Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/34c5b2-b6e3-4b23-a609-16ed3cd0c72a/1/ObJhDt0bR9RsOYpUbmtSQ9Ak4UA.roa
File: ObJhDt0bR9RsOYpUbmtSQ9Ak4UA.roa (raw, json)
Hash identifier: fWlwnR5udub/jBjYE7dCE3cjmbtmpThC5ul+o9DtvWQ=
Subject key identifier: 39:B2:61:0E:DD:1B:47:D4:6C:39:8A:54:6E:6B:52:43:D0:24:E1:40
Certificate issuer: /CN=509bc63e68c90932b4fc28997fc3bf78de3b3743
Certificate serial: 0195AE7FDBE4C9605AD538571E0F52516245
Authority key identifier: 50:9B:C6:3E:68:C9:09:32:B4:FC:28:99:7F:C3:BF:78:DE:3B:37:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UJvGPmjJCTK0_CiZf8O_eN47N0M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/34c5b2-b6e3-4b23-a609-16ed3cd0c72a/1/ObJhDt0bR9RsOYpUbmtSQ9Ak4UA.roa
Signing time: Wed 19 Mar 2025 13:02:49 +0000
ROA not before: Wed 19 Mar 2025 13:02:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 34370
IP address blocks: 185.164.77.0/24 maxlen: 24
185.164.79.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:ae:7f:db:e4:c9:60:5a:d5:38:57:1e:0f:52:51:62:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=509bc63e68c90932b4fc28997fc3bf78de3b3743
Validity
Not Before: Mar 19 13:02:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=39b2610edd1b47d46c398a546e6b5243d024e140
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:66:3d:06:37:9e:1b:74:8d:d6:59:40:0c:30:
ea:19:c0:eb:78:bf:55:5e:eb:24:48:dd:57:76:18:
90:4a:ce:1a:e3:ed:e7:8c:f8:69:3d:93:8c:9e:00:
ec:51:62:6c:fb:45:7b:45:f4:07:59:e1:2d:8d:ba:
c7:48:5b:df:92:a5:c3:04:ac:42:0a:e0:67:58:64:
34:d5:e1:7d:db:aa:08:04:2d:79:f0:0f:99:3a:4b:
d3:80:49:1d:bf:d3:85:8c:63:45:59:8a:11:79:70:
22:19:16:d1:11:e6:26:fe:ed:a9:7d:96:e7:f6:59:
03:04:3c:5e:81:de:4a:71:79:20:70:d0:73:3b:6c:
e4:a9:be:f9:1f:b1:cb:cb:a5:8d:84:52:9f:13:76:
88:b6:70:73:e2:e5:cb:2b:01:1d:c1:c3:25:b2:29:
1b:86:71:69:10:67:44:1e:82:db:96:55:87:89:d9:
97:8d:56:38:90:2c:03:27:57:8b:db:1e:ef:3d:ec:
c2:0d:c8:32:c3:ba:58:6e:ca:23:5d:9a:6d:c2:a4:
33:df:0a:aa:a7:0c:1c:bd:4e:73:89:a4:15:c7:95:
be:ee:86:84:e4:77:1b:22:40:b7:1c:c0:b4:be:f8:
c1:e0:30:31:6e:0c:2e:29:a8:b9:c9:36:76:70:44:
8f:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:B2:61:0E:DD:1B:47:D4:6C:39:8A:54:6E:6B:52:43:D0:24:E1:40
X509v3 Authority Key Identifier:
keyid:50:9B:C6:3E:68:C9:09:32:B4:FC:28:99:7F:C3:BF:78:DE:3B:37:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UJvGPmjJCTK0_CiZf8O_eN47N0M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/34c5b2-b6e3-4b23-a609-16ed3cd0c72a/1/ObJhDt0bR9RsOYpUbmtSQ9Ak4UA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/34c5b2-b6e3-4b23-a609-16ed3cd0c72a/1/UJvGPmjJCTK0_CiZf8O_eN47N0M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.164.77.0/24
185.164.79.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:b1:d2:55:9e:8a:4d:52:8f:84:c2:a8:4e:59:3f:d2:36:ea:
fd:e7:6f:bf:72:ed:2a:5a:e7:10:ad:e0:6c:5e:90:bf:af:2e:
1e:f6:fb:0f:c3:d9:4b:a6:0a:66:b8:62:75:a8:bb:91:f9:81:
c6:57:28:2e:ab:a8:99:5b:0a:5a:89:27:f1:9d:f9:b8:7d:b7:
89:f1:f2:d3:82:2e:31:ab:c6:13:35:36:60:c7:7c:39:d1:ec:
02:90:c4:ce:23:30:b9:29:f2:83:a3:a1:7c:0e:37:6a:9a:39:
2a:1f:2b:d1:33:d0:49:a4:bf:34:ad:15:53:a2:d5:7e:c8:b3:
07:d3:0a:28:28:4c:07:78:e5:b0:16:a9:f2:ef:d1:fa:32:77:
05:e5:33:35:bc:23:d7:36:f1:c7:88:f7:50:b3:fe:3d:02:f3:
69:e3:a8:3a:48:67:75:62:1c:22:b7:6c:63:9d:80:bc:6b:98:
aa:80:6c:cb:d7:14:fa:02:5a:3a:c4:cf:04:06:49:c5:cc:16:
a7:ea:3e:30:87:5f:e4:59:d7:a2:c4:6a:37:b5:ab:24:e8:1f:
c6:09:86:13:1f:30:9e:de:b5:32:94:f1:3f:82:53:c3:c4:1b:
a8:fd:3d:9e:e5:93:cd:80:2b:2b:09:c2:eb:41:ae:83:d4:40:
78:04:8e:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:52 2025 by rpki-client on console.sobornost.net