Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/dZjJp50twWh6NrHaCfEQnJd0Nog.roa
File: dZjJp50twWh6NrHaCfEQnJd0Nog.roa (raw, json)
Hash identifier: ho1RGd/rhwe3SFtAbNB7UGEXGhwHoI+rGlLIZG3kwy8=
Subject key identifier: 75:98:C9:A7:9D:2D:C1:68:7A:36:B1:DA:09:F1:10:9C:97:74:36:88
Certificate issuer: /CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Certificate serial: 0196266E384FB9D25E10773B47A5B98D3C9D
Authority key identifier: EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/dZjJp50twWh6NrHaCfEQnJd0Nog.roa
Signing time: Fri 11 Apr 2025 19:57:59 +0000
ROA not before: Fri 11 Apr 2025 19:57:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 209813
IP address blocks: 5.8.66.0/24 maxlen: 24
5.8.67.0/24 maxlen: 24
5.188.195.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:26:6e:38:4f:b9:d2:5e:10:77:3b:47:a5:b9:8d:3c:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Validity
Not Before: Apr 11 19:57:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7598c9a79d2dc1687a36b1da09f1109c97743688
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:8f:2f:f6:46:32:85:b3:d9:94:fe:21:fa:27:
74:50:83:25:99:6e:8a:fc:bc:06:81:08:42:9c:9f:
4a:f4:9c:32:19:4e:f4:6f:b7:ca:80:e5:25:d2:a3:
53:28:b5:1a:e1:09:b0:f5:06:26:13:e8:b6:28:3b:
cf:9e:e6:e6:d8:4a:3d:0c:3c:8f:f4:a1:44:d0:da:
2f:1e:5c:65:78:cf:44:0f:66:8f:cf:51:5d:19:ac:
31:3f:b4:eb:80:5b:98:b4:0d:6f:7b:7f:00:d9:4c:
12:b6:df:0a:14:d3:17:0f:40:ba:08:f1:69:a9:4e:
6d:9b:c9:6f:ae:fa:39:c4:47:7b:97:b2:1e:e1:bf:
da:1c:f3:cf:7d:c2:eb:a1:04:23:1f:63:42:b9:2c:
58:83:3b:0c:68:6f:7a:08:10:e1:4e:05:44:2c:44:
b8:82:54:2c:e7:83:3f:4d:f0:fb:7c:7c:05:6f:f6:
e1:72:79:fc:53:a7:77:79:73:46:48:2f:d9:e6:85:
9a:0b:29:86:63:62:dc:4f:cf:2b:b0:c6:27:d3:dc:
89:20:58:7a:bf:1b:05:c0:10:ca:69:55:8b:12:18:
ae:1c:31:14:43:ee:34:bb:31:18:58:d4:a5:32:33:
7a:82:de:c6:df:78:64:ad:79:f2:af:1f:89:e4:e8:
9c:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:98:C9:A7:9D:2D:C1:68:7A:36:B1:DA:09:F1:10:9C:97:74:36:88
X509v3 Authority Key Identifier:
keyid:EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/dZjJp50twWh6NrHaCfEQnJd0Nog.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.8.66.0/23
5.188.195.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:ce:e9:65:55:0c:ea:9d:f9:af:36:7b:85:23:64:e1:71:bf:
a0:45:ad:15:38:0f:22:d6:5b:25:44:a7:17:0b:d9:94:bc:12:
43:8a:55:eb:1d:43:4b:d6:bd:f6:31:89:16:72:50:88:b3:d2:
46:3b:27:9c:f3:2e:d2:9b:41:6f:b6:4d:d1:b7:ec:ff:1c:e7:
66:79:5e:01:77:94:6f:12:6e:1e:5e:c8:7a:82:b3:16:bd:cd:
a4:5d:b2:8c:6c:91:fb:b0:03:40:d5:c5:70:53:0c:9a:d5:f6:
77:80:93:54:07:2b:1c:a4:cf:c1:d1:86:69:fc:97:95:d5:7f:
7f:1e:ca:f8:28:d3:d4:46:80:14:02:92:be:46:b0:c6:a0:56:
66:db:eb:5c:13:60:3d:90:d3:d6:39:26:b4:3f:2a:8c:79:0c:
a9:07:9e:93:31:91:42:fd:23:fa:2d:86:fb:4e:1a:52:21:42:
d5:53:4c:d9:2d:6c:74:c9:0f:af:3c:d0:d7:64:22:7f:58:60:
20:b2:e7:cf:6f:41:3b:59:89:91:9f:79:0f:ba:7b:15:ed:a4:
85:db:d5:9f:18:1e:7c:e8:f1:61:00:ff:e2:0f:e8:e4:f4:1b:
04:9c:c8:7b:f4:6c:dd:42:5a:3f:87:b8:4a:fa:3d:56:15:9a:
d0:1a:2a:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:15 2025 by rpki-client on console.sobornost.net