Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/b329eb-fa5b-4fa8-b49b-f623304ed79a/1/ahWZL5H1qGkfpR9r5MK6JSJk1Dc.roa
File: ahWZL5H1qGkfpR9r5MK6JSJk1Dc.roa (raw, json)
Hash identifier: WUef3WgjpaprU4IuIXYy1q31GG6Dfwy/D5/f2fp0uKs=
Subject key identifier: 6A:15:99:2F:91:F5:A8:69:1F:A5:1F:6B:E4:C2:BA:25:22:64:D4:37
Certificate issuer: /CN=cd40d5ea59f80da61b4486bd999be112a1a35387
Certificate serial: 019426D9DF456A2EF0FBB335860C66E55C72
Authority key identifier: CD:40:D5:EA:59:F8:0D:A6:1B:44:86:BD:99:9B:E1:12:A1:A3:53:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zUDV6ln4DaYbRIa9mZvhEqGjU4c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/b329eb-fa5b-4fa8-b49b-f623304ed79a/1/ahWZL5H1qGkfpR9r5MK6JSJk1Dc.roa
Signing time: Thu 02 Jan 2025 11:50:00 +0000
ROA not before: Thu 02 Jan 2025 11:50:00 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 38942
IP address blocks: 87.239.40.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:df:45:6a:2e:f0:fb:b3:35:86:0c:66:e5:5c:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd40d5ea59f80da61b4486bd999be112a1a35387
Validity
Not Before: Jan 2 11:50:00 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6a15992f91f5a8691fa51f6be4c2ba252264d437
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:e3:a9:af:40:7b:c6:9f:57:33:20:97:62:37:
53:25:73:69:66:05:5a:2b:e2:81:04:72:f0:0b:99:
06:90:cc:1f:f1:53:c1:73:bf:a9:a9:81:7d:ff:05:
9d:3f:2f:5d:c5:49:85:33:7f:6e:fb:4d:16:b0:ad:
bc:d0:7d:c5:aa:5f:12:3d:af:04:7f:d8:ce:b4:72:
49:e9:73:3c:a7:d0:c3:eb:27:bc:bc:d8:5f:4e:82:
91:ef:8c:55:25:ff:be:86:e9:21:ee:1b:4c:e3:e4:
56:aa:e0:db:23:8c:37:cd:03:42:d3:db:21:e4:f9:
07:c6:7e:d5:39:34:25:3e:0d:b1:62:34:b8:d4:fd:
35:fa:ad:d3:5d:8d:d3:60:b0:86:0c:65:0b:9a:df:
03:7f:83:43:0b:82:98:f9:16:e9:ba:02:9b:1b:b0:
ce:43:13:53:0e:94:b0:bf:13:51:6d:bf:73:e5:cf:
89:94:74:ae:c2:ee:96:76:3a:0b:ae:7d:e2:7a:cd:
aa:d4:15:cb:f5:48:96:41:75:20:3c:35:67:6a:97:
17:fa:4b:d8:90:30:28:f9:17:9c:6b:c5:f2:bf:1f:
e3:3b:52:6b:f5:99:d7:11:ea:04:4a:32:4b:29:3c:
1d:90:e1:6f:a5:6c:dd:2f:86:31:c7:fc:ff:85:44:
0c:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:15:99:2F:91:F5:A8:69:1F:A5:1F:6B:E4:C2:BA:25:22:64:D4:37
X509v3 Authority Key Identifier:
keyid:CD:40:D5:EA:59:F8:0D:A6:1B:44:86:BD:99:9B:E1:12:A1:A3:53:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zUDV6ln4DaYbRIa9mZvhEqGjU4c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/b329eb-fa5b-4fa8-b49b-f623304ed79a/1/ahWZL5H1qGkfpR9r5MK6JSJk1Dc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/b329eb-fa5b-4fa8-b49b-f623304ed79a/1/zUDV6ln4DaYbRIa9mZvhEqGjU4c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.239.40.0/21
Signature Algorithm: sha256WithRSAEncryption
8d:5e:f4:3e:91:22:dc:cb:eb:b7:2b:0f:54:6c:6d:f5:c4:16:
9c:88:ac:a9:39:48:ab:6f:5c:6c:bb:7e:9b:b5:cd:2d:55:21:
50:69:c2:35:b5:66:2c:d0:84:43:95:d7:a3:9b:56:c6:1c:46:
98:23:8f:69:7f:b3:6b:a0:f5:50:19:21:39:8a:82:62:6d:02:
20:7d:93:54:d6:02:bd:8c:bc:1f:97:cc:02:ee:d1:f3:44:94:
ce:77:09:92:9f:8f:5f:76:e2:30:b2:84:c1:03:bd:68:aa:77:
6c:7d:08:fc:f8:7b:16:7a:26:52:02:95:18:13:dd:ad:2b:c0:
de:d4:bc:11:79:d6:35:4c:83:b0:c2:1b:8e:fe:a5:51:b9:3f:
1b:5d:55:61:2e:06:4e:1d:b1:ec:e9:0e:ff:b0:78:94:3a:89:
67:9a:a1:e8:03:2b:6c:7c:09:04:08:e5:e2:dd:2d:fd:a4:56:
e3:9e:ec:03:46:79:f3:42:34:a7:8e:ab:a2:f5:17:9c:84:84:
cb:59:4c:08:86:0e:e2:00:1d:41:f1:ad:0e:2e:2d:6a:05:3a:
b4:69:29:f0:ff:52:1b:fd:24:05:99:d5:3d:3d:8b:41:52:b7:
10:35:96:05:af:f5:61:f1:58:58:27:b9:6a:73:27:ef:f4:90:
1a:d2:88:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:56 2025 by rpki-client on console.sobornost.net