a:a8:53:3a:96:36:f8:00:b8:d9:6d:c4:
b4:6c:b5:30:1d:dc:0e:75:99:fc:01:a0:8f:4b:11:
83:57:55:eb:bf:c0:07:fd:1e:7c:8f:88:a7:d1:58:
c9:d1:1c:6d:b3:70:41:f8:0e:96:b8:7c:16:99:df:
21:af:d5:0f:55:bc:91:a3:10:e7:cd:fc:ba:67:de:
94:5d:fd:30:3f:8d:55:04:40:e7:2b:d0:65:11:00:
f8:c4:c9:0f:83:e9:ea:38:ec:db:2b:17:f2:dd:f9:
90:60:14:56:74:53:79:bb:9b:19:6d:f1:42:b1:e0:
1e:4c:4a:af:6c:c6:e1:09:07:9d:c4:2a:af:de:4c:
06:5e:81:f1:b6:43:7a:24:85:bf:c7:16:8c:6e:d2:
a3:5e:a2:e9:6c:ca:17:dd:bc:30:19:4d:34:11:77:
9a:cc:f6:da:b8:8e:6b:53:b8:a8:36:bc:b5:04:d5:
c5:ef:89:76:d6:52:da:9f:f0:9a:36:b8:03:bc:60:
29:10:ae:67:28:61:ee:1d:d1:25:9f:47:cd:36:c2:
66:c4:44:6d:10:7a:79:56:cc:45:50:eb:a4:de:68:
af:bf:a5:53:39:7d:2d:c0:f7:34:ba:cd:3b:f3:61:
4f:ab:12:04:a2:7d:ae:ea:9d:07:84:86:e1:f5:78:
e6:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:9F:FC:A1:3B:83:9E:D7:BA:F5:D5:37:BD:D1:B4:62:87:8B:1C:E7
X509v3 Authority Key Identifier:
keyid:AF:0B:1D:A7:9E:F7:FC:1E:F9:59:62:DC:8A:01:F2:B8:D4:B3:52:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rwsdp573_B75WWLcigHyuNSzUr8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/00898a-e7c0-4836-a96b-92b2ea319bc1/1/U5_8oTuDnte69dU3vdG0YoeLHOc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/00898a-e7c0-4836-a96b-92b2ea319bc1/1/rwsdp573_B75WWLcigHyuNSzUr8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.241.180.0/22
IPv6:
2a0c:a780::/31
Signature Algorithm: sha256WithRSAEncryption
13:65:73:f7:59:4d:d0:56:d1:e4:15:65:f1:f4:ef:a5:7b:48:
db:bc:96:08:91:a3:e2:bc:4a:a4:9c:4c:43:85:39:94:d4:1b:
1c:4e:38:48:ec:0c:36:b1:2e:8e:9a:d0:20:55:bd:c5:e6:c0:
4f:92:a8:8b:1d:d5:7d:df:90:a6:3d:2a:5c:86:e3:b7:fa:61:
4a:b5:6c:db:2e:db:46:79:54:89:6e:09:05:4d:f8:6e:20:27:
0d:8a:71:a6:91:9c:54:56:a3:c6:75:1b:5a:44:7b:7f:9b:d1:
0c:92:2b:fa:6d:3d:3d:b4:6c:1d:ba:15:ef:77:5e:0d:62:b2:
7f:e3:62:a4:a0:c0:80:e3:d5:a9:6b:23:b6:f6:a8:b0:63:4a:
f0:b3:1c:5c:c5:73:ee:c6:1d:5c:57:67:0c:31:d4:2d:12:94:
fc:79:0e:cd:ed:fb:07:12:08:68:60:dd:b8:1f:22:a0:e4:d4:
30:79:8d:00:50:9d:53:f8:a3:69:f3:2c:54:8f:b6:3b:03:be:
41:bb:4e:d0:e7:31:73:a1:74:9c:67:39:0f:e2:93:0a:b2:b9:
a4:04:62:8d:6d:6e:45:1f:a0:40:2d:8a:d1:c5:2a:c0:b7:e1:
4d:c5:82:89:d4:2b:f8:ad:5b:c3:cd:f7:a8:88:9f:f8:8c:8b:
b0:b4:9c:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:41 2025 by rpki-client on console.sobornost.net