Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/c57727-9396-4bf8-b25d-6a1e0ec71da8/1/tiYFwAJDJd26p4Ey1IP7FxpONvg.roa
File: tiYFwAJDJd26p4Ey1IP7FxpONvg.roa (raw, json)
Hash identifier: jiqo6KPoLT8BsZ7lPEc/rIbVXD1zFAqeKQ1qUkmvE44=
Subject key identifier: B6:26:05:C0:02:43:25:DD:BA:A7:81:32:D4:83:FB:17:1A:4E:36:F8
Certificate issuer: /CN=d66738a8dadac2d0d3aeddb934f820066b9f5feb
Certificate serial: 019565F96CA55F797D4F6276712335DCEE43
Authority key identifier: D6:67:38:A8:DA:DA:C2:D0:D3:AE:DD:B9:34:F8:20:06:6B:9F:5F:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1mc4qNrawtDTrt25NPggBmufX-s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/c57727-9396-4bf8-b25d-6a1e0ec71da8/1/tiYFwAJDJd26p4Ey1IP7FxpONvg.roa
Signing time: Wed 05 Mar 2025 11:03:19 +0000
ROA not before: Wed 05 Mar 2025 11:03:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 203136
IP address blocks: 85.117.53.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:65:f9:6c:a5:5f:79:7d:4f:62:76:71:23:35:dc:ee:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d66738a8dadac2d0d3aeddb934f820066b9f5feb
Validity
Not Before: Mar 5 11:03:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b62605c0024325ddbaa78132d483fb171a4e36f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:97:9c:18:de:92:28:db:fe:42:32:2d:4c:c0:
f4:71:60:1b:37:9f:bb:30:54:6d:7a:8a:ea:d2:67:
34:93:1d:02:e0:f1:04:88:3b:0c:6e:01:81:ec:4e:
2d:74:6b:f6:96:15:b4:6c:48:db:58:83:5f:21:57:
ef:2b:fe:69:ec:e6:1c:d0:ec:7f:85:b3:1d:e3:19:
84:24:d0:f0:6d:13:25:90:ae:a2:5f:8f:36:57:8d:
3c:7e:eb:f9:ea:31:12:f0:af:63:bb:4a:da:97:90:
21:2f:24:1a:a0:41:62:ac:d5:cb:f2:5f:1f:a0:5c:
02:1d:08:ba:7e:75:12:f5:f7:7d:ea:e4:a4:f7:6c:
db:6f:98:00:a7:b8:85:95:ea:be:d7:4d:3c:33:0b:
4f:73:de:06:94:9f:83:dc:9c:8b:35:01:95:54:28:
80:ad:7f:77:94:0e:05:09:7f:f7:b2:d8:69:a4:d5:
36:f4:42:a3:76:79:31:a9:67:db:18:ba:8a:96:2c:
e5:12:7c:76:be:06:5d:ca:6b:d5:68:a1:dd:1c:ae:
c7:cd:97:9a:e7:12:41:df:3b:6c:80:6c:45:f3:54:
0c:54:fc:aa:2b:2e:11:37:a7:d1:0b:81:9a:d4:7a:
08:b5:c1:f9:6a:6e:c5:a0:17:f6:35:a7:77:ca:11:
c6:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:26:05:C0:02:43:25:DD:BA:A7:81:32:D4:83:FB:17:1A:4E:36:F8
X509v3 Authority Key Identifier:
keyid:D6:67:38:A8:DA:DA:C2:D0:D3:AE:DD:B9:34:F8:20:06:6B:9F:5F:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1mc4qNrawtDTrt25NPggBmufX-s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/c57727-9396-4bf8-b25d-6a1e0ec71da8/1/tiYFwAJDJd26p4Ey1IP7FxpONvg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/c57727-9396-4bf8-b25d-6a1e0ec71da8/1/1mc4qNrawtDTrt25NPggBmufX-s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.117.53.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:74:86:f0:21:ff:7c:36:e1:49:5e:d8:c9:24:12:2f:6f:90:
99:64:14:53:67:a2:59:0e:44:2d:f2:f4:5f:c4:f1:04:92:25:
8d:d0:eb:79:7e:9c:06:2b:c9:c6:2b:c0:f8:ab:50:29:cf:2b:
da:87:8d:d8:61:2e:f9:b0:07:48:b6:cc:ff:86:b5:b2:82:16:
3c:16:56:5a:c6:a6:39:f0:52:0d:53:f1:43:00:b3:a1:cb:d8:
2e:02:29:95:eb:eb:48:1d:a9:8b:e0:dc:d2:0f:99:d3:1b:d3:
90:2e:38:58:b3:f3:f1:23:87:62:08:c1:d5:d0:77:99:93:5b:
4c:9f:48:d1:15:69:7e:6f:be:5f:d6:5b:18:a7:83:36:5d:7a:
3e:4c:1a:d4:0c:11:1b:ec:9e:eb:12:2f:a0:9d:12:78:d1:c4:
ad:64:ee:93:e5:9b:d9:11:f6:15:66:83:9b:6d:0b:17:f0:50:
66:02:8e:25:7e:23:9a:18:4c:3f:92:b3:0f:af:99:5e:af:7d:
31:bf:11:57:3d:30:74:81:33:cd:c8:ce:ee:c4:d7:ae:9b:f2:
02:24:79:d7:6e:75:1b:42:79:0c:1e:88:f6:05:5c:69:7f:b3:
f2:51:22:8b:0c:a3:85:03:6a:f5:f2:98:97:0c:8b:b6:dd:67:
6b:6f:cf:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:33:05 2025 by rpki-client on console.sobornost.net