Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/7c45ec-3f6b-4635-9d35-8d203ba4acc4/1/siSVK589afKFmNB4xui803eAFA8.roa
File: siSVK589afKFmNB4xui803eAFA8.roa (raw, json)
Hash identifier: pIfAtolx6StiwhL02gSeSu2zm+FTXp7cgi/yqREz08c=
Subject key identifier: B2:24:95:2B:9F:3D:69:F2:85:98:D0:78:C6:E8:BC:D3:77:80:14:0F
Certificate issuer: /CN=856925139acc4afe0be9ef0984e3e7bd5b44e9e6
Certificate serial: 019426D954C8967B31EEB648FBA929B94372
Authority key identifier: 85:69:25:13:9A:CC:4A:FE:0B:E9:EF:09:84:E3:E7:BD:5B:44:E9:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hWklE5rMSv4L6e8JhOPnvVtE6eY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/7c45ec-3f6b-4635-9d35-8d203ba4acc4/1/siSVK589afKFmNB4xui803eAFA8.roa
Signing time: Thu 02 Jan 2025 11:49:24 +0000
ROA not before: Thu 02 Jan 2025 11:49:24 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 207290
IP address blocks: 37.44.240.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:54:c8:96:7b:31:ee:b6:48:fb:a9:29:b9:43:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=856925139acc4afe0be9ef0984e3e7bd5b44e9e6
Validity
Not Before: Jan 2 11:49:24 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b224952b9f3d69f28598d078c6e8bcd37780140f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:6b:04:15:03:97:66:24:eb:3f:e0:77:f5:a5:
5a:14:fc:82:4d:0e:0f:74:d0:83:0b:ae:e4:75:91:
76:52:a5:ca:12:de:dc:a6:aa:a5:a6:90:b8:07:0e:
32:50:f6:23:be:a9:88:30:64:f8:e1:ec:a8:af:6b:
e0:07:74:27:27:9b:9f:25:81:12:24:d8:76:c2:1c:
3a:35:29:e2:38:11:88:6b:b7:c5:3a:5b:c5:23:e8:
e5:9a:00:a3:90:f4:8d:8c:31:c1:aa:32:95:8b:d4:
28:7d:e6:24:c4:7d:ba:ce:85:aa:53:a0:4a:cf:d9:
10:21:4f:96:f8:94:d1:14:ad:10:97:d4:2e:92:71:
77:c7:a0:fd:f7:9c:87:d8:c1:b2:31:dc:98:71:33:
01:96:90:f0:de:10:7a:b4:6c:ef:c7:0d:ac:51:3a:
04:cb:b5:d0:ed:fe:a3:46:20:86:86:a4:ec:3a:52:
60:97:cf:3b:09:3a:0c:32:50:b2:b9:e9:f6:06:bb:
ac:a7:aa:50:90:44:42:27:60:c6:6d:3a:55:9e:59:
a8:31:c9:f1:47:8b:8d:af:65:f9:39:7b:ae:94:7d:
5b:7e:2e:3c:a9:67:19:2f:82:5c:6b:d8:97:ac:f6:
ef:07:9a:30:64:40:0b:86:20:e4:a2:1e:85:1c:68:
71:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:24:95:2B:9F:3D:69:F2:85:98:D0:78:C6:E8:BC:D3:77:80:14:0F
X509v3 Authority Key Identifier:
keyid:85:69:25:13:9A:CC:4A:FE:0B:E9:EF:09:84:E3:E7:BD:5B:44:E9:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hWklE5rMSv4L6e8JhOPnvVtE6eY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/7c45ec-3f6b-4635-9d35-8d203ba4acc4/1/siSVK589afKFmNB4xui803eAFA8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/7c45ec-3f6b-4635-9d35-8d203ba4acc4/1/hWklE5rMSv4L6e8JhOPnvVtE6eY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.44.240.0/22
Signature Algorithm: sha256WithRSAEncryption
28:fc:1c:75:df:1b:7c:5f:d5:87:76:d0:65:42:71:df:09:06:
0f:49:49:49:66:14:e9:73:db:8b:b0:3b:29:79:d1:ad:30:b4:
c6:b5:0e:82:5e:3a:37:77:1e:67:0f:34:37:13:bb:47:bc:16:
0b:4b:9e:7d:4f:17:6a:38:f9:bb:14:2b:25:0b:89:1f:53:9e:
98:cf:a4:3c:69:52:61:9b:64:d5:e8:9b:a5:8f:f1:59:d3:e9:
80:17:d3:0e:54:46:43:e0:6d:06:c0:53:19:b6:06:d8:23:e8:
d6:73:35:81:b3:f9:e8:31:0a:fc:99:c5:c2:45:a3:6d:de:1f:
ed:aa:98:e8:b1:87:1d:50:e7:5a:92:94:36:34:80:90:84:5b:
99:de:83:53:fd:45:7f:83:02:ee:e6:a1:48:44:57:cd:48:fd:
36:ec:6b:a1:b6:81:37:f5:6a:af:11:7c:47:7f:e4:5e:86:79:
41:89:c1:70:8a:fe:10:6b:9f:29:43:7d:29:7b:e4:f5:b4:a4:
a4:e4:aa:dd:81:53:74:b8:c3:3c:1b:11:80:b9:e8:06:ab:07:
66:57:ab:a3:ea:7c:fe:15:ea:0e:31:c5:29:c7:2a:b7:85:08:
99:cc:9e:3a:63:d2:e5:39:79:4c:59:03:c9:fb:ce:41:87:77:
d6:cb:3f:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:31 2025 by rpki-client on console.sobornost.net