Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/5725cc-ad70-46f8-bb62-cf9dc5baaa79/1/3CbIb4TEaRdsUuSnzyfjsAcJ8C0.roa
File: 3CbIb4TEaRdsUuSnzyfjsAcJ8C0.roa (raw, json)
Hash identifier: FMM+Gvcvh1vM/fuebG47q1lgLXjSvweT88zfbPoCGg0=
Subject key identifier: DC:26:C8:6F:84:C4:69:17:6C:52:E4:A7:CF:27:E3:B0:07:09:F0:2D
Certificate issuer: /CN=d07d7573aacae821c87d6d36431cfe4b2801ab41
Certificate serial: 019420D65006F0AD6BCB10FAE00B7E28EFE3
Authority key identifier: D0:7D:75:73:AA:CA:E8:21:C8:7D:6D:36:43:1C:FE:4B:28:01:AB:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0H11c6rK6CHIfW02Qxz-SygBq0E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/5725cc-ad70-46f8-bb62-cf9dc5baaa79/1/3CbIb4TEaRdsUuSnzyfjsAcJ8C0.roa
Signing time: Wed 01 Jan 2025 07:48:23 +0000
ROA not before: Wed 01 Jan 2025 07:48:23 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 42815
IP address blocks: 87.118.134.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d6:50:06:f0:ad:6b:cb:10:fa:e0:0b:7e:28:ef:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d07d7573aacae821c87d6d36431cfe4b2801ab41
Validity
Not Before: Jan 1 07:48:23 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=dc26c86f84c469176c52e4a7cf27e3b00709f02d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:73:2f:3b:9a:10:62:1c:73:bf:5d:fb:6b:7f:
e3:99:b7:7c:3e:27:a6:16:d3:06:ec:d5:5b:18:85:
db:b4:23:bf:52:6d:97:dc:10:f9:19:75:31:a5:78:
3f:0a:f7:5b:74:59:19:8e:ae:8d:d7:59:29:77:64:
9e:59:a8:af:4a:6e:d5:20:c4:92:ba:6f:b0:a8:80:
30:a7:24:40:df:3b:3e:e9:9c:5d:51:b7:c3:ae:9c:
18:fc:dc:74:89:b3:4f:91:d9:22:e7:ad:9b:aa:55:
55:2a:d3:89:f7:e3:37:3c:c4:9c:e9:dd:39:42:52:
24:37:de:73:b7:26:35:46:46:b4:29:24:fa:9c:87:
83:ad:90:7c:2e:59:fb:31:bc:43:a2:dd:56:c2:a5:
b3:74:fb:24:2c:8c:4e:8a:0f:f0:ed:65:d1:30:59:
66:43:a8:51:13:27:97:a9:cd:43:61:a5:56:e6:53:
c6:84:03:7d:af:fe:bb:dc:a6:2b:ad:42:0f:3c:2c:
62:82:63:21:39:a2:9d:ec:14:8f:ed:ed:0b:27:98:
ab:ac:f7:3b:df:9b:37:0a:b7:68:3c:65:d2:41:e0:
fc:1f:13:02:6e:b0:de:7e:ce:f7:dd:64:de:41:b8:
5a:af:e4:9d:39:9e:2b:f4:10:61:c9:24:76:77:84:
4f:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:26:C8:6F:84:C4:69:17:6C:52:E4:A7:CF:27:E3:B0:07:09:F0:2D
X509v3 Authority Key Identifier:
keyid:D0:7D:75:73:AA:CA:E8:21:C8:7D:6D:36:43:1C:FE:4B:28:01:AB:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0H11c6rK6CHIfW02Qxz-SygBq0E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/5725cc-ad70-46f8-bb62-cf9dc5baaa79/1/3CbIb4TEaRdsUuSnzyfjsAcJ8C0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/5725cc-ad70-46f8-bb62-cf9dc5baaa79/1/0H11c6rK6CHIfW02Qxz-SygBq0E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.118.134.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:2b:7a:f5:00:79:4b:9e:ff:0c:32:32:10:b2:45:90:76:66:
34:1f:4d:d2:37:8c:bd:fe:09:c7:fa:7b:09:84:fe:74:c8:43:
2c:50:42:ff:19:f4:c0:50:33:25:47:03:92:87:44:87:ab:af:
ac:00:be:35:ca:01:24:3b:34:bd:c6:85:51:b4:50:8e:d0:35:
f0:7d:60:c7:4c:87:4a:c4:82:c1:ac:bc:04:6a:70:4f:b7:b5:
9d:0c:66:31:0f:1b:7a:14:2d:b3:f4:af:54:02:40:f9:1f:c0:
9b:dc:56:b7:34:b4:b4:e7:62:ec:2b:1f:3b:52:98:9d:90:b4:
c8:0f:a5:68:91:76:de:63:25:1d:0c:45:30:00:b3:85:10:d1:
9e:a6:e0:b1:18:b1:f0:12:c9:e6:f0:98:3d:1c:29:03:42:21:
0b:ac:2a:bb:7d:91:f9:74:0d:2d:95:81:e9:f6:88:1d:ae:a9:
91:a0:0f:5f:a3:e6:22:ff:04:a1:9d:5b:73:b6:54:cc:cb:4c:
8f:0b:f2:b9:cb:06:7d:ad:28:7e:6a:38:f5:8d:50:d0:fa:eb:
26:86:30:cf:3c:ca:1c:d4:17:a4:f3:4b:14:4b:9f:0b:4a:82:
ba:c2:7a:f8:6a:c9:56:07:0e:63:b3:14:76:b6:0d:7c:b2:34:
18:88:6c:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:11 2025 by rpki-client on console.sobornost.net