Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/e1ad7a-12e7-4fd0-b61e-d1a7772db076/1/taLXMLMK44pCaud8dCDMf0lZQUU.roa
File: taLXMLMK44pCaud8dCDMf0lZQUU.roa (raw, json)
Hash identifier: wLcPZj9UkIw+6HIzBJC4FaEO8gnn6u2Gz08Z19sRZIU=
Subject key identifier: B5:A2:D7:30:B3:0A:E3:8A:42:6A:E7:7C:74:20:CC:7F:49:59:41:45
Certificate issuer: /CN=17067977efd14bc89fb0daba03bb0f600fbb0184
Certificate serial: 0196001A5E54F422441B2485E8F836B1711C
Authority key identifier: 17:06:79:77:EF:D1:4B:C8:9F:B0:DA:BA:03:BB:0F:60:0F:BB:01:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FwZ5d-_RS8ifsNq6A7sPYA-7AYQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/e1ad7a-12e7-4fd0-b61e-d1a7772db076/1/taLXMLMK44pCaud8dCDMf0lZQUU.roa
Signing time: Fri 04 Apr 2025 09:20:50 +0000
ROA not before: Fri 04 Apr 2025 09:20:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 21859
IP address blocks: 86.110.54.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:00:1a:5e:54:f4:22:44:1b:24:85:e8:f8:36:b1:71:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17067977efd14bc89fb0daba03bb0f600fbb0184
Validity
Not Before: Apr 4 09:20:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b5a2d730b30ae38a426ae77c7420cc7f49594145
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:5c:0d:ab:2e:98:94:e5:68:66:cc:b7:d2:ac:
8a:60:8e:de:2b:d6:77:6b:17:fb:3d:e6:9e:17:c9:
fa:01:fc:44:ba:c4:f0:73:ce:f6:72:aa:3a:62:b1:
13:d6:4c:8c:5e:0a:09:e1:61:59:eb:df:78:ec:ff:
0f:e8:b2:42:d6:fb:c4:1d:8a:c4:1a:a9:b6:4f:af:
f1:ba:e2:4e:f7:c0:1f:3d:45:95:1f:44:c3:6c:f2:
cd:d4:07:af:dd:fe:c2:e5:b1:9a:c4:65:53:64:18:
38:42:b2:7b:f1:4d:2f:18:da:50:06:c2:bc:99:ba:
c9:41:fc:17:3a:3f:52:e9:09:ff:74:0c:1b:36:52:
9f:86:8a:23:1b:4b:3e:1e:fc:df:65:67:89:c8:68:
f7:94:1c:a2:b6:ec:48:e7:f2:e8:fe:8c:38:49:3a:
6b:c1:fe:76:e7:a2:60:82:fb:f2:3c:54:4a:3a:45:
8e:84:c4:e0:ad:a5:27:63:58:9a:6a:46:fe:b5:1e:
19:4b:2d:ba:b0:f1:b7:33:5a:63:6b:dd:ef:25:52:
4c:3a:9e:9c:1f:58:ff:8d:09:f6:af:25:44:f2:21:
c7:b7:23:5c:37:7f:2a:36:60:bc:00:9f:d1:20:74:
2d:38:b7:a9:20:5a:d5:d4:16:c7:e2:ba:ab:40:07:
10:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:A2:D7:30:B3:0A:E3:8A:42:6A:E7:7C:74:20:CC:7F:49:59:41:45
X509v3 Authority Key Identifier:
keyid:17:06:79:77:EF:D1:4B:C8:9F:B0:DA:BA:03:BB:0F:60:0F:BB:01:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FwZ5d-_RS8ifsNq6A7sPYA-7AYQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/e1ad7a-12e7-4fd0-b61e-d1a7772db076/1/taLXMLMK44pCaud8dCDMf0lZQUU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/e1ad7a-12e7-4fd0-b61e-d1a7772db076/1/FwZ5d-_RS8ifsNq6A7sPYA-7AYQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.110.54.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:53:98:a2:63:dc:49:85:a6:14:f9:78:fe:0a:f1:60:f7:f2:
0c:bf:17:96:60:b9:b3:d0:47:d8:fc:63:18:31:46:71:b0:f9:
2b:86:13:fa:a2:7f:d6:6b:3f:00:84:76:c7:29:7a:ed:20:b9:
10:43:f7:e7:0c:05:e6:53:65:62:b2:af:fe:41:66:52:26:37:
91:3b:a8:7a:27:c3:6b:e0:d5:dc:f6:4f:3a:75:70:e6:61:c6:
49:09:5e:aa:9e:de:c5:e5:54:44:eb:b7:c4:bb:70:74:70:71:
9d:22:e4:0e:2f:52:ff:5f:b0:29:dc:25:fa:da:92:8b:00:e5:
87:50:65:b6:35:0d:89:ab:9b:a7:f7:fe:67:e2:c0:f9:39:5a:
30:bc:e6:79:a5:c7:33:34:f5:c1:04:f4:6b:b8:8b:69:6a:65:
7f:16:30:9a:4e:4e:25:64:c8:c1:90:fb:d4:ca:39:4b:b1:7c:
27:9c:e8:14:c8:2d:3d:dc:c8:e2:78:ec:94:43:c4:c9:f7:b5:
b5:f9:11:0e:c2:f0:9c:62:c6:37:d6:e8:68:f9:ee:a6:7d:57:
cd:24:fe:d5:3d:86:ba:65:96:3e:49:15:ce:1e:7c:37:63:a7:
f9:77:46:a8:41:79:2b:b1:5c:39:52:02:3e:e1:8a:bb:2e:66:
f5:79:f9:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:30 2025 by rpki-client on console.sobornost.net