Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/f50ecd-1c16-4bd3-bd0e-c84bfd4ee878/1/zG4ly3FhpsRy_muFf41M8ZKPF5o.roa
File: zG4ly3FhpsRy_muFf41M8ZKPF5o.roa (raw, json)
Hash identifier: 9tm7KsG1SMgxDQdJBogQZSZKc5Vw7KrlfAJHfrS64mY=
Subject key identifier: CC:6E:25:CB:71:61:A6:C4:72:FE:6B:85:7F:8D:4C:F1:92:8F:17:9A
Certificate issuer: /CN=c5ebb8b79422fb2d6d8a82db7f1ac0b6aa59b37f
Certificate serial: 019421445981007A41694D2B6B5F8AD5A763
Authority key identifier: C5:EB:B8:B7:94:22:FB:2D:6D:8A:82:DB:7F:1A:C0:B6:AA:59:B3:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xeu4t5Qi-y1tioLbfxrAtqpZs38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/f50ecd-1c16-4bd3-bd0e-c84bfd4ee878/1/zG4ly3FhpsRy_muFf41M8ZKPF5o.roa
Signing time: Wed 01 Jan 2025 09:48:34 +0000
ROA not before: Wed 01 Jan 2025 09:48:34 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 34239
IP address blocks: 195.95.226.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:44:59:81:00:7a:41:69:4d:2b:6b:5f:8a:d5:a7:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5ebb8b79422fb2d6d8a82db7f1ac0b6aa59b37f
Validity
Not Before: Jan 1 09:48:34 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=cc6e25cb7161a6c472fe6b857f8d4cf1928f179a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:47:a9:cd:ea:15:18:72:e1:ab:32:48:31:82:
2f:c2:50:b7:9a:ff:30:bc:11:6d:d8:b3:07:86:8a:
0d:c4:58:4e:27:1c:a2:45:cd:12:6c:30:cb:47:d8:
13:17:8a:80:1d:e2:b4:af:8b:c7:b1:b2:24:9b:3e:
dd:0c:79:23:df:b5:c3:b4:60:cb:35:88:b1:b9:31:
c7:11:52:1d:fe:12:26:b0:1a:9f:30:8d:ba:50:38:
bb:69:57:ea:9d:ab:eb:a2:9b:23:de:ee:a8:40:e1:
fc:b0:4c:5d:0f:a1:40:45:b6:18:40:56:a8:06:09:
c4:fe:c1:ab:83:ac:9e:bb:47:dc:eb:47:5d:de:98:
c4:18:14:41:8d:6f:11:70:91:fc:59:dc:27:bb:26:
06:23:94:c3:fa:ef:ba:2f:08:19:89:6a:cf:6b:c8:
2f:2f:18:54:75:66:63:25:16:60:5d:57:93:d3:07:
a3:0b:29:ac:7e:2d:30:48:e2:77:c2:9b:fb:a0:16:
b7:51:8e:93:83:52:40:8a:14:39:74:9c:62:33:63:
5e:76:4f:6e:ee:d3:2b:5a:c8:c1:98:5f:b1:56:5a:
77:19:42:aa:a0:3e:e4:d2:08:05:e6:12:d9:4a:c7:
93:36:76:ed:20:8c:6f:14:de:01:16:11:fd:58:98:
a6:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:6E:25:CB:71:61:A6:C4:72:FE:6B:85:7F:8D:4C:F1:92:8F:17:9A
X509v3 Authority Key Identifier:
keyid:C5:EB:B8:B7:94:22:FB:2D:6D:8A:82:DB:7F:1A:C0:B6:AA:59:B3:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xeu4t5Qi-y1tioLbfxrAtqpZs38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f50ecd-1c16-4bd3-bd0e-c84bfd4ee878/1/zG4ly3FhpsRy_muFf41M8ZKPF5o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f50ecd-1c16-4bd3-bd0e-c84bfd4ee878/1/xeu4t5Qi-y1tioLbfxrAtqpZs38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.95.226.0/23
Signature Algorithm: sha256WithRSAEncryption
41:62:1d:08:1e:cf:fa:12:7a:70:7d:82:d3:5f:ee:d5:3d:b5:
a5:e2:11:f6:c6:b3:47:28:38:52:16:e0:49:99:94:6d:61:46:
c6:e6:44:fe:92:d6:10:3a:f6:f3:50:72:2d:52:9c:11:a3:98:
e4:54:92:87:e5:09:3d:f3:80:80:1a:ba:05:cd:21:f6:df:7b:
a8:0b:a8:52:06:db:0c:6f:b8:46:67:34:be:5f:8e:23:37:d5:
f4:3e:a2:9d:b9:77:7f:52:a9:a8:df:90:44:ec:eb:af:bf:34:
cb:67:72:61:4c:eb:52:88:8c:6b:b4:b9:57:96:75:8d:b3:84:
f2:27:17:54:eb:37:72:94:9f:f1:60:cd:6c:b6:16:92:cd:fb:
11:26:dd:55:49:23:c3:4c:af:2f:49:43:8a:a3:53:31:53:58:
28:62:40:b4:17:4a:fd:06:82:7c:57:fe:bd:7d:2b:62:43:ac:
dc:a1:15:59:ca:2c:2a:73:2b:c4:33:f3:1f:0a:d5:c4:55:6e:
30:30:1d:83:a3:c3:71:b3:2f:b1:a7:c5:d7:75:cd:27:4c:5b:
07:dd:33:a5:56:1b:f1:f0:00:2c:54:3b:71:74:f6:b2:3c:65:
34:e3:5f:7b:a6:c9:ec:cf:44:2a:dc:78:76:14:02:44:68:5e:
88:c5:63:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:19 2025 by rpki-client on console.sobornost.net