Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/NElMiSIMXr25Ebx81B--j612RqQ.roa
File: NElMiSIMXr25Ebx81B--j612RqQ.roa (raw, json)
Hash identifier: OLQo2RB7KsPg+ghtEstsCcRrbm0PUxuvUPdCF+7rpa0=
Subject key identifier: 34:49:4C:89:22:0C:5E:BD:B9:11:BC:7C:D4:1F:BE:8F:AD:76:46:A4
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0195DB26389DCC68FBE0EC1BE5DD444BB02F
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/NElMiSIMXr25Ebx81B--j612RqQ.roa
Signing time: Fri 28 Mar 2025 05:07:50 +0000
ROA not before: Fri 28 Mar 2025 05:07:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213519
IP address blocks: 5.175.239.0/24 maxlen: 24
89.144.38.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:db:26:38:9d:cc:68:fb:e0:ec:1b:e5:dd:44:4b:b0:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Mar 28 05:07:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=34494c89220c5ebdb911bc7cd41fbe8fad7646a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:5b:69:b0:0b:3a:ab:07:69:72:6b:03:ef:4a:
3a:77:72:9f:0a:29:ba:0b:d3:4b:c1:69:b4:88:5f:
3e:fa:2a:3a:e7:5c:8d:33:7f:0d:a0:0a:ce:4f:a2:
2f:28:64:1c:56:7a:90:bd:69:dc:33:10:bd:04:9a:
d0:d8:55:43:5d:1b:48:a4:a0:5e:13:c6:74:ce:54:
ff:36:bc:7e:9a:4f:80:a9:d0:c7:aa:5a:cb:94:4a:
66:45:71:7a:aa:2e:73:57:a3:d5:a5:55:bd:a1:4e:
71:13:6a:3a:e3:01:a5:43:1e:12:3d:f7:bd:34:0a:
ed:fa:2f:1e:b8:d5:75:f5:91:25:87:56:a4:66:e7:
33:59:48:76:8a:af:8f:de:0d:8d:b8:c2:35:e2:b4:
97:fe:6c:54:20:9c:14:b0:50:84:77:00:7a:fa:85:
d9:74:e7:e2:d8:65:04:fb:46:66:82:5e:87:37:b9:
ab:2e:c6:94:8b:c5:e6:8c:f9:f2:31:16:b6:70:6e:
37:b4:21:0b:ea:84:fd:29:3b:67:54:99:7a:6a:bf:
17:4c:78:6d:a8:a6:d2:a6:d4:8a:b8:35:06:fb:55:
f8:38:cc:0e:79:89:12:81:7c:a6:1e:ec:7d:7d:f8:
01:a9:72:fc:b3:75:79:83:2a:aa:ab:d9:6d:30:a4:
96:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:49:4C:89:22:0C:5E:BD:B9:11:BC:7C:D4:1F:BE:8F:AD:76:46:A4
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/NElMiSIMXr25Ebx81B--j612RqQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.175.239.0/24
89.144.38.0/24
Signature Algorithm: sha256WithRSAEncryption
56:5d:bf:1b:b9:1b:da:f1:7f:43:36:c9:3d:76:8d:dc:8a:53:
d3:ad:e4:96:75:ee:a2:b0:28:f4:48:31:4f:cb:18:0f:5b:33:
9b:d0:06:39:e4:e4:ea:9c:ae:ae:b4:ee:76:4e:45:e6:4f:a8:
75:9f:f5:94:a9:d0:ae:67:e0:f4:94:42:d7:42:a8:eb:94:3b:
69:03:30:ee:b8:5c:9a:28:55:f1:28:2b:4e:dd:78:c7:98:1c:
0b:b2:cc:b7:23:40:93:16:80:17:dd:8b:cb:2c:df:0f:71:74:
9c:a8:4d:1f:57:55:02:d2:a0:f2:09:fb:f2:c2:1e:1a:01:7b:
9a:10:a7:f1:e4:9e:2d:2e:fa:2f:73:7f:d2:eb:a3:d7:56:af:
1e:91:e3:aa:99:30:e2:a7:bf:9d:56:65:b6:7a:af:0b:4b:17:
b5:72:fa:47:4e:44:f6:b6:1c:46:43:94:1b:ff:3c:d4:2f:9b:
e7:c9:16:51:04:dc:61:e4:eb:bd:e1:b8:b5:45:24:9a:9c:85:
ae:e7:4b:04:fe:64:9e:8e:2c:52:c1:d0:d8:82:b1:8b:c2:c4:
86:93:7a:6f:a3:f5:29:92:de:7a:78:29:be:ae:2b:ee:9f:40:
98:ec:00:75:a6:2a:30:4e:2b:35:03:0c:30:06:44:62:2b:7c:
63:2d:ac:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 1 23:48:04 2025 by rpki-client on console.sobornost.net