Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/wTXNCobmVd94tU2BHf15dM_wmUs.roa
File: wTXNCobmVd94tU2BHf15dM_wmUs.roa (raw, json)
Hash identifier: XeXe1lrR7H1lmm283TcWTxGv41BCBjM9i+00xX3UQ7M=
Subject key identifier: C1:35:CD:0A:86:E6:55:DF:78:B5:4D:81:1D:FD:79:74:CF:F0:99:4B
Certificate issuer: /CN=568fe35cc962633a2757af10a0e6e8ab6d01f4c9
Certificate serial: 019424456408930D3D27542B8E0A9A37AF41
Authority key identifier: 56:8F:E3:5C:C9:62:63:3A:27:57:AF:10:A0:E6:E8:AB:6D:01:F4:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vo_jXMliYzonV68QoOboq20B9Mk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/wTXNCobmVd94tU2BHf15dM_wmUs.roa
Signing time: Wed 01 Jan 2025 23:48:34 +0000
ROA not before: Wed 01 Jan 2025 23:48:34 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206409
IP address blocks: 31.145.59.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:64:08:93:0d:3d:27:54:2b:8e:0a:9a:37:af:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=568fe35cc962633a2757af10a0e6e8ab6d01f4c9
Validity
Not Before: Jan 1 23:48:34 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c135cd0a86e655df78b54d811dfd7974cff0994b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:d9:eb:96:67:31:1b:fd:46:98:20:7f:31:e8:
b9:52:a0:e0:66:54:86:5a:51:1b:76:99:c1:f8:0e:
b9:5e:52:91:2d:35:47:2f:d9:26:69:33:a4:91:ef:
3c:49:0d:ff:16:fa:b4:91:49:7c:14:f8:ed:2a:cc:
ae:c3:70:99:8b:21:8a:a0:dc:77:37:59:9e:fb:a6:
b1:f3:e2:33:51:2a:7c:db:58:5c:4b:ec:69:2a:2f:
c6:b4:d5:96:31:0e:36:ea:2b:5a:42:e2:eb:d4:65:
c0:07:ec:c4:9e:a8:e9:70:7e:4c:e2:6c:5c:30:e0:
86:3a:3d:81:2e:cc:87:b7:21:b3:8e:77:97:ba:d5:
69:fe:2c:1c:5c:20:35:f4:eb:8f:d3:a2:a4:db:bb:
b8:16:d1:82:13:59:0f:35:8a:18:26:31:3f:6a:af:
9a:43:90:03:1c:20:6e:1a:f8:e4:2c:b5:07:b5:f2:
fd:cf:e1:6b:90:1c:02:c7:10:27:df:e8:25:be:d9:
57:50:93:c1:3b:02:6e:de:c3:40:45:60:ef:1c:56:
23:00:5f:a6:ee:dc:76:4d:88:61:c3:f9:9e:87:75:
cb:17:29:5e:24:eb:f2:a7:d4:ee:e7:3b:d2:90:1e:
ec:ca:ae:bf:53:7d:c3:af:d7:9f:9b:e4:46:d8:7d:
1b:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:35:CD:0A:86:E6:55:DF:78:B5:4D:81:1D:FD:79:74:CF:F0:99:4B
X509v3 Authority Key Identifier:
keyid:56:8F:E3:5C:C9:62:63:3A:27:57:AF:10:A0:E6:E8:AB:6D:01:F4:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vo_jXMliYzonV68QoOboq20B9Mk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/wTXNCobmVd94tU2BHf15dM_wmUs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/Vo_jXMliYzonV68QoOboq20B9Mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.145.59.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:7a:35:ac:66:c5:ae:2d:75:76:4e:46:fe:d6:1d:f4:0d:f5:
f8:d0:70:98:1c:23:0a:5c:cd:17:5a:4c:90:61:c7:e3:b9:b4:
2f:71:7a:ee:bd:ce:36:6a:e1:0f:45:97:1b:4c:ca:68:83:f8:
63:f3:79:5d:35:c6:df:91:60:7a:87:60:4b:cc:8c:da:70:d5:
27:71:6f:b2:76:a9:39:a7:62:b9:a6:6f:57:55:db:f7:a7:06:
32:12:23:0b:8f:0f:66:17:b5:df:16:d0:f0:f4:e6:f7:63:d6:
8e:13:bb:9c:53:60:3b:10:55:63:07:35:be:ca:f2:69:11:54:
99:e7:c9:bd:1c:68:b1:b2:1b:38:60:92:26:b5:f2:65:a3:0d:
b4:bc:2d:5e:dd:f9:55:a4:bb:7c:46:06:05:50:9d:c4:ea:14:
30:47:38:c0:2b:d5:70:27:22:38:a2:42:ac:1a:bb:72:11:de:
6e:34:1a:e9:c0:b9:d7:64:94:99:de:3f:fb:08:13:c2:bd:5d:
5f:24:82:6d:c0:d1:99:c0:07:e3:1d:f2:1a:3e:6a:3c:f0:16:
e6:a0:25:ba:05:53:13:69:fd:79:53:ed:be:b5:c3:ee:28:e8:
02:c5:a0:d6:80:12:23:2e:a2:3e:2e:4e:b5:35:fe:d7:83:f2:
0e:67:3f:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:47 2025 by rpki-client on console.sobornost.net