Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/065dba-eef9-480d-a880-9175c8408e5e/1/_he88goyBeeMgMEtYhNW51-yKRw.roa
File: _he88goyBeeMgMEtYhNW51-yKRw.roa (raw, json)
Hash identifier: bVhU/YoxDPNh8/p9ZgLTw8sJFTf7HVdMt0ALSYqAQ2c=
Subject key identifier: FE:17:BC:F2:0A:32:05:E7:8C:80:C1:2D:62:13:56:E7:5F:B2:29:1C
Certificate issuer: /CN=7059e03a08e17416f66546307988349991b84a2e
Certificate serial: 019426D9B3F43508CE18C0869CC3404B06B5
Authority key identifier: 70:59:E0:3A:08:E1:74:16:F6:65:46:30:79:88:34:99:91:B8:4A:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cFngOgjhdBb2ZUYweYg0mZG4Si4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/065dba-eef9-480d-a880-9175c8408e5e/1/_he88goyBeeMgMEtYhNW51-yKRw.roa
Signing time: Thu 02 Jan 2025 11:49:49 +0000
ROA not before: Thu 02 Jan 2025 11:49:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 8578
IP address blocks: 83.136.76.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:b3:f4:35:08:ce:18:c0:86:9c:c3:40:4b:06:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7059e03a08e17416f66546307988349991b84a2e
Validity
Not Before: Jan 2 11:49:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=fe17bcf20a3205e78c80c12d621356e75fb2291c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:3e:81:fd:95:39:1a:45:db:77:0b:3a:93:2d:
41:ce:9e:01:b7:7c:4e:dc:8f:02:13:a1:33:19:d9:
dd:ae:8f:6c:2b:01:8c:5d:70:94:3d:21:27:14:8b:
c3:11:2c:6d:ff:64:81:dd:58:59:8a:5d:09:d7:21:
6c:cb:8c:5e:ed:df:61:77:41:ec:f1:75:7b:22:20:
4b:ac:52:3f:a9:cd:54:98:e4:53:19:b3:94:e7:1b:
57:5c:71:6a:f5:1a:7a:88:2a:ea:f4:8a:82:38:86:
00:dd:6d:b4:58:0e:f2:b1:d3:7b:be:88:98:c9:3b:
f5:0f:7a:38:63:b7:15:6f:9f:a8:f9:8d:01:5a:dd:
41:19:b5:f6:c3:00:01:6a:ad:6e:27:90:c2:f6:48:
89:d5:b8:2a:dd:6a:6e:22:c6:53:ea:83:a5:d4:2a:
a7:77:6a:c8:06:b5:ea:8b:a3:f2:14:1f:84:a0:14:
e7:c3:24:19:e8:44:fe:10:83:34:a8:ef:17:80:50:
f8:5b:50:14:04:90:f6:3f:68:cd:fa:28:ea:a6:21:
e9:a3:d2:b7:25:7b:63:92:96:48:04:59:4e:eb:d2:
81:50:f8:75:11:98:34:ff:d1:f0:00:fb:d7:f2:80:
7e:f1:67:d1:6c:ae:cd:d9:19:32:e2:d9:78:b8:9d:
2d:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:17:BC:F2:0A:32:05:E7:8C:80:C1:2D:62:13:56:E7:5F:B2:29:1C
X509v3 Authority Key Identifier:
keyid:70:59:E0:3A:08:E1:74:16:F6:65:46:30:79:88:34:99:91:B8:4A:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cFngOgjhdBb2ZUYweYg0mZG4Si4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/065dba-eef9-480d-a880-9175c8408e5e/1/_he88goyBeeMgMEtYhNW51-yKRw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/065dba-eef9-480d-a880-9175c8408e5e/1/cFngOgjhdBb2ZUYweYg0mZG4Si4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.136.76.0/23
Signature Algorithm: sha256WithRSAEncryption
2f:de:70:0c:8d:ac:7f:12:6f:27:71:30:01:4a:8e:2b:db:55:
52:5d:3e:23:bf:22:85:bd:2c:0b:31:2c:e2:af:1a:5c:39:6c:
77:a5:b7:28:21:13:54:18:c4:c8:93:07:09:67:3f:7a:73:4f:
ad:26:e7:56:76:c3:d0:89:5d:67:ee:b5:93:fd:9a:29:c3:95:
51:62:39:3c:fe:ed:88:41:5d:5b:c9:3c:27:0c:0a:b5:be:7c:
0c:56:ce:01:1b:a2:e5:49:37:b3:85:e1:f8:dc:1c:cc:2d:83:
7c:09:4b:2b:53:02:8e:7f:46:63:2e:92:58:48:92:10:c6:63:
da:78:47:d4:43:44:ac:4c:e1:ca:0a:11:54:cf:3b:e4:45:7d:
25:d9:a2:2e:f2:c4:ec:c1:5a:e8:27:ba:68:eb:b2:96:f6:01:
fb:10:90:ed:74:f9:e7:0b:6d:f4:6c:9c:31:e8:e4:8e:21:73:
1f:80:9f:45:c8:cd:68:87:10:6f:0b:df:5d:ec:95:c6:b4:f6:
31:af:94:71:92:7f:e3:41:a6:bd:09:56:46:2b:12:7a:d2:9a:
5a:92:d4:0b:62:e8:5f:14:a2:6b:d1:cd:9d:e5:14:12:d9:65:
42:d5:86:b9:98:4d:e9:57:2a:6a:69:19:99:e4:b8:99:3b:15:
ce:d7:8c:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:45 2025 by rpki-client on console.sobornost.net