Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/cddf94-8d51-41cd-8a5b-a0b4930cbd1e/1/zIbC2a3NLstRoJ1KbSzBvFb6vZ0.roa
File: zIbC2a3NLstRoJ1KbSzBvFb6vZ0.roa (raw, json)
Hash identifier: YltSOQHV02hFJedVO9/8WLk8TMz1RedE7tGsvMysOE4=
Subject key identifier: CC:86:C2:D9:AD:CD:2E:CB:51:A0:9D:4A:6D:2C:C1:BC:56:FA:BD:9D
Certificate issuer: /CN=96179b39d1c1d28f5063ca921d6007e363e1c60b
Certificate serial: 0194274843D0F85AB9C546A6DB92A187BE49
Authority key identifier: 96:17:9B:39:D1:C1:D2:8F:50:63:CA:92:1D:60:07:E3:63:E1:C6:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lhebOdHB0o9QY8qSHWAH42Phxgs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/cddf94-8d51-41cd-8a5b-a0b4930cbd1e/1/zIbC2a3NLstRoJ1KbSzBvFb6vZ0.roa
Signing time: Thu 02 Jan 2025 13:50:34 +0000
ROA not before: Thu 02 Jan 2025 13:50:34 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 209633
IP address blocks: 139.28.184.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:43:d0:f8:5a:b9:c5:46:a6:db:92:a1:87:be:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96179b39d1c1d28f5063ca921d6007e363e1c60b
Validity
Not Before: Jan 2 13:50:34 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=cc86c2d9adcd2ecb51a09d4a6d2cc1bc56fabd9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:96:32:17:40:ec:18:40:36:07:a2:80:fe:6b:
a6:5d:34:57:5a:8d:a1:99:cb:7b:15:aa:1c:d5:e5:
3f:38:15:54:02:2a:1c:83:c4:a2:26:81:18:73:ba:
64:20:27:02:48:a2:09:4a:8d:6d:15:28:cd:15:2f:
c2:00:c0:b1:e6:b1:db:6c:cc:1e:8a:58:6b:d5:e3:
3c:51:d2:fa:c1:94:5c:4e:8e:14:80:61:b3:31:ec:
5a:b2:41:42:3c:8a:21:88:6c:3c:a4:e3:37:b1:f0:
a3:b4:f8:aa:6d:49:81:97:04:70:43:d0:fe:b8:86:
96:f3:96:8a:fe:99:08:56:f3:1a:69:db:8f:50:5c:
f5:d2:db:3e:4f:22:ed:e5:f0:b3:74:37:51:17:af:
f2:91:ea:8f:e1:3d:d2:c6:61:69:50:82:f2:81:d8:
f8:8c:01:2b:6a:70:3c:62:36:ce:c6:b4:c5:7b:4c:
5d:ad:27:16:d4:80:8d:cb:f0:86:14:f4:6a:21:83:
ed:84:28:c7:db:62:95:04:d0:b8:78:fb:6b:c2:16:
19:98:3a:9b:ac:47:1b:da:1d:3e:ec:d6:b9:84:29:
69:70:7d:d8:96:5c:43:b6:7a:45:a2:13:14:d7:ad:
d9:83:ea:27:94:74:10:aa:53:8f:b6:e5:45:57:4b:
60:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:86:C2:D9:AD:CD:2E:CB:51:A0:9D:4A:6D:2C:C1:BC:56:FA:BD:9D
X509v3 Authority Key Identifier:
keyid:96:17:9B:39:D1:C1:D2:8F:50:63:CA:92:1D:60:07:E3:63:E1:C6:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lhebOdHB0o9QY8qSHWAH42Phxgs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/cddf94-8d51-41cd-8a5b-a0b4930cbd1e/1/zIbC2a3NLstRoJ1KbSzBvFb6vZ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/cddf94-8d51-41cd-8a5b-a0b4930cbd1e/1/lhebOdHB0o9QY8qSHWAH42Phxgs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
139.28.184.0/22
Signature Algorithm: sha256WithRSAEncryption
78:a0:7a:db:be:39:26:3f:c0:a0:f0:d6:f5:f5:13:44:86:c0:
56:32:fa:94:80:e8:d1:5c:4a:a1:85:e1:58:14:a1:80:4a:ec:
00:e3:26:7a:75:34:d6:1a:f7:7b:48:7f:a6:b6:51:3e:02:c9:
88:c3:85:82:59:94:29:c0:22:59:b4:87:fd:e3:19:86:23:16:
5b:0a:1e:d1:72:5c:95:17:96:da:6c:08:4d:dd:c1:6f:92:b7:
fc:55:16:cf:6c:66:13:ce:cc:36:4b:f8:51:4f:1f:97:35:56:
6b:1c:81:e8:6a:d2:5b:b5:6c:98:d5:8d:8a:2e:c7:d9:e0:e8:
60:14:03:2f:82:08:5d:dc:6f:52:fd:f1:31:9d:ee:d3:97:02:
f6:ff:0f:68:c3:2c:3b:21:ae:33:3d:e4:96:3c:b3:04:33:4a:
4e:b1:7f:82:47:64:8c:c0:d0:99:11:0b:0a:39:02:88:09:79:
ed:45:87:ac:d3:0d:b3:2c:a3:c3:b7:f6:ab:66:b8:c3:50:00:
bc:f6:b6:52:ec:0c:9e:ad:83:83:01:50:94:9b:d0:f1:44:82:
9d:9c:ba:0a:ae:ec:89:66:6f:cd:e4:85:cc:59:ea:ac:ec:0a:
2b:a6:d7:cf:c5:71:76:70:07:30:7f:fd:08:be:7c:0c:ab:86:
8b:82:ed:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:51 2025 by rpki-client on console.sobornost.net