Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/3ed00a-15ee-4664-a7f1-a1b96b9b70f8/1/r_i4vXEqCp88npQLo5wupbGQvCU.roa
File: r_i4vXEqCp88npQLo5wupbGQvCU.roa (raw, json)
Hash identifier: 681bIL2hvemk9KcZlvxDEY+6W4gGDzfccxK3H8tBwKk=
Subject key identifier: AF:F8:B8:BD:71:2A:0A:9F:3C:9E:94:0B:A3:9C:2E:A5:B1:90:BC:25
Certificate issuer: /CN=88add9b671f7a36eb2367e34fee4bcb13b8f66cc
Certificate serial: 0195FF3EA286E45FB278E38ED3F786EFAE59
Authority key identifier: 88:AD:D9:B6:71:F7:A3:6E:B2:36:7E:34:FE:E4:BC:B1:3B:8F:66:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iK3ZtnH3o26yNn40_uS8sTuPZsw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/3ed00a-15ee-4664-a7f1-a1b96b9b70f8/1/r_i4vXEqCp88npQLo5wupbGQvCU.roa
Signing time: Fri 04 Apr 2025 05:20:49 +0000
ROA not before: Fri 04 Apr 2025 05:20:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212238
IP address blocks: 176.106.102.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:ff:3e:a2:86:e4:5f:b2:78:e3:8e:d3:f7:86:ef:ae:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88add9b671f7a36eb2367e34fee4bcb13b8f66cc
Validity
Not Before: Apr 4 05:20:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=aff8b8bd712a0a9f3c9e940ba39c2ea5b190bc25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:0b:39:fd:46:23:6e:1d:41:32:5d:6b:4e:13:
9a:78:bd:ce:fd:23:5b:d3:5d:51:d8:92:5c:9e:77:
e6:22:6b:4c:6f:24:f3:e2:7d:bb:01:5f:df:6f:e0:
a3:d2:eb:9f:03:a2:6f:e2:fb:60:21:56:40:e3:fc:
a6:f3:64:c6:0a:2a:62:20:d1:bb:ff:4a:e8:a2:5e:
5a:bd:8c:c9:42:d0:d7:63:be:fe:e7:2b:b3:e5:e5:
f2:6e:92:06:39:c3:7f:28:ca:c3:d8:1f:47:1d:89:
8f:77:67:82:f5:18:0d:86:36:e0:8b:d9:e4:e9:db:
bc:78:d3:6c:e3:47:8f:2f:71:1b:ef:f1:95:7f:26:
35:1d:58:28:fe:a6:12:83:10:85:76:92:c1:25:09:
3a:5a:cc:c7:26:1f:cd:ec:4d:c4:a3:c1:8e:25:46:
9c:f9:ee:10:f6:24:08:e9:19:7d:f7:30:35:c2:d2:
2f:5b:70:ab:90:8c:84:a4:b1:bd:d0:60:1e:9a:48:
ce:e7:44:60:ed:02:9f:7c:2d:e3:d4:62:2d:e4:3f:
c5:aa:57:c0:f7:10:06:3d:36:89:64:7c:33:26:72:
21:cb:5a:31:cf:43:c1:2d:f0:23:0a:e8:bf:7b:b0:
47:b9:47:27:f0:fc:c5:9e:2f:4d:16:6a:28:28:64:
1f:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:F8:B8:BD:71:2A:0A:9F:3C:9E:94:0B:A3:9C:2E:A5:B1:90:BC:25
X509v3 Authority Key Identifier:
keyid:88:AD:D9:B6:71:F7:A3:6E:B2:36:7E:34:FE:E4:BC:B1:3B:8F:66:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iK3ZtnH3o26yNn40_uS8sTuPZsw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/3ed00a-15ee-4664-a7f1-a1b96b9b70f8/1/r_i4vXEqCp88npQLo5wupbGQvCU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/3ed00a-15ee-4664-a7f1-a1b96b9b70f8/1/iK3ZtnH3o26yNn40_uS8sTuPZsw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.106.102.0/23
Signature Algorithm: sha256WithRSAEncryption
0d:35:84:41:cc:85:8c:80:9f:52:f5:b9:e2:32:d1:d1:cb:aa:
f1:24:92:1e:4e:37:49:df:87:cf:39:16:84:45:85:bf:b2:23:
a2:5e:2a:be:a6:20:b7:5f:ed:73:a5:28:c0:a6:4b:32:8d:8e:
0d:43:23:c7:d8:a1:25:d1:fd:10:72:dd:2b:f1:ca:bf:f4:06:
ba:f2:c0:04:51:00:7d:b9:46:5f:70:e4:5e:cc:26:01:21:55:
4c:c6:8f:84:0e:75:ed:61:b1:ac:22:db:ab:53:30:a7:f9:32:
9e:23:a7:e5:6b:18:4a:4d:3a:ba:f7:7e:e9:7b:74:0a:d5:ea:
44:70:e4:88:a6:92:9f:e7:ad:d0:0b:74:02:ef:22:11:25:23:
a2:a7:fc:93:98:a3:28:99:05:0d:3e:90:86:52:bf:a3:e0:f4:
9c:3a:77:6c:a4:6b:40:42:46:4f:13:ff:2f:91:8b:13:87:d3:
ce:29:2f:39:43:76:6c:89:c1:b8:51:36:c9:85:53:d8:22:29:
13:2a:43:2d:68:97:89:09:36:45:48:9a:53:e7:90:10:e2:62:
d0:fa:a4:d9:11:56:06:9d:11:d6:b3:01:0d:f9:ce:fa:05:f9:
e3:cd:87:29:cb:15:36:06:c6:58:d9:88:df:15:3d:5e:70:b9:
bc:1d:ea:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:35 2025 by rpki-client on console.sobornost.net