Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/89a1f0-69dc-4c13-b97b-35203d6b0d57/1/LPHVyLxlu99zLZ120cTfoB_tDV0.roa
File: LPHVyLxlu99zLZ120cTfoB_tDV0.roa (raw, json)
Hash identifier: k/MXZCSTh36/WgnxNvkdeF42fCURyZYfQlnOWMA/duo=
Subject key identifier: 2C:F1:D5:C8:BC:65:BB:DF:73:2D:9D:76:D1:C4:DF:A0:1F:ED:0D:5D
Certificate issuer: /CN=8cbcf9374380ebd185d2118f551c8559ae233541
Certificate serial: 01942143E5B9BB07D0DC47307FD60029B06B
Authority key identifier: 8C:BC:F9:37:43:80:EB:D1:85:D2:11:8F:55:1C:85:59:AE:23:35:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jLz5N0OA69GF0hGPVRyFWa4jNUE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/89a1f0-69dc-4c13-b97b-35203d6b0d57/1/LPHVyLxlu99zLZ120cTfoB_tDV0.roa
Signing time: Wed 01 Jan 2025 09:48:05 +0000
ROA not before: Wed 01 Jan 2025 09:48:05 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206610
IP address blocks: 195.178.124.0/22 maxlen: 24
195.178.124.0/24 maxlen: 24
2a07:fe80::/29 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:43:e5:b9:bb:07:d0:dc:47:30:7f:d6:00:29:b0:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8cbcf9374380ebd185d2118f551c8559ae233541
Validity
Not Before: Jan 1 09:48:05 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2cf1d5c8bc65bbdf732d9d76d1c4dfa01fed0d5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:ef:84:52:46:41:83:d6:83:15:48:36:95:39:
d8:bb:68:44:ac:65:a2:b6:92:d2:91:f1:7e:80:73:
ba:07:a3:98:16:50:a3:40:6a:25:bb:92:5a:20:09:
ee:47:e8:3f:48:a4:45:43:53:26:9d:a5:f9:85:87:
ea:c1:2c:9f:28:e2:da:ae:22:cd:1c:0c:e7:ad:d6:
c5:68:64:97:eb:fe:b1:53:81:97:7a:07:a1:cc:8a:
f4:ab:b8:60:54:c4:36:42:f1:06:b7:4d:d0:a5:fc:
22:6e:33:51:f6:d2:2e:45:fb:dd:a0:35:6d:a1:3d:
b1:bb:c8:66:5e:60:d3:75:ac:b7:dc:28:b7:73:9e:
5c:c7:e8:d1:70:de:fd:dd:e0:ad:b3:67:b5:c0:f9:
52:78:8c:d6:f4:fb:93:0d:40:6c:ab:21:3b:e3:8d:
7d:6e:d4:b5:cf:1f:f9:ab:81:e9:c2:c3:13:52:22:
50:a2:f8:93:a4:30:2c:90:81:6c:58:7b:c5:dc:06:
ba:e3:09:33:b5:e6:d8:32:ff:07:ac:02:4f:7c:cf:
17:57:1d:7a:68:f2:be:f3:08:ee:c6:75:bc:09:b4:
49:c4:3e:cd:bb:27:dc:69:7d:3d:78:06:ea:62:b6:
05:da:27:41:50:f9:72:d3:fe:b9:46:a4:99:88:eb:
1d:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:F1:D5:C8:BC:65:BB:DF:73:2D:9D:76:D1:C4:DF:A0:1F:ED:0D:5D
X509v3 Authority Key Identifier:
keyid:8C:BC:F9:37:43:80:EB:D1:85:D2:11:8F:55:1C:85:59:AE:23:35:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jLz5N0OA69GF0hGPVRyFWa4jNUE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/89a1f0-69dc-4c13-b97b-35203d6b0d57/1/LPHVyLxlu99zLZ120cTfoB_tDV0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/89a1f0-69dc-4c13-b97b-35203d6b0d57/1/jLz5N0OA69GF0hGPVRyFWa4jNUE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.178.124.0/22
IPv6:
2a07:fe80::/29
Signature Algorithm: sha256WithRSAEncryption
5a:aa:d3:2b:5f:9d:13:59:3a:99:75:e5:e4:03:f0:8c:96:99:
f2:f5:5e:e5:50:dc:7c:18:e9:3e:c1:74:d3:0f:26:fc:62:2c:
b1:e2:81:93:57:4d:22:ea:5e:59:ef:f5:4c:ce:44:cb:85:c2:
c2:1f:fe:19:9b:f8:75:49:de:80:c1:0a:f1:50:f1:80:56:47:
1f:a3:ad:e5:95:f0:a0:c7:96:a6:ad:6d:5b:e4:6f:87:0a:ba:
93:d6:0e:21:81:45:f7:52:d8:17:38:f9:ec:92:93:0c:3e:c0:
38:63:f4:21:75:ea:9f:91:7e:45:e0:82:63:03:57:21:7d:62:
d9:24:00:72:f7:68:9d:72:56:97:31:fb:8b:1c:25:25:2c:80:
18:6c:53:5d:06:70:6f:f5:00:b5:15:e4:ec:58:ca:77:0a:aa:
e6:a3:b2:83:04:3c:4b:38:95:ee:e7:f6:ae:82:5f:11:c2:a5:
6e:20:23:b6:13:4b:c1:fd:a4:2c:fc:e4:0b:95:22:3f:74:22:
4c:94:44:34:3c:61:77:4b:d2:e9:09:69:c7:20:8e:2a:03:e6:
60:03:df:01:ad:98:81:ad:ff:a1:ae:64:50:41:fd:1b:f1:15:
eb:71:0a:8f:97:12:d3:13:41:41:f9:61:51:49:7f:12:07:ca:
9f:66:1a:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:07 2025 by rpki-client on console.sobornost.net