Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/3549fb-e3a3-4124-b3b0-59957787b015/1/Nn-caKWqxDsYGYS4deITO9z5CII.roa
File: Nn-caKWqxDsYGYS4deITO9z5CII.roa (raw, json)
Hash identifier: SvP+0fiOTnKdkSN+scro3CcRKv0nhE96wmndJk4XP2E=
Subject key identifier: 36:7F:9C:68:A5:AA:C4:3B:18:19:84:B8:75:E2:13:3B:DC:F9:08:82
Certificate issuer: /CN=ed6da82dbc7d7e2818f96680b66efcedb1087947
Certificate serial: 019421B1EEEDF726291B079231F972793C50
Authority key identifier: ED:6D:A8:2D:BC:7D:7E:28:18:F9:66:80:B6:6E:FC:ED:B1:08:79:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7W2oLbx9figY-WaAtm787bEIeUc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/3549fb-e3a3-4124-b3b0-59957787b015/1/Nn-caKWqxDsYGYS4deITO9z5CII.roa
Signing time: Wed 01 Jan 2025 11:48:16 +0000
ROA not before: Wed 01 Jan 2025 11:48:16 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 35684
IP address blocks: 109.71.26.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b1:ee:ed:f7:26:29:1b:07:92:31:f9:72:79:3c:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed6da82dbc7d7e2818f96680b66efcedb1087947
Validity
Not Before: Jan 1 11:48:16 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=367f9c68a5aac43b181984b875e2133bdcf90882
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:89:56:b3:03:30:4f:c0:e5:01:56:50:ce:29:
76:18:0a:aa:3d:f1:65:3c:83:e3:bd:e3:7e:ff:db:
64:5b:28:72:0a:b4:ef:de:48:c9:81:48:ed:cd:7f:
cf:32:ab:23:e5:3b:29:0b:20:09:1e:52:52:ce:1f:
95:7f:f6:9d:c7:b8:d9:29:6e:d8:82:b5:62:40:e0:
c8:f9:38:58:e1:1b:9f:05:d9:13:d6:5c:7c:8f:ca:
1e:7b:38:57:b7:fb:d6:f3:b5:02:ae:bd:09:cb:75:
44:46:b6:4e:f9:32:a0:86:d0:b1:38:ce:84:4f:30:
f0:35:b1:d4:45:f3:fc:83:dc:aa:e2:27:15:46:30:
16:4d:58:00:73:dc:57:68:e8:0a:7b:62:a8:5e:e7:
8a:87:64:2d:fe:8b:51:d6:b6:d4:92:5e:ca:e0:9d:
3c:9c:55:2d:c2:e8:9b:43:1b:ac:37:f1:8a:5f:51:
9e:3a:ee:f0:83:3e:46:e9:3f:79:d0:d4:23:74:38:
69:cb:59:8c:67:1e:77:56:e0:d5:b4:41:d7:2a:87:
c6:3b:90:bd:5b:40:b1:75:49:a1:48:e7:db:b8:ee:
68:d3:f0:42:94:2d:80:32:26:ca:e5:91:98:0b:b1:
0e:8f:f0:5e:92:91:48:53:33:68:db:58:20:67:13:
ca:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:7F:9C:68:A5:AA:C4:3B:18:19:84:B8:75:E2:13:3B:DC:F9:08:82
X509v3 Authority Key Identifier:
keyid:ED:6D:A8:2D:BC:7D:7E:28:18:F9:66:80:B6:6E:FC:ED:B1:08:79:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7W2oLbx9figY-WaAtm787bEIeUc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/3549fb-e3a3-4124-b3b0-59957787b015/1/Nn-caKWqxDsYGYS4deITO9z5CII.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/3549fb-e3a3-4124-b3b0-59957787b015/1/7W2oLbx9figY-WaAtm787bEIeUc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.71.26.0/23
Signature Algorithm: sha256WithRSAEncryption
2a:b1:2f:bd:9d:fa:d3:1a:ec:a5:7f:7a:ec:78:6e:06:59:35:
56:f8:e6:3c:a4:bf:ab:7e:f5:3c:26:6e:60:68:af:88:48:f5:
0b:20:9a:80:8f:2c:af:68:ac:44:60:44:b8:d5:4a:d9:ea:d4:
54:4f:fd:02:2b:4a:0e:0a:32:31:8a:5d:0d:25:6f:24:e6:e2:
8a:46:46:44:84:ab:f0:9e:99:7d:f7:44:6e:e1:e6:89:6f:c2:
93:38:4d:cc:79:97:b2:bf:fc:48:5c:f4:c6:65:ee:f9:4d:75:
94:93:27:e2:53:bb:15:cc:eb:7d:4a:60:8a:28:63:0d:ad:26:
41:3f:72:a7:5d:bb:99:60:de:d3:01:56:a5:e8:97:ba:61:36:
07:45:c9:d7:59:6e:4e:07:ab:9e:17:b6:29:48:d7:17:c8:18:
a4:36:b8:78:67:db:90:a0:65:6b:c2:16:b8:2c:94:b7:f1:51:
66:ee:d2:e7:bd:db:70:db:1a:0b:e5:8e:02:9d:2a:ff:df:fa:
7e:d4:66:1f:79:61:c8:68:9f:ed:fb:26:40:b1:0b:e2:ec:96:
9a:26:59:b9:e9:37:0c:de:13:e6:0a:e3:aa:f9:16:2d:ad:c5:
26:91:cc:45:dc:04:d6:21:77:c8:fa:2c:3d:4e:ae:97:6b:6a:
c8:23:64:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:09 2025 by rpki-client on console.sobornost.net