Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/8b906b-9c1d-45d9-86ba-c7fe62227df3/1/5qz81vMuyN5eYJ6zyRRelyT4XK0.roa
File: 5qz81vMuyN5eYJ6zyRRelyT4XK0.roa (raw, json)
Hash identifier: 0LizoQ7sooXP56qjV8fYtL2cZDWoYFEUv70QcevbSss=
Subject key identifier: E6:AC:FC:D6:F3:2E:C8:DE:5E:60:9E:B3:C9:14:5E:97:24:F8:5C:AD
Certificate issuer: /CN=985ae6c59c35e460387daebcfb866f8a1ebb3686
Certificate serial: 019423D6C5411A128F448BD5C58DDBD4DEB6
Authority key identifier: 98:5A:E6:C5:9C:35:E4:60:38:7D:AE:BC:FB:86:6F:8A:1E:BB:36:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mFrmxZw15GA4fa68-4Zvih67NoY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/8b906b-9c1d-45d9-86ba-c7fe62227df3/1/5qz81vMuyN5eYJ6zyRRelyT4XK0.roa
Signing time: Wed 01 Jan 2025 21:47:45 +0000
ROA not before: Wed 01 Jan 2025 21:47:45 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 200235
IP address blocks: 45.137.27.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d6:c5:41:1a:12:8f:44:8b:d5:c5:8d:db:d4:de:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=985ae6c59c35e460387daebcfb866f8a1ebb3686
Validity
Not Before: Jan 1 21:47:45 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e6acfcd6f32ec8de5e609eb3c9145e9724f85cad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:ed:f7:4e:39:91:ec:72:b2:06:e6:73:5b:ee:
c2:fd:f1:a8:08:c8:b6:2c:7b:9c:5d:c9:f3:2f:5f:
60:2e:da:7a:f4:44:6e:bb:21:c7:d2:b7:a4:58:6e:
53:42:cb:36:5c:6d:ef:57:f2:07:2c:a2:df:a0:cb:
80:0d:0e:61:b8:01:fd:cc:28:af:0f:7d:c2:a1:27:
25:87:2a:5f:26:95:ee:1c:2e:26:2f:87:af:78:fb:
9d:92:6d:67:45:b2:23:41:57:11:7a:db:bd:2c:3d:
a1:06:77:31:d4:65:f8:c1:b2:7a:3c:5b:d5:da:ea:
18:d0:27:f0:1c:e3:f5:ac:8e:57:02:80:a8:3d:96:
ae:69:86:e2:bd:d0:a5:80:77:57:38:e4:65:2d:89:
fa:eb:78:8f:79:16:f8:ae:01:17:7b:05:19:9c:9e:
3e:3c:78:aa:22:e3:aa:7f:b8:56:90:1a:8f:ba:75:
51:a4:3a:12:5b:b6:0c:17:2b:6a:f6:b7:32:61:77:
26:f8:36:a6:ec:8f:b6:bf:7a:5b:28:bc:c0:ab:22:
03:6f:1b:06:b1:9d:9e:68:eb:19:c7:af:d4:03:c2:
fb:f3:e9:fe:83:7b:d3:42:47:2d:de:5a:8d:e9:8f:
bd:16:03:9d:00:a5:8d:36:42:b6:ee:fe:35:d6:9e:
4d:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:AC:FC:D6:F3:2E:C8:DE:5E:60:9E:B3:C9:14:5E:97:24:F8:5C:AD
X509v3 Authority Key Identifier:
keyid:98:5A:E6:C5:9C:35:E4:60:38:7D:AE:BC:FB:86:6F:8A:1E:BB:36:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mFrmxZw15GA4fa68-4Zvih67NoY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/8b906b-9c1d-45d9-86ba-c7fe62227df3/1/5qz81vMuyN5eYJ6zyRRelyT4XK0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/8b906b-9c1d-45d9-86ba-c7fe62227df3/1/mFrmxZw15GA4fa68-4Zvih67NoY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.137.27.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:ba:b0:7d:52:80:65:6f:a0:e3:88:4c:79:fa:db:57:ef:44:
4e:a7:26:a5:64:d4:be:22:74:e8:db:b8:e9:ed:63:c1:4b:9e:
ad:02:43:38:f3:fc:c0:b9:7e:e7:c9:21:b6:07:0b:9e:2f:87:
5f:f7:e2:b2:f3:21:e7:53:18:26:7a:10:44:81:3c:e2:8a:1b:
1b:e3:4a:27:66:11:41:f5:72:05:51:1a:3b:6a:62:c1:69:32:
f0:4e:ac:05:2f:51:62:b8:82:cf:8c:23:2c:f0:43:52:4e:fe:
cb:a7:c7:ae:9f:a9:bc:14:25:e4:16:f0:bd:ed:e8:7b:8a:0b:
4a:4c:a7:59:cb:aa:99:3f:2e:bb:1c:96:88:77:eb:d8:19:32:
d4:bc:c9:7d:b1:b5:55:6e:f4:45:af:6c:d5:fa:b5:e3:8f:50:
d2:bf:ea:19:90:3d:96:21:ea:23:cb:a6:69:6f:b6:1d:7c:a6:
0c:fb:97:d7:80:4a:e7:7b:9f:43:d5:12:49:ab:d4:b9:99:ed:
00:b7:9f:34:3c:d5:9b:ae:f3:a6:d4:25:92:cd:f2:1a:40:b8:
b8:68:ba:46:d6:bd:2a:a5:78:24:bd:76:8c:a9:41:0e:24:b1:
83:ba:90:4c:02:95:65:61:1f:7b:ad:88:6e:f5:b4:8c:b8:49:
11:8d:fb:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:54 2025 by rpki-client on console.sobornost.net