Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/ec5584-6618-4b12-a11c-3055cb729bcf/1/Lns1LMe1--aCWobzDFBGvJLb-v0.roa
File: Lns1LMe1--aCWobzDFBGvJLb-v0.roa (raw, json)
Hash identifier: 3lUaKCTyCDmb++7MRYHqVolI8pfAgpID3s0wPUzmsmk=
Subject key identifier: 2E:7B:35:2C:C7:B5:FB:E6:82:5A:86:F3:0C:50:46:BC:92:DB:FA:FD
Certificate issuer: /CN=4c3b88cdb13f3eb12a9be54ab19baa90559b396a
Certificate serial: 019469978A54649FE6310256DF12399BE355
Authority key identifier: 4C:3B:88:CD:B1:3F:3E:B1:2A:9B:E5:4A:B1:9B:AA:90:55:9B:39:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TDuIzbE_PrEqm-VKsZuqkFWbOWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/ec5584-6618-4b12-a11c-3055cb729bcf/1/Lns1LMe1--aCWobzDFBGvJLb-v0.roa
Signing time: Wed 15 Jan 2025 10:52:06 +0000
ROA not before: Wed 15 Jan 2025 10:52:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 51826
IP address blocks: 185.222.60.0/24 maxlen: 24
2a13:a0c0::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:69:97:8a:54:64:9f:e6:31:02:56:df:12:39:9b:e3:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c3b88cdb13f3eb12a9be54ab19baa90559b396a
Validity
Not Before: Jan 15 10:52:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2e7b352cc7b5fbe6825a86f30c5046bc92dbfafd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:a7:54:dd:38:ab:08:51:e6:73:58:85:2d:8d:
74:44:5e:30:2a:dd:1a:01:50:7d:00:3d:00:e4:c2:
93:26:ae:50:1c:32:5f:d8:ae:4f:59:82:db:8d:bb:
d7:f8:e8:8e:6e:cb:26:8d:30:39:09:a7:7e:c7:e7:
22:61:dd:3c:e5:7b:b0:ef:12:81:17:2a:6a:97:c2:
26:d8:9a:ea:23:d8:96:18:8a:ad:5b:53:af:e7:91:
af:cb:0b:4b:9b:b5:6d:36:80:d7:e7:76:2a:76:01:
38:0b:66:b3:31:42:78:f7:21:b1:4d:18:62:cc:04:
4e:d3:ad:7e:8e:74:a4:4e:5b:b9:57:62:a2:5d:ed:
e3:d0:aa:55:2c:2c:21:7f:72:5e:34:5c:bd:6c:46:
a6:26:50:29:43:d0:65:b5:a2:68:00:83:02:0c:1d:
8c:c0:76:38:c2:af:f4:93:5b:5c:9a:fc:1e:9d:70:
bd:ee:68:1f:20:10:58:d9:67:4e:25:3e:31:b7:4b:
f0:cf:f9:79:60:2d:31:7a:54:37:69:e7:82:6b:4f:
52:4d:df:9b:47:82:7e:31:56:3b:20:1f:d1:73:46:
cc:58:56:36:ea:94:ed:88:85:d6:b0:a6:b0:23:89:
e8:60:be:ec:88:9b:12:8b:97:2c:f8:3e:8c:e2:59:
8c:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:7B:35:2C:C7:B5:FB:E6:82:5A:86:F3:0C:50:46:BC:92:DB:FA:FD
X509v3 Authority Key Identifier:
keyid:4C:3B:88:CD:B1:3F:3E:B1:2A:9B:E5:4A:B1:9B:AA:90:55:9B:39:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TDuIzbE_PrEqm-VKsZuqkFWbOWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/ec5584-6618-4b12-a11c-3055cb729bcf/1/Lns1LMe1--aCWobzDFBGvJLb-v0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/ec5584-6618-4b12-a11c-3055cb729bcf/1/TDuIzbE_PrEqm-VKsZuqkFWbOWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.222.60.0/24
IPv6:
2a13:a0c0::/32
Signature Algorithm: sha256WithRSAEncryption
8a:ee:01:aa:39:e5:a9:bf:da:c9:ce:20:07:6d:71:05:14:be:
bf:91:2e:56:a5:4a:ad:a4:ff:1b:2b:e9:c1:e0:cc:2e:c9:5d:
00:87:f9:36:57:4c:eb:05:fd:08:dd:9c:38:c0:bf:a3:2b:54:
4f:23:cc:80:72:eb:79:a1:31:3d:d7:d4:0e:1a:16:01:e2:d3:
9d:48:51:37:5b:37:35:74:29:5c:dc:c5:8b:97:84:f3:a5:d0:
e8:ee:b1:d7:7a:d2:a4:cd:65:20:51:eb:ae:a6:bf:e4:92:88:
6e:a3:69:ee:8b:1c:38:7a:45:c8:52:7f:6c:b0:e9:c1:3f:2f:
3e:6d:31:62:61:c1:f1:17:4b:cb:7f:86:58:6a:8f:91:e7:60:
73:bd:5a:cd:d5:3f:7e:13:e4:42:ec:48:dc:5e:2f:74:d4:e6:
ec:61:c3:a4:89:30:1b:0c:70:9f:79:38:48:4c:29:8b:c4:c8:
52:a0:dc:09:c0:68:e1:60:fe:6d:d8:b4:ee:30:17:b5:5b:7e:
90:64:c0:9f:7a:e7:28:a5:16:cb:f5:12:c8:3e:64:27:8d:34:
19:33:c4:c5:10:83:06:65:7f:08:34:d4:7b:4f:ee:6f:30:d3:
41:27:b7:d1:43:bd:55:fc:df:35:05:ed:a8:fa:d2:e8:29:a4:
d4:cb:41:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:46 2025 by rpki-client on console.sobornost.net