Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/e0b67e-2690-4a88-9d16-22e98de26106/1/2aLxopPcHENcfLMPsouZcp1_F6M.roa
File: 2aLxopPcHENcfLMPsouZcp1_F6M.roa (raw, json)
Hash identifier: h4R/reMNBt8uBqG3DatHK1fJyHrvX4LbUEuuPBCoJK8=
Subject key identifier: D9:A2:F1:A2:93:DC:1C:43:5C:7C:B3:0F:B2:8B:99:72:9D:7F:17:A3
Certificate issuer: /CN=2ee56d4d7b1d1a06ce89f746f79b656c7348c525
Certificate serial: 019422FBF83722C75F358177CC38D47CCA61
Authority key identifier: 2E:E5:6D:4D:7B:1D:1A:06:CE:89:F7:46:F7:9B:65:6C:73:48:C5:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LuVtTXsdGgbOifdG95tlbHNIxSU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/e0b67e-2690-4a88-9d16-22e98de26106/1/2aLxopPcHENcfLMPsouZcp1_F6M.roa
Signing time: Wed 01 Jan 2025 17:48:45 +0000
ROA not before: Wed 01 Jan 2025 17:48:45 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206970
IP address blocks: 5.104.156.0/23 maxlen: 23
2a06:e381::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fb:f8:37:22:c7:5f:35:81:77:cc:38:d4:7c:ca:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ee56d4d7b1d1a06ce89f746f79b656c7348c525
Validity
Not Before: Jan 1 17:48:45 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d9a2f1a293dc1c435c7cb30fb28b99729d7f17a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:6c:12:73:e5:fe:69:66:52:e7:78:f1:cc:7e:
39:d5:96:ba:ae:35:e8:f6:2c:3e:2b:43:68:e4:bc:
ae:8c:3e:4c:57:5a:4b:c1:57:6b:f7:5c:bb:12:44:
78:f8:62:b0:bd:f0:0d:06:b7:f8:2b:ca:b3:aa:f6:
91:01:39:77:c7:07:7e:d1:08:b4:c4:80:77:a3:d4:
d8:b8:5e:81:c7:8a:c3:06:3c:85:6f:a5:28:ab:e6:
8a:60:b3:7b:c0:51:fb:e2:ed:df:8c:9d:a5:89:56:
49:f2:7f:e8:94:d7:0b:b3:37:1b:51:d2:1e:d9:f4:
8a:8d:58:be:43:8a:37:08:76:5a:52:d9:06:b3:9b:
da:16:0e:c6:63:a5:a7:28:93:b9:74:92:d1:73:24:
ef:bd:b7:16:01:f0:81:af:d5:2a:1e:cf:aa:93:30:
a8:65:dd:42:e6:de:18:dd:20:10:79:71:73:b2:4f:
fe:d8:5f:87:87:a7:12:5a:a2:04:18:69:e0:a8:f4:
bb:da:46:67:0d:67:a1:ba:16:e3:c1:12:e9:90:38:
c2:92:9a:5f:0b:bb:32:af:0e:8b:2f:d0:6f:94:f8:
f8:36:98:7c:a7:bd:2f:1b:88:50:bf:d6:f3:97:28:
95:a0:42:5e:31:ef:92:75:56:76:09:b6:a7:55:fa:
f3:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:A2:F1:A2:93:DC:1C:43:5C:7C:B3:0F:B2:8B:99:72:9D:7F:17:A3
X509v3 Authority Key Identifier:
keyid:2E:E5:6D:4D:7B:1D:1A:06:CE:89:F7:46:F7:9B:65:6C:73:48:C5:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LuVtTXsdGgbOifdG95tlbHNIxSU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/e0b67e-2690-4a88-9d16-22e98de26106/1/2aLxopPcHENcfLMPsouZcp1_F6M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/e0b67e-2690-4a88-9d16-22e98de26106/1/LuVtTXsdGgbOifdG95tlbHNIxSU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.104.156.0/23
IPv6:
2a06:e381::/32
Signature Algorithm: sha256WithRSAEncryption
5b:f4:75:83:59:7d:a1:af:b3:ec:c2:50:07:3c:da:21:ab:48:
9c:9f:02:e6:66:34:10:cb:34:67:1c:ac:3d:9a:e4:01:91:58:
46:8a:d1:20:cb:8c:9b:34:0f:a1:c8:59:2f:9a:e0:ed:a2:d2:
e7:07:0a:c1:9b:28:3b:fd:63:8d:c9:3d:ac:10:4d:81:48:34:
cd:64:e9:52:cf:ba:80:34:52:00:d7:9a:2f:90:ec:2f:4e:46:
ff:ce:74:ed:b1:df:96:f5:3a:cd:4d:95:69:4b:3b:75:1c:83:
65:ed:70:80:d5:37:0c:31:47:25:04:a3:c0:7e:b1:20:64:54:
a4:bf:e4:b4:49:5d:44:d6:00:f4:0e:a0:fd:52:e6:16:42:e0:
4e:dc:47:25:8a:51:3c:be:ea:df:64:0f:c9:ec:49:1e:ac:be:
83:02:46:32:3f:f6:0f:ef:b8:1f:e9:9d:c1:37:53:63:50:7c:
e7:85:16:3a:1e:43:ec:93:fe:09:30:80:b7:6c:69:c2:20:07:
29:50:27:d0:a6:c0:c1:b5:50:4f:d3:20:0b:6d:48:46:7d:cc:
57:27:bc:d6:1b:a8:92:f5:04:63:82:50:bb:5e:85:4f:08:09:
fa:54:7b:f9:60:8a:8d:a4:8e:e9:d2:c4:b9:cd:e9:31:8b:8d:
7f:21:39:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:45 2025 by rpki-client on console.sobornost.net