Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/824ccd-bc9b-4a82-be91-63104db6a7a5/1/8Wti1PH3KuI5W3Ps9JfxSql0m7Q.roa
File: 8Wti1PH3KuI5W3Ps9JfxSql0m7Q.roa (raw, json)
Hash identifier: CpKe22p+vfF1GPX/Ydl6oGQUK80PsEj4zMJRNQ1KdVw=
Subject key identifier: F1:6B:62:D4:F1:F7:2A:E2:39:5B:73:EC:F4:97:F1:4A:A9:74:9B:B4
Certificate issuer: /CN=adce3c2aafc7783cce8234551f3e9661d27eefbc
Certificate serial: 019420D5C12719D1793F620B5E2DF8D5E968
Authority key identifier: AD:CE:3C:2A:AF:C7:78:3C:CE:82:34:55:1F:3E:96:61:D2:7E:EF:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rc48Kq_HeDzOgjRVHz6WYdJ-77w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/824ccd-bc9b-4a82-be91-63104db6a7a5/1/8Wti1PH3KuI5W3Ps9JfxSql0m7Q.roa
Signing time: Wed 01 Jan 2025 07:47:47 +0000
ROA not before: Wed 01 Jan 2025 07:47:47 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213178
IP address blocks: 185.163.48.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d5:c1:27:19:d1:79:3f:62:0b:5e:2d:f8:d5:e9:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adce3c2aafc7783cce8234551f3e9661d27eefbc
Validity
Not Before: Jan 1 07:47:47 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f16b62d4f1f72ae2395b73ecf497f14aa9749bb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:ba:28:fa:92:e0:83:67:3a:3f:90:92:6a:5d:
47:0b:1d:18:d3:c9:49:78:6b:5e:e9:b5:b8:91:69:
91:2a:d4:7d:c8:89:fd:56:76:ba:19:b7:5a:8f:1a:
cd:4e:f1:4b:20:f8:75:2c:40:04:03:88:91:b5:94:
10:cf:e6:03:1b:b1:52:35:94:64:a6:8e:a6:16:90:
16:a2:7c:73:b3:ad:b6:b4:b2:17:6e:78:78:40:b7:
60:fe:f6:36:53:5b:4b:e3:4f:98:e0:2d:a1:8e:f5:
10:2b:d8:eb:23:10:d5:10:cb:d5:d4:fc:0d:ca:a3:
bb:fe:24:d2:2a:49:ec:0a:91:b0:8a:a5:92:0f:22:
86:1f:bb:71:11:7e:28:0e:4b:13:12:67:d4:cf:45:
34:5a:16:b9:36:1e:c5:8c:51:b9:2c:da:99:6a:bd:
85:6c:e8:d8:23:73:ac:50:1a:35:72:7d:07:e0:6c:
f2:44:fd:4c:03:7d:05:c1:78:97:da:89:59:e8:5f:
91:19:5e:7d:32:55:ec:86:7b:18:ed:72:e7:5a:04:
8b:89:14:8a:81:46:59:92:1d:b0:d6:8e:68:d2:b5:
8a:24:e5:f9:72:e6:c9:8f:0e:31:5d:cf:12:2b:aa:
38:c3:4a:85:66:09:7e:d1:fc:78:a1:0d:88:02:da:
be:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:6B:62:D4:F1:F7:2A:E2:39:5B:73:EC:F4:97:F1:4A:A9:74:9B:B4
X509v3 Authority Key Identifier:
keyid:AD:CE:3C:2A:AF:C7:78:3C:CE:82:34:55:1F:3E:96:61:D2:7E:EF:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rc48Kq_HeDzOgjRVHz6WYdJ-77w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/824ccd-bc9b-4a82-be91-63104db6a7a5/1/8Wti1PH3KuI5W3Ps9JfxSql0m7Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/824ccd-bc9b-4a82-be91-63104db6a7a5/1/rc48Kq_HeDzOgjRVHz6WYdJ-77w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.163.48.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:5b:29:d4:0b:98:9a:ad:fa:f4:37:17:67:f4:3f:c4:bb:79:
8e:ac:ff:b1:28:99:bd:c1:c8:e4:f5:03:8d:9b:f7:2f:28:2b:
b2:2b:59:f6:92:03:c0:25:98:09:60:87:c6:11:b1:f7:d8:f4:
87:3b:6e:ec:04:cb:73:6a:53:90:11:b6:78:c3:ed:7d:81:84:
91:18:79:56:a6:86:fb:b3:60:59:35:65:8d:fd:ae:92:db:30:
45:92:bb:07:cf:25:50:11:36:ea:a7:1e:37:e1:72:da:d6:65:
a1:50:ec:fb:a7:de:ae:36:24:c4:38:8d:f8:38:e3:43:de:5b:
bd:d2:ac:9a:b6:2a:fe:ce:3e:25:f7:48:26:27:8d:ea:ae:e9:
c1:27:e1:f4:d6:4d:7d:18:ee:95:0f:fb:e5:f1:e8:ae:a3:2e:
c2:f4:d1:75:33:c9:5c:60:fe:d2:c7:04:90:84:80:f9:bd:79:
1e:f9:ce:33:e2:11:fa:67:2d:aa:53:1c:c0:ad:23:1b:e7:86:
59:dd:51:6f:43:31:8d:a4:70:97:43:95:76:80:10:5c:95:41:
bf:18:bc:3c:f7:ce:12:13:94:94:c6:4e:00:20:f2:95:a3:c4:
7e:22:72:02:1c:1f:eb:ce:ac:e3:77:33:97:67:38:12:79:2a:
eb:ea:c4:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:33:08 2025 by rpki-client on console.sobornost.net