Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/8e7e30-c2b8-4591-8cfe-7b8e9d335ca8/1/dpObP3s4Eqe9wi_vu_EEzcThWpQ.roa
File: dpObP3s4Eqe9wi_vu_EEzcThWpQ.roa (raw, json)
Hash identifier: NHvLjXCF4TN/3v6KfZ74ieQjWaZi6N8hN7TgIQgZa00=
Subject key identifier: 76:93:9B:3F:7B:38:12:A7:BD:C2:2F:EF:BB:F1:04:CD:C4:E1:5A:94
Certificate issuer: /CN=f7742725862b90bda4510a02e804fef3ad1142dc
Certificate serial: 01941F8C29CF1483D112A0754C68EC18D406
Authority key identifier: F7:74:27:25:86:2B:90:BD:A4:51:0A:02:E8:04:FE:F3:AD:11:42:DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/93QnJYYrkL2kUQoC6AT-860RQtw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/8e7e30-c2b8-4591-8cfe-7b8e9d335ca8/1/dpObP3s4Eqe9wi_vu_EEzcThWpQ.roa
Signing time: Wed 01 Jan 2025 01:47:46 +0000
ROA not before: Wed 01 Jan 2025 01:47:46 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 208671
IP address blocks: 5.32.174.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:29:cf:14:83:d1:12:a0:75:4c:68:ec:18:d4:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7742725862b90bda4510a02e804fef3ad1142dc
Validity
Not Before: Jan 1 01:47:46 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=76939b3f7b3812a7bdc22fefbbf104cdc4e15a94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:00:15:b0:ad:a3:6e:ea:5f:f9:a2:07:f1:2d:
f1:57:e5:7c:39:7e:7e:3e:81:20:c8:be:64:8e:6a:
49:08:fa:31:63:62:65:62:03:20:45:a4:f7:31:95:
3a:55:b2:3d:40:05:cb:4b:d8:5b:bd:55:fd:39:c4:
1b:84:a5:c2:1a:4d:f3:e6:b5:ec:ce:f3:27:32:10:
9a:68:d2:3c:ef:c0:04:29:ec:b0:1c:82:b2:fb:51:
36:13:e7:e8:69:c1:4a:e6:09:13:bb:b6:16:b3:63:
5d:35:d9:fa:34:f3:c6:75:c6:2d:17:2d:0d:43:01:
6f:a8:60:ce:7b:ce:54:80:95:e8:aa:a9:a6:62:fb:
7b:34:ca:dd:6f:da:47:4d:08:44:dc:80:d2:2c:eb:
45:e4:c8:50:a2:98:4a:e2:50:af:b7:bc:91:30:aa:
f0:9f:36:c2:08:cd:41:7c:13:68:e8:e0:85:c1:b4:
08:8c:60:76:fe:eb:32:e7:12:13:31:0e:1d:60:1c:
ec:21:a7:f2:48:0d:e1:dd:56:75:80:cf:9e:6a:0b:
7b:e0:b6:8a:6e:37:a2:2b:9f:04:ce:81:5c:ba:0f:
49:0d:ea:cb:b6:3f:da:10:a8:ea:03:cb:e4:05:ab:
06:35:91:11:4d:17:ed:4d:4e:0c:2c:79:94:41:45:
db:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:93:9B:3F:7B:38:12:A7:BD:C2:2F:EF:BB:F1:04:CD:C4:E1:5A:94
X509v3 Authority Key Identifier:
keyid:F7:74:27:25:86:2B:90:BD:A4:51:0A:02:E8:04:FE:F3:AD:11:42:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/93QnJYYrkL2kUQoC6AT-860RQtw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/8e7e30-c2b8-4591-8cfe-7b8e9d335ca8/1/dpObP3s4Eqe9wi_vu_EEzcThWpQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/8e7e30-c2b8-4591-8cfe-7b8e9d335ca8/1/93QnJYYrkL2kUQoC6AT-860RQtw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.32.174.0/24
Signature Algorithm: sha256WithRSAEncryption
70:14:a3:f4:30:88:91:7a:e9:49:29:e0:2b:1b:00:87:61:bf:
74:25:f0:cf:39:bd:04:55:8a:35:7f:a0:88:a4:88:7e:25:af:
2d:93:09:6b:17:54:67:d1:c5:e4:91:2e:18:ee:48:43:6b:4f:
f8:32:68:97:30:66:81:d3:33:b4:73:9e:6b:a4:4d:1a:f3:77:
0f:56:cc:b6:6b:1c:82:34:32:66:db:ad:2f:7f:51:0a:2c:75:
74:20:45:e2:74:aa:2d:0c:ab:22:da:ac:8e:e6:87:cd:1e:bb:
a8:1b:d4:44:d6:b2:b4:0d:5a:a8:50:85:2f:1c:e4:89:62:3e:
05:29:50:05:0c:b6:f0:e5:3a:16:8e:7e:8a:55:8d:7f:44:d8:
af:73:15:a9:0a:10:9d:0c:35:90:c6:29:ca:0f:28:ad:4f:78:
93:b5:79:80:92:39:8e:d3:16:a3:22:81:6f:f0:a7:a2:13:36:
0c:16:53:d1:40:5b:5a:08:b8:ab:db:ba:cb:2c:ee:5f:ed:3b:
32:62:0e:de:69:d6:6e:35:ed:06:69:97:bb:4d:9b:79:99:61:
c6:a6:db:d4:d9:9b:fe:4a:95:d3:08:75:38:96:a2:6f:74:12:
f5:27:b4:4f:f6:ab:c9:fa:fb:ee:93:04:a9:36:36:3f:95:f9:
b8:99:b0:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:57 2025 by rpki-client on console.sobornost.net