Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/735e42-c608-46b6-8f70-f23f66f8d242/1/CWu5dKrEuf-0nBCltKLJ6Qa-UyY.roa
File: CWu5dKrEuf-0nBCltKLJ6Qa-UyY.roa (raw, json)
Hash identifier: ykK1nj6nlxboFcnLj7DFZHuLWYTPt9DhUF2Ryrd0hQo=
Subject key identifier: 09:6B:B9:74:AA:C4:B9:FF:B4:9C:10:A5:B4:A2:C9:E9:06:BE:53:26
Certificate issuer: /CN=844582ca704717eb0c94be4d89413f4bc2d8b8e5
Certificate serial: 019421B1B764054E05B22F22568E6F55E3C6
Authority key identifier: 84:45:82:CA:70:47:17:EB:0C:94:BE:4D:89:41:3F:4B:C2:D8:B8:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hEWCynBHF-sMlL5NiUE_S8LYuOU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/735e42-c608-46b6-8f70-f23f66f8d242/1/CWu5dKrEuf-0nBCltKLJ6Qa-UyY.roa
Signing time: Wed 01 Jan 2025 11:48:02 +0000
ROA not before: Wed 01 Jan 2025 11:48:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 47450
IP address blocks: 147.78.6.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b1:b7:64:05:4e:05:b2:2f:22:56:8e:6f:55:e3:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=844582ca704717eb0c94be4d89413f4bc2d8b8e5
Validity
Not Before: Jan 1 11:48:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=096bb974aac4b9ffb49c10a5b4a2c9e906be5326
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:50:e9:f8:f9:e0:cb:de:3b:2a:f3:40:98:08:
83:5e:2d:4c:54:79:01:0f:9b:22:93:74:4f:99:c2:
91:13:f5:e1:22:99:21:51:37:88:88:cf:13:11:43:
8c:c2:d2:34:b9:ec:36:48:17:26:48:68:f0:49:79:
ae:17:68:3c:c8:6e:6f:7f:2f:c4:31:07:05:87:fc:
19:c8:a4:49:b6:74:5f:eb:66:2c:56:62:f3:15:2d:
fd:60:ad:a2:5f:b7:74:12:03:49:af:8f:a0:c3:57:
a9:56:ec:d1:43:bd:92:4f:f9:32:53:4a:33:55:75:
d9:9f:8c:be:64:48:eb:10:26:a6:c1:df:5a:d7:ea:
c7:7a:6c:40:ee:5d:57:23:51:23:5f:36:80:cc:d2:
3d:6e:0b:7e:67:3f:ec:23:25:b2:f6:30:24:19:71:
d2:7e:08:96:6c:bc:93:9f:d0:fc:be:9c:39:82:75:
0a:cb:8b:54:49:3c:5d:63:1b:5a:de:f8:f5:4c:4a:
48:ce:5a:f6:b6:32:d4:72:9f:a3:f5:72:6d:2b:b8:
34:3d:52:63:ad:11:78:50:c4:6f:9c:40:e4:a0:a3:
4b:68:a2:f3:40:ce:9c:af:42:60:45:91:28:fd:5b:
3f:9f:3c:bf:b1:8e:54:41:77:22:fc:c9:46:5b:b1:
b9:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:6B:B9:74:AA:C4:B9:FF:B4:9C:10:A5:B4:A2:C9:E9:06:BE:53:26
X509v3 Authority Key Identifier:
keyid:84:45:82:CA:70:47:17:EB:0C:94:BE:4D:89:41:3F:4B:C2:D8:B8:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hEWCynBHF-sMlL5NiUE_S8LYuOU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/735e42-c608-46b6-8f70-f23f66f8d242/1/CWu5dKrEuf-0nBCltKLJ6Qa-UyY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/735e42-c608-46b6-8f70-f23f66f8d242/1/hEWCynBHF-sMlL5NiUE_S8LYuOU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.78.6.0/24
Signature Algorithm: sha256WithRSAEncryption
74:ef:55:f7:55:55:93:09:80:36:d2:e5:81:48:0e:b5:0e:34:
e4:78:c5:e8:ba:cd:82:b1:06:d0:f6:52:b5:d5:6a:33:03:ca:
61:59:f8:76:69:9c:66:4a:78:5d:36:fa:86:a8:bb:79:50:d6:
54:75:56:21:70:09:d9:6a:62:3a:21:37:71:e4:f3:ff:c8:49:
26:8c:ac:d7:a4:9b:bc:57:f2:b0:ec:6e:f2:0f:1b:fd:5b:bd:
8d:8f:25:66:f7:7b:cf:f3:af:c6:f0:99:e5:4b:47:95:d9:e2:
8f:d0:0e:6a:5b:3b:bf:5d:ee:34:1e:44:95:c4:4d:c3:23:ff:
00:e2:af:a9:c0:52:ef:8a:fb:c8:dd:f8:7a:89:e6:29:48:ea:
9a:47:7a:4c:b1:18:0b:1f:68:28:b6:ed:0d:63:80:c9:b0:01:
0c:45:1c:3f:da:c7:06:f3:4d:f7:1c:67:5d:06:34:44:0e:68:
89:70:fb:a9:51:e0:4b:8e:ed:d6:8b:75:ad:12:42:e3:60:ae:
2f:57:9c:9b:95:82:4f:a4:3e:45:7d:73:d4:d3:fe:37:be:a9:
31:8a:ed:81:3f:66:74:4c:e6:5a:7a:bf:cf:5e:ce:d9:a4:49:
c6:fd:a4:4a:cb:5e:2e:e6:7c:99:39:b6:f4:6c:6f:19:2a:6c:
51:43:5e:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:20 2025 by rpki-client on console.sobornost.net