Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/ioysk0ftWjx-jvTK_mUAr3k5SvY.roa
File: ioysk0ftWjx-jvTK_mUAr3k5SvY.roa (raw, json)
Hash identifier: znQOMEgFeNb76hPOT3FmNAqIGMsZ9VESxWyQ87/R9E4=
Subject key identifier: 8A:8C:AC:93:47:ED:5A:3C:7E:8E:F4:CA:FE:65:00:AF:79:39:4A:F6
Certificate issuer: /CN=088465b37b2d4e9f413a31dc7b7e6cba2a33db96
Certificate serial: 019628CEB74BAE3BD7F3C435EB3BCC9849E7
Authority key identifier: 08:84:65:B3:7B:2D:4E:9F:41:3A:31:DC:7B:7E:6C:BA:2A:33:DB:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRls3stTp9BOjHce35suioz25Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/ioysk0ftWjx-jvTK_mUAr3k5SvY.roa
Signing time: Sat 12 Apr 2025 07:02:38 +0000
ROA not before: Sat 12 Apr 2025 07:02:38 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 103.216.175.0/24 maxlen: 24
188.66.24.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:28:ce:b7:4b:ae:3b:d7:f3:c4:35:eb:3b:cc:98:49:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=088465b37b2d4e9f413a31dc7b7e6cba2a33db96
Validity
Not Before: Apr 12 07:02:38 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8a8cac9347ed5a3c7e8ef4cafe6500af79394af6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:82:b9:b1:b7:b6:bb:76:6f:c4:88:0b:5e:10:
7e:e1:59:58:a3:fa:8b:60:61:f5:63:c1:d2:c0:e5:
1d:c2:07:75:94:8f:a7:91:bb:8e:59:34:ce:7d:69:
97:82:0d:84:bb:94:7f:ca:0b:b0:1b:be:a4:ff:3e:
9d:32:0a:b4:1b:c0:85:33:78:50:e1:32:ec:9a:f5:
ca:d1:7e:14:ad:86:5a:bb:94:75:3c:76:47:fc:bc:
56:ed:b8:2d:63:9c:ba:0a:da:27:fd:4a:31:3a:c5:
ad:c7:ab:6f:90:58:49:d0:fd:65:54:1a:1a:0d:1e:
26:49:87:a0:55:77:c3:e1:16:60:2f:d2:a5:0e:88:
33:02:7e:6f:8a:70:1f:c4:bd:c8:26:0f:ca:5e:59:
0b:a7:49:da:d7:ea:ab:97:21:da:0b:e4:0e:d4:13:
90:86:54:4a:82:ab:3c:72:5d:39:7e:33:b6:e1:d6:
86:31:13:93:69:01:f5:f6:dc:86:ec:6e:41:42:58:
b7:48:44:9d:bc:6e:1e:1a:09:29:2a:07:90:c8:eb:
08:a0:5d:d9:8e:23:1a:1b:e8:19:5f:fe:c0:45:cf:
ff:37:fa:90:ef:49:3f:bf:0f:e9:b5:74:e6:38:da:
07:fb:d8:b1:15:8f:47:bd:b7:0d:e1:12:98:5c:c9:
17:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:8C:AC:93:47:ED:5A:3C:7E:8E:F4:CA:FE:65:00:AF:79:39:4A:F6
X509v3 Authority Key Identifier:
keyid:08:84:65:B3:7B:2D:4E:9F:41:3A:31:DC:7B:7E:6C:BA:2A:33:DB:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRls3stTp9BOjHce35suioz25Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/ioysk0ftWjx-jvTK_mUAr3k5SvY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/CIRls3stTp9BOjHce35suioz25Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.216.175.0/24
188.66.24.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:07:56:e7:f5:08:fe:fa:1e:f7:56:66:d8:f0:e8:4f:cb:c7:
45:0b:0f:7e:50:b9:84:18:1d:d6:17:a1:13:c0:b7:0c:11:96:
35:f2:fc:c0:21:cf:6b:66:7a:d3:0c:4c:b6:05:e9:78:5a:0b:
c9:29:2e:fd:8f:65:e7:54:ff:0b:7d:e7:db:02:47:c3:a1:41:
8b:42:f1:4a:2b:b9:5e:f8:d0:71:b4:c7:6f:2d:75:2f:1f:40:
75:5e:72:93:37:d1:12:67:86:f0:2c:7c:71:14:a0:b1:08:d0:
bd:e5:bd:6c:bf:fc:d3:f8:00:87:9c:4e:11:d9:62:88:c6:53:
af:2d:dc:87:55:92:12:5e:11:c8:bc:25:07:43:92:28:b1:34:
ea:87:d6:b7:ec:0a:58:3e:48:98:b0:ae:ad:93:d2:89:ed:c4:
8b:67:2a:a4:d8:1c:98:d2:bd:0f:d8:77:2f:14:c4:fb:03:da:
6e:a8:bf:02:c6:ca:cd:bd:40:07:2c:c7:42:c4:93:3f:12:c5:
00:04:d7:91:27:48:63:04:ae:e9:3c:a5:5e:77:6e:f0:28:57:
a8:ca:10:fe:6d:c3:91:86:20:5d:c5:a5:ac:c5:70:be:dc:08:
c6:fb:7a:4b:d5:70:79:9e:89:83:ab:af:2d:32:a9:a2:79:df:
7c:88:56:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:52 2025 by rpki-client on console.sobornost.net