Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/617778-9f31-475b-84fa-74c979a6536e/1/zZ03RoGozbT1HFe4mhpawTrExsc.roa
File: zZ03RoGozbT1HFe4mhpawTrExsc.roa (raw, json)
Hash identifier: lLn9Wn1De0ejD1AHiJO5yX30r5UE6GRrj/0NmZ5bxR0=
Subject key identifier: CD:9D:37:46:81:A8:CD:B4:F5:1C:57:B8:9A:1A:5A:C1:3A:C4:C6:C7
Certificate issuer: /CN=68cc325c8ad9769a1b54da296305fe0c36573775
Certificate serial: 01941F8CA00A3976A074CAEACB1B574498C5
Authority key identifier: 68:CC:32:5C:8A:D9:76:9A:1B:54:DA:29:63:05:FE:0C:36:57:37:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMwyXIrZdpobVNopYwX-DDZXN3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/617778-9f31-475b-84fa-74c979a6536e/1/zZ03RoGozbT1HFe4mhpawTrExsc.roa
Signing time: Wed 01 Jan 2025 01:48:17 +0000
ROA not before: Wed 01 Jan 2025 01:48:17 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213224
IP address blocks: 85.235.158.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:a0:0a:39:76:a0:74:ca:ea:cb:1b:57:44:98:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68cc325c8ad9769a1b54da296305fe0c36573775
Validity
Not Before: Jan 1 01:48:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=cd9d374681a8cdb4f51c57b89a1a5ac13ac4c6c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:5a:6d:c3:0c:27:76:04:36:d0:61:66:b3:c0:
5d:1b:a2:29:45:aa:39:44:35:37:46:ce:36:35:99:
1c:ef:5a:e7:9e:a9:08:e4:cf:9b:b9:5a:e7:e5:bb:
b8:64:f8:06:8c:85:4e:dd:a2:7c:32:9c:d1:0f:4e:
ed:40:65:3c:26:66:6f:fa:27:98:0f:f1:35:24:f9:
cf:17:3b:c0:b9:49:3f:38:d4:e6:66:b5:28:c5:77:
71:14:bf:23:fa:b9:7a:62:6b:33:42:48:f1:25:57:
9f:54:49:0f:ea:66:c0:08:80:04:4c:c2:b8:97:95:
26:55:7e:c6:ce:4a:5a:86:09:4b:d2:cc:53:91:e1:
d9:1c:58:4f:8b:eb:f8:d3:64:b0:11:19:1a:1f:b0:
bf:e8:f5:53:06:54:2f:be:0a:45:68:ed:ca:17:78:
91:d1:44:1c:83:38:eb:e1:6c:84:ce:ad:3f:cb:6a:
d5:4f:a7:d6:26:e7:55:d7:46:7d:f0:35:33:65:8b:
64:98:3e:61:83:15:bc:38:9f:b6:da:d3:5a:f0:9e:
6f:b2:9a:94:35:75:1f:36:48:9b:af:70:60:d0:b6:
53:75:e4:83:7c:cf:cb:6e:d8:31:ac:cf:81:ee:21:
90:ce:66:95:7e:43:28:36:58:76:ba:b4:e5:a3:e3:
63:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:9D:37:46:81:A8:CD:B4:F5:1C:57:B8:9A:1A:5A:C1:3A:C4:C6:C7
X509v3 Authority Key Identifier:
keyid:68:CC:32:5C:8A:D9:76:9A:1B:54:DA:29:63:05:FE:0C:36:57:37:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMwyXIrZdpobVNopYwX-DDZXN3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/617778-9f31-475b-84fa-74c979a6536e/1/zZ03RoGozbT1HFe4mhpawTrExsc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/617778-9f31-475b-84fa-74c979a6536e/1/aMwyXIrZdpobVNopYwX-DDZXN3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.235.158.0/23
Signature Algorithm: sha256WithRSAEncryption
26:50:19:45:cb:e0:38:c2:97:0e:c6:cb:e5:8d:04:d2:33:7c:
3f:8b:bd:d4:ec:b1:0b:77:23:61:12:22:d1:2b:d1:5c:99:95:
26:30:1f:83:23:20:cf:61:c4:8f:d5:95:73:14:01:60:82:1d:
41:9a:3b:dd:e9:83:28:93:7f:cd:2f:cf:80:9d:94:a3:3c:a7:
7e:f0:a6:a1:b0:50:4e:cd:76:13:b2:8d:1b:83:05:eb:06:43:
d3:bc:b0:64:44:50:9c:cd:db:5b:c4:3c:09:2c:38:31:dc:e8:
5c:25:46:4c:fc:ad:32:f0:6e:e8:8c:e1:21:78:9a:35:45:51:
c3:2d:3b:a9:bd:4f:d3:ff:d1:ca:0d:cb:bb:bc:fc:11:6b:c1:
63:7d:be:ae:f2:e2:43:5f:ae:0d:1e:a4:18:23:26:ad:b1:e6:
7e:e1:80:63:1a:7a:99:65:5a:5b:8a:bd:b9:bb:bb:a8:93:2a:
84:b4:ea:b2:cf:65:b7:12:08:d2:82:9c:cc:20:9a:45:c7:22:
0c:d6:61:71:4c:c8:f2:a6:ad:12:01:36:09:aa:03:2f:27:d3:
dc:ff:79:c0:4a:4f:2b:69:05:fb:7d:16:57:14:54:a3:05:73:
a8:bc:f9:4d:af:3c:7f:cb:1d:aa:1a:53:16:85:93:56:a0:60:
9b:a8:0d:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:52 2025 by rpki-client on console.sobornost.net