Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/85928f-5f19-41d9-8238-5c54cdad19f1/1/7z6VwEslCL2FPJkLcnWBqsZx-Yc.roa
File: 7z6VwEslCL2FPJkLcnWBqsZx-Yc.roa (raw, json)
Hash identifier: 4HX05uMrwNGyncqNvEyr0SjiIMdyEc2AyvawA9NsEGo=
Subject key identifier: EF:3E:95:C0:4B:25:08:BD:85:3C:99:0B:72:75:81:AA:C6:71:F9:87
Certificate issuer: /CN=27b8dbd97de4cd4059b52e513dcf35cd381a32b3
Certificate serial: 019423D78CBECAE1F9E5F4AAF12ED78EA923
Authority key identifier: 27:B8:DB:D9:7D:E4:CD:40:59:B5:2E:51:3D:CF:35:CD:38:1A:32:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J7jb2X3kzUBZtS5RPc81zTgaMrM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/85928f-5f19-41d9-8238-5c54cdad19f1/1/7z6VwEslCL2FPJkLcnWBqsZx-Yc.roa
Signing time: Wed 01 Jan 2025 21:48:36 +0000
ROA not before: Wed 01 Jan 2025 21:48:36 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 197981
IP address blocks: 185.204.40.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:8c:be:ca:e1:f9:e5:f4:aa:f1:2e:d7:8e:a9:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27b8dbd97de4cd4059b52e513dcf35cd381a32b3
Validity
Not Before: Jan 1 21:48:36 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ef3e95c04b2508bd853c990b727581aac671f987
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:09:f2:6c:0b:26:ad:12:77:49:13:97:80:ba:
18:f6:33:f3:70:99:6d:a2:a1:be:4a:3e:b7:9a:8e:
27:b8:bd:6e:1f:4e:96:8e:88:c2:04:42:d4:d9:7a:
a7:79:9e:8b:47:52:f0:e7:1b:66:16:2a:b6:38:89:
8c:dd:1d:85:1b:0e:74:62:f1:b8:b1:a1:50:e3:6a:
6a:7b:2f:c0:04:b0:f4:1f:13:a6:21:b2:ec:5e:2b:
98:78:4d:fb:e0:2a:ee:11:0f:45:b9:cd:f7:0e:93:
26:9a:77:ba:17:0a:08:a8:87:5a:e8:17:76:d9:01:
87:7c:71:0b:8b:c0:15:f9:95:82:f2:fa:2e:69:ad:
ff:80:71:22:97:9b:15:53:6e:09:88:98:45:67:71:
cb:1d:58:ac:52:6e:b3:8d:b5:e8:45:26:50:4a:5f:
ca:77:1f:54:05:37:08:4f:b1:f5:cd:ec:34:02:cd:
9f:e4:0c:c1:ab:18:ee:52:59:fe:00:ec:1c:09:70:
aa:67:b5:63:7f:bf:89:83:32:07:8a:7c:2d:0c:2e:
03:c9:5e:bb:63:17:f0:3e:73:da:56:dd:ec:07:d0:
4b:5f:23:39:1d:d4:21:cf:f3:16:be:fb:01:89:59:
46:75:f0:ce:bc:f2:f8:ee:de:e8:24:25:d1:e8:92:
e5:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:3E:95:C0:4B:25:08:BD:85:3C:99:0B:72:75:81:AA:C6:71:F9:87
X509v3 Authority Key Identifier:
keyid:27:B8:DB:D9:7D:E4:CD:40:59:B5:2E:51:3D:CF:35:CD:38:1A:32:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J7jb2X3kzUBZtS5RPc81zTgaMrM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/85928f-5f19-41d9-8238-5c54cdad19f1/1/7z6VwEslCL2FPJkLcnWBqsZx-Yc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/85928f-5f19-41d9-8238-5c54cdad19f1/1/J7jb2X3kzUBZtS5RPc81zTgaMrM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.204.40.0/24
Signature Algorithm: sha256WithRSAEncryption
d4:dd:18:23:21:3c:09:c4:32:4f:0a:70:62:a0:f0:ed:57:b4:
cc:91:d1:75:8d:be:d4:26:2b:be:40:62:e2:8c:93:cc:a2:8c:
3e:7e:df:d5:6d:a4:c1:aa:09:62:14:7f:57:02:73:64:7f:c9:
88:97:2f:6c:34:63:17:d1:83:ad:bb:3f:ac:d7:4a:07:82:5e:
79:6c:f4:02:7b:1c:9e:26:30:3d:df:f9:e4:9a:14:1e:ba:90:
95:0d:6a:50:52:3b:3e:d8:6f:bf:8e:93:6f:ec:6e:c5:f2:d2:
97:66:60:3a:fd:e3:09:ea:a0:65:36:57:53:96:99:ae:9a:bb:
dd:18:e6:28:99:81:a7:e3:09:60:fc:91:a6:a4:34:24:9b:4b:
a6:20:bd:44:ce:d2:2b:10:db:5a:21:5d:8b:ae:d1:69:09:55:
95:a6:c2:ce:d6:f8:f5:fb:72:3c:a9:ed:e9:aa:1e:b4:9e:ff:
a9:1c:c8:ec:fb:b4:7f:b3:e1:7e:50:97:a2:7c:dd:ab:21:7d:
e6:f7:2c:fa:e6:24:ee:75:df:01:d3:2e:63:4c:f9:b0:0f:9d:
a9:df:e2:2d:0b:86:35:63:2a:7c:09:11:63:b7:96:3e:6f:ae:
1f:9c:21:8a:09:4b:64:06:12:7b:42:7f:c0:84:27:84:0a:57:
f0:8f:b9:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:42 2025 by rpki-client on console.sobornost.net