Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/767933-4a73-4b2f-ac84-daca26de6f7b/1/Jhw9faAWoEdqP1e__8w7b6zkmPk.roa
File: Jhw9faAWoEdqP1e__8w7b6zkmPk.roa (raw, json)
Hash identifier: TQENvT9b218+4xF+VAk4clIU0JMsKTFbzJxIDRXuwJ4=
Subject key identifier: 26:1C:3D:7D:A0:16:A0:47:6A:3F:57:BF:FF:CC:3B:6F:AC:E4:98:F9
Certificate issuer: /CN=353e3f28e647e92ac8a710c305c2e21b623edc1c
Certificate serial: 0194236A0C43F2E0F61907065CC34C8EB4CC
Authority key identifier: 35:3E:3F:28:E6:47:E9:2A:C8:A7:10:C3:05:C2:E2:1B:62:3E:DC:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NT4_KOZH6SrIpxDDBcLiG2I-3Bw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/767933-4a73-4b2f-ac84-daca26de6f7b/1/Jhw9faAWoEdqP1e__8w7b6zkmPk.roa
Signing time: Wed 01 Jan 2025 19:48:59 +0000
ROA not before: Wed 01 Jan 2025 19:48:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 60397
IP address blocks: 37.152.134.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:6a:0c:43:f2:e0:f6:19:07:06:5c:c3:4c:8e:b4:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=353e3f28e647e92ac8a710c305c2e21b623edc1c
Validity
Not Before: Jan 1 19:48:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=261c3d7da016a0476a3f57bfffcc3b6face498f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:33:5d:43:0c:46:5d:02:05:69:b2:c7:08:6d:
8d:d4:7b:41:c6:44:d1:7b:8f:d1:08:43:86:b6:80:
78:c6:27:6e:6a:54:6b:33:60:97:fd:4c:07:78:6e:
1b:41:98:11:90:31:f7:68:f3:43:3b:7e:99:40:fe:
c5:04:c1:4b:08:ae:87:42:5d:3f:b0:01:65:10:10:
75:54:1c:ea:f2:73:9a:da:5a:3c:42:41:72:26:f1:
91:7a:88:5a:f1:70:4b:24:57:de:f7:cb:25:83:be:
a1:b4:96:96:dd:f7:6b:2c:df:d5:aa:5b:aa:b4:ac:
c3:37:a4:91:7a:4e:ae:5a:92:4c:e6:6d:24:38:a6:
84:d5:1d:5b:f9:92:f5:22:08:12:39:f4:e6:fc:4f:
7e:bd:86:b9:dc:88:fe:fe:6c:07:00:2a:84:dd:c2:
56:9e:af:e3:40:72:c3:d4:24:1c:93:21:4b:be:88:
61:6f:67:ce:bf:be:02:c5:1b:6a:b5:34:ba:0d:a4:
3b:ae:7f:74:34:c3:7e:96:0e:60:1c:ed:f5:ed:35:
7f:fd:63:e1:a3:e5:68:c8:50:fa:db:17:e6:ef:57:
87:0c:a0:2a:cb:3c:25:73:b3:95:67:81:b7:cd:bd:
d7:11:e2:8a:94:55:9f:83:00:20:7e:44:ec:ad:51:
76:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:1C:3D:7D:A0:16:A0:47:6A:3F:57:BF:FF:CC:3B:6F:AC:E4:98:F9
X509v3 Authority Key Identifier:
keyid:35:3E:3F:28:E6:47:E9:2A:C8:A7:10:C3:05:C2:E2:1B:62:3E:DC:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NT4_KOZH6SrIpxDDBcLiG2I-3Bw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/767933-4a73-4b2f-ac84-daca26de6f7b/1/Jhw9faAWoEdqP1e__8w7b6zkmPk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/767933-4a73-4b2f-ac84-daca26de6f7b/1/NT4_KOZH6SrIpxDDBcLiG2I-3Bw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.152.134.0/24
Signature Algorithm: sha256WithRSAEncryption
01:3a:cf:79:3a:28:e0:01:da:0b:53:46:9f:94:41:f5:62:f3:
6a:5e:28:fb:51:a9:3e:6b:c3:16:97:ba:9c:6e:2a:dc:ea:3c:
e9:84:f3:3f:00:00:a3:43:69:32:8e:7b:cd:b9:4a:54:c4:58:
a9:dd:96:4c:f1:9d:ad:bf:9f:4e:51:02:e6:77:93:11:48:33:
d8:17:fe:2d:8c:56:29:f4:8f:cf:ad:d9:8c:98:3a:11:66:e5:
d2:ca:47:8e:52:a4:e9:0f:a6:ef:8f:9f:6a:bc:5d:88:cb:a5:
49:0e:6c:df:42:8b:d0:cf:30:fd:19:5f:47:b1:1d:b3:55:2e:
67:6d:f0:4e:72:bd:46:3d:fc:eb:85:14:83:f0:e0:1e:6e:ed:
8e:83:03:3f:1e:c5:7a:8a:df:93:e3:9c:89:f4:31:23:de:b9:
94:9b:77:c7:a4:be:20:25:0b:21:07:51:b8:c7:ed:8c:7a:6c:
1b:9a:4f:aa:01:71:8a:7d:05:aa:b7:b4:e5:11:44:af:4d:0f:
0a:89:fe:30:07:a4:32:3a:ab:17:88:31:bb:87:3c:47:8f:c4:
26:6d:82:fc:3b:fc:25:c1:58:68:27:1f:d3:c1:c4:19:3b:fa:
a9:e3:ba:06:31:5d:9d:74:17:a4:29:90:0a:93:23:b3:06:00:
8f:29:39:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:32 2025 by rpki-client on console.sobornost.net