Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/XoWwiwUx0UR9Z-6tiThpu7Fk5RQ.roa
File: XoWwiwUx0UR9Z-6tiThpu7Fk5RQ.roa (raw, json)
Hash identifier: +xBF2faRL3g77Re3gteLewE63XvDX1GK71f+iASQFDo=
Subject key identifier: 5E:85:B0:8B:05:31:D1:44:7D:67:EE:AD:89:38:69:BB:B1:64:E5:14
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0196203033C9700D5D3A19ED5775C94275F5
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/XoWwiwUx0UR9Z-6tiThpu7Fk5RQ.roa
Signing time: Thu 10 Apr 2025 14:52:31 +0000
ROA not before: Thu 10 Apr 2025 14:52:31 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 216300
IP address blocks: 194.87.77.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:20:30:33:c9:70:0d:5d:3a:19:ed:57:75:c9:42:75:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Apr 10 14:52:31 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5e85b08b0531d1447d67eead893869bbb164e514
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:5d:38:9b:d9:31:2b:5e:4c:87:07:02:c3:e3:
37:07:c6:15:92:5c:4a:a5:d2:46:97:39:f0:a1:8f:
90:a1:0b:99:58:51:55:26:50:7b:9c:f8:a9:26:3b:
22:58:fa:89:3d:2c:12:72:d8:71:34:4e:2a:8d:b0:
2b:1b:42:dc:4c:31:dd:ff:f2:78:b0:9b:1e:1e:c8:
63:80:c6:3f:75:76:ab:a3:86:d3:dc:8b:f5:07:54:
00:12:43:7b:02:0c:65:9b:04:d1:7a:74:db:2e:87:
42:7a:a3:27:12:94:14:9a:2e:20:49:26:99:de:84:
be:50:43:02:41:f1:9d:6c:f5:80:c7:cd:95:14:e6:
8a:12:74:86:c5:55:0c:3e:07:60:1f:a2:2b:dc:2c:
4e:e0:cf:ad:7b:22:2d:93:13:82:e9:77:be:36:e9:
ad:45:a0:2a:12:ae:bf:de:89:91:9a:51:38:49:f2:
5f:7a:6d:75:a2:a0:49:46:b2:d9:ca:b9:ff:f8:8e:
a2:f8:ce:8b:9e:74:e0:31:c6:59:d0:26:a0:08:ca:
95:94:0e:1d:83:5f:19:d4:e2:a9:cd:5b:2b:ef:65:
db:7b:31:2c:ef:42:3f:ff:20:c4:5c:d4:b5:54:98:
af:fb:25:7c:e0:e2:a8:94:18:eb:de:60:23:af:a0:
8a:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:85:B0:8B:05:31:D1:44:7D:67:EE:AD:89:38:69:BB:B1:64:E5:14
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/XoWwiwUx0UR9Z-6tiThpu7Fk5RQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.77.0/24
Signature Algorithm: sha256WithRSAEncryption
35:3e:6f:55:2e:1b:bb:dd:1d:c3:8b:d6:15:0b:73:cd:5b:42:
82:43:20:9b:d6:43:1f:22:ec:17:3d:14:58:78:7f:7d:4b:b0:
73:0e:0f:f4:60:3d:26:af:db:88:eb:d8:51:d8:06:77:5c:16:
85:de:a7:79:69:63:9a:72:66:b8:d0:c8:53:d7:40:5b:d2:c5:
f6:0c:79:3a:a2:c7:3c:a3:72:f5:d4:a7:52:11:72:7b:7d:43:
f4:88:bf:e8:82:fc:28:9d:a9:2c:da:15:37:d6:2d:c1:fd:e1:
45:36:0c:16:e5:2b:c5:ce:3e:52:f9:9d:a9:31:ea:1d:65:13:
a6:d6:64:e1:2a:7b:87:25:06:da:78:68:1a:07:36:78:45:ac:
7f:51:76:c8:67:81:70:2b:81:85:d4:27:cc:4f:dc:8e:9e:a5:
0d:e7:2c:72:39:ae:31:6c:b2:44:bf:a4:5a:6c:b4:f0:83:f2:
92:8f:b6:cb:12:43:c9:5d:b3:f0:04:b7:67:c8:59:f7:f6:94:
75:e9:c1:fe:aa:8e:6c:45:62:fa:7b:df:00:ae:e5:43:d1:fb:
a4:fe:37:bc:e2:7e:bb:ad:df:a8:f6:81:66:75:48:a7:bc:86:
8b:88:55:be:bc:43:83:33:8f:14:b4:2b:2b:ce:e4:36:5a:f0:
1e:b8:fc:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:33 2025 by rpki-client on console.sobornost.net