Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/68f651-f3a6-4252-9faf-9e044092b826/1/WVdl-uCV2iOAd5QeDrWIMC8ZaZo.roa
File: WVdl-uCV2iOAd5QeDrWIMC8ZaZo.roa (raw, json)
Hash identifier: CehMTtzEG7E3qCdiNMcnQ4ftqXLEiDLiNKB1gOKsgck=
Subject key identifier: 59:57:65:FA:E0:95:DA:23:80:77:94:1E:0E:B5:88:30:2F:19:69:9A
Certificate issuer: /CN=ac7670698cfaef2647fbc9a06f7380856e2b3027
Certificate serial: 01950492C6D859351C1C5C5A39AC28D3854F
Authority key identifier: AC:76:70:69:8C:FA:EF:26:47:FB:C9:A0:6F:73:80:85:6E:2B:30:27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rHZwaYz67yZH-8mgb3OAhW4rMCc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/68f651-f3a6-4252-9faf-9e044092b826/1/WVdl-uCV2iOAd5QeDrWIMC8ZaZo.roa
Signing time: Fri 14 Feb 2025 13:08:02 +0000
ROA not before: Fri 14 Feb 2025 13:08:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 62105
IP address blocks: 137.59.8.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:04:92:c6:d8:59:35:1c:1c:5c:5a:39:ac:28:d3:85:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac7670698cfaef2647fbc9a06f7380856e2b3027
Validity
Not Before: Feb 14 13:08:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=595765fae095da238077941e0eb588302f19699a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:ac:09:b1:f5:fa:4d:57:b8:d4:8f:7d:22:36:
cd:3a:fe:45:02:0e:7c:42:c2:ba:2a:bf:a7:70:4c:
22:b0:c1:0b:75:e5:21:f5:39:85:b7:76:a8:54:01:
e8:06:19:26:6f:97:2b:d9:24:c8:b9:1b:5b:bb:26:
d2:2f:ef:83:45:c9:ca:82:c8:f7:2b:3d:5e:8e:27:
6a:6d:62:b2:ea:d8:4c:e5:43:49:ce:23:dd:ec:82:
0a:77:34:96:42:e4:64:74:45:b5:31:e8:8a:f9:c4:
3d:65:0c:70:93:7e:ee:35:35:2d:de:da:51:3b:7a:
e2:2e:f3:e5:56:2d:5d:29:6e:80:17:b3:cf:53:9b:
a5:38:01:bc:51:1e:a9:68:c2:ce:8f:89:b0:8d:2f:
37:45:de:fd:60:e7:e2:ed:ad:c0:ff:02:78:8e:3b:
c0:5a:1b:fb:7f:e6:ce:f4:59:bf:12:10:d2:ec:45:
c1:6c:67:c2:bb:5e:ce:55:c8:e6:2c:bc:a7:0d:5a:
42:a6:3d:fc:8e:b2:d3:ca:e0:65:24:ce:9f:93:b5:
91:43:f6:68:d1:b2:5a:36:9a:52:37:16:14:03:cd:
a4:eb:bb:c3:a4:2e:f0:2d:d1:5b:cf:97:db:73:3a:
10:c6:b9:55:22:64:6d:f0:79:4d:59:c9:d7:d9:57:
3f:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:57:65:FA:E0:95:DA:23:80:77:94:1E:0E:B5:88:30:2F:19:69:9A
X509v3 Authority Key Identifier:
keyid:AC:76:70:69:8C:FA:EF:26:47:FB:C9:A0:6F:73:80:85:6E:2B:30:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rHZwaYz67yZH-8mgb3OAhW4rMCc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/68f651-f3a6-4252-9faf-9e044092b826/1/WVdl-uCV2iOAd5QeDrWIMC8ZaZo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/68f651-f3a6-4252-9faf-9e044092b826/1/rHZwaYz67yZH-8mgb3OAhW4rMCc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
137.59.8.0/22
Signature Algorithm: sha256WithRSAEncryption
59:7c:35:17:9e:78:5d:e4:bb:3b:0f:8f:19:8f:66:b4:c8:5e:
a9:3d:b7:de:23:69:f6:f8:bc:8e:28:33:82:ea:d1:e7:f6:88:
71:c7:f8:cf:14:a8:c7:a6:8f:7c:3c:e5:03:b0:d6:d6:c0:78:
c3:9e:77:a0:5d:59:87:1b:d0:99:fe:c2:a0:9c:58:93:e7:33:
f4:80:f1:96:5c:8d:a3:30:61:f7:ce:85:8a:ea:94:b5:e0:c8:
f6:ad:da:f1:b2:f4:1b:bd:a6:2f:c6:9e:2e:5d:35:51:e3:f2:
31:5f:d4:b9:6a:0e:20:f6:2f:88:03:b1:9b:99:06:e4:29:8f:
33:d9:8c:2d:55:c9:b0:d9:f0:8f:a1:c0:2b:b3:09:ad:90:58:
f7:52:67:e2:14:68:d1:a3:5c:20:e3:d7:ba:48:43:50:9f:00:
5f:95:26:e6:30:b0:ac:8e:c3:78:ba:45:75:24:86:d1:b3:10:
cd:70:d5:c4:8d:09:18:f7:e7:af:90:cf:36:d5:27:80:f2:f5:
80:9e:a7:ee:4f:7e:5b:19:57:40:9b:c1:95:23:5b:04:db:62:
9e:36:72:b0:c7:17:b4:c5:c4:ab:89:bb:aa:f3:c5:50:10:7e:
09:59:47:b9:15:d8:87:0b:64:01:1a:9d:ad:6a:f4:e1:df:a6:
36:39:79:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:56 2025 by rpki-client on console.sobornost.net