Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/86b402-e43b-4b7e-98ee-b6b74cb299b0/1/EJkcDznOKKWRmaypi-0UVjmIciU.roa
File: EJkcDznOKKWRmaypi-0UVjmIciU.roa (raw, json)
Hash identifier: 0CzgDka1v9BOwLuN51gJ8uTArmQf+fKvMJ7KbWRZMSo=
Subject key identifier: 10:99:1C:0F:39:CE:28:A5:91:99:AC:A9:8B:ED:14:56:39:88:72:25
Certificate issuer: /CN=768ef9c104be22284bf7b2756d2a8173946a386e
Certificate serial: 0194266B39BFE26FA093CDC1BC9CE70F405A
Authority key identifier: 76:8E:F9:C1:04:BE:22:28:4B:F7:B2:75:6D:2A:81:73:94:6A:38:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/do75wQS-IihL97J1bSqBc5RqOG4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/86b402-e43b-4b7e-98ee-b6b74cb299b0/1/EJkcDznOKKWRmaypi-0UVjmIciU.roa
Signing time: Thu 02 Jan 2025 09:49:08 +0000
ROA not before: Thu 02 Jan 2025 09:49:08 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 62286
IP address blocks: 185.40.40.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:39:bf:e2:6f:a0:93:cd:c1:bc:9c:e7:0f:40:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=768ef9c104be22284bf7b2756d2a8173946a386e
Validity
Not Before: Jan 2 09:49:08 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=10991c0f39ce28a59199aca98bed145639887225
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:e3:44:ea:9d:dd:be:fa:44:dc:87:74:59:32:
e0:72:3b:ea:ff:b5:98:3e:98:1f:ee:96:2e:16:81:
5a:9f:39:82:9d:e7:45:d6:be:00:bc:95:6a:fc:bb:
40:b1:e4:1a:83:ca:92:48:a2:0c:a0:3e:fb:9f:67:
35:f1:cc:e9:bb:82:74:b7:b3:ed:96:8e:49:43:e1:
b3:3c:66:78:6f:81:cb:f6:17:3e:fb:fd:92:af:cb:
23:6e:0c:3a:5c:f8:95:6c:fd:dc:34:b4:b5:a3:50:
e0:df:b1:8f:58:40:95:3d:67:3f:84:e8:35:20:e6:
25:3b:09:6a:84:c8:fb:ec:ed:c8:f4:cd:c1:bb:d4:
d2:f1:40:05:3b:07:64:74:f5:21:bb:0c:e7:ef:0a:
fb:92:71:2c:00:7e:87:0d:c9:67:d6:92:b5:42:56:
39:c4:50:24:76:21:54:1a:26:33:84:bb:45:ab:0e:
e7:1d:0e:2e:31:73:bf:cc:2a:46:c0:dd:02:96:79:
0e:12:83:b2:ff:f1:10:e2:f2:a7:3a:70:5f:b3:e3:
d4:23:1c:bb:4c:58:1a:5a:1c:c5:fe:2d:ab:85:b4:
1d:97:30:41:94:83:8c:c8:50:25:95:9d:4e:1d:da:
d7:71:41:d1:6d:c4:61:fd:69:7a:bd:ab:8f:00:40:
10:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:99:1C:0F:39:CE:28:A5:91:99:AC:A9:8B:ED:14:56:39:88:72:25
X509v3 Authority Key Identifier:
keyid:76:8E:F9:C1:04:BE:22:28:4B:F7:B2:75:6D:2A:81:73:94:6A:38:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/do75wQS-IihL97J1bSqBc5RqOG4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/86b402-e43b-4b7e-98ee-b6b74cb299b0/1/EJkcDznOKKWRmaypi-0UVjmIciU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/86b402-e43b-4b7e-98ee-b6b74cb299b0/1/do75wQS-IihL97J1bSqBc5RqOG4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.40.40.0/22
Signature Algorithm: sha256WithRSAEncryption
02:d6:c4:85:7a:f6:79:90:c3:cf:83:2d:e1:24:fe:9d:2d:75:
64:d9:63:a9:45:9d:31:1c:12:34:f4:af:bc:2e:83:9f:2f:22:
57:f8:34:a2:36:0e:51:d3:6b:74:46:cb:39:11:d5:6e:00:63:
17:6d:9e:36:16:2b:6d:0d:d4:b1:35:83:ac:5d:b3:6a:6c:a3:
41:a1:d3:0f:55:ea:1c:ff:d2:7a:7e:df:c2:fa:ca:e5:c2:5d:
1e:55:1c:2c:4e:6f:43:23:6e:11:fd:3d:bd:24:11:9f:19:7e:
fc:a2:8e:60:e6:49:e0:dc:7e:14:d5:37:4e:47:b8:b8:fa:4b:
c8:52:d6:e7:5f:eb:62:f8:24:d8:14:1c:42:f0:18:01:2c:2e:
09:4f:d4:0c:11:e7:43:3c:4f:f0:ed:fd:52:c7:c8:67:3a:ff:
6c:38:cc:69:01:b2:e6:ca:99:0e:c9:da:e7:25:f8:77:84:58:
a6:53:64:eb:9a:90:2c:6d:db:80:9c:e0:d9:76:15:0b:be:4d:
c6:1f:87:ea:4a:86:2a:d4:04:ad:dc:d1:71:9c:7f:c9:70:ba:
e8:ce:29:6d:d6:06:c7:7a:a4:f8:2a:3b:3c:0b:d6:a3:10:69:
2e:fb:f1:dd:45:78:8f:34:4e:9a:46:2f:d4:2b:1e:7e:13:88:
c5:2f:58:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:42 2025 by rpki-client on console.sobornost.net