Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/9b783c-9f59-4696-82c4-48b4955f0600/1/iEka4Vv56ltOb2j3jT-ILWz-_Es.roa
File: iEka4Vv56ltOb2j3jT-ILWz-_Es.roa (raw, json)
Hash identifier: eHAQPRCUs+jzFQIPkgWCN2IRqlhuSuMwK3wcNPLkVsk=
Subject key identifier: 88:49:1A:E1:5B:F9:EA:5B:4E:6F:68:F7:8D:3F:88:2D:6C:FE:FC:4B
Certificate issuer: /CN=11d19f88b0dc1b890254db94a9b62046d6be794b
Certificate serial: 01941F8C217B11BC8270383318A2425618A6
Authority key identifier: 11:D1:9F:88:B0:DC:1B:89:02:54:DB:94:A9:B6:20:46:D6:BE:79:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EdGfiLDcG4kCVNuUqbYgRta-eUs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/9b783c-9f59-4696-82c4-48b4955f0600/1/iEka4Vv56ltOb2j3jT-ILWz-_Es.roa
Signing time: Wed 01 Jan 2025 01:47:44 +0000
ROA not before: Wed 01 Jan 2025 01:47:44 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 5598
IP address blocks: 176.101.96.0/19 maxlen: 24
176.101.96.96/27 maxlen: 27
176.101.97.128/28 maxlen: 28
176.101.97.144/28 maxlen: 28
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:21:7b:11:bc:82:70:38:33:18:a2:42:56:18:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11d19f88b0dc1b890254db94a9b62046d6be794b
Validity
Not Before: Jan 1 01:47:44 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=88491ae15bf9ea5b4e6f68f78d3f882d6cfefc4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:80:4d:83:d7:a5:f5:ca:5e:44:50:4e:71:15:
28:e7:ba:08:97:3a:29:ac:dc:c3:7a:fd:12:bb:f1:
45:09:f0:2f:16:ba:5e:17:de:bd:f9:72:13:96:36:
eb:4a:47:36:ff:cc:c3:d3:f1:41:27:89:ce:4c:61:
ac:99:2e:ba:27:28:3f:c4:eb:1f:bf:d3:27:a8:bd:
18:9a:64:f0:fd:19:22:bc:4e:c9:9a:dd:e6:03:ec:
f1:d1:7e:2b:96:9c:58:6d:24:18:ee:bd:95:28:f6:
fb:7d:48:8c:d7:6d:ce:c8:02:5f:c8:8a:86:7a:d8:
ad:15:39:5c:8d:92:93:e0:a0:b7:fd:bd:60:88:88:
51:54:86:a0:55:f9:9a:99:4e:0e:17:3d:7d:79:0c:
f0:c9:d1:44:fc:f9:b5:ef:e0:f8:b2:3e:15:1c:7a:
b4:3d:c6:2b:32:18:16:b4:78:59:ef:49:f2:b8:fd:
d5:dc:01:49:c0:33:dc:2d:dc:f2:10:59:2b:d9:55:
c1:59:52:6d:2f:2d:08:9d:9f:6d:66:ba:04:7e:0e:
9a:9b:1f:d7:ce:4f:72:0c:1d:51:bd:74:14:ef:7f:
80:a9:ff:3a:3a:93:9b:c1:d1:f1:5f:5c:1e:f4:bd:
3a:32:8a:5c:78:7b:f7:65:3b:c0:2e:f4:40:e3:d3:
85:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:49:1A:E1:5B:F9:EA:5B:4E:6F:68:F7:8D:3F:88:2D:6C:FE:FC:4B
X509v3 Authority Key Identifier:
keyid:11:D1:9F:88:B0:DC:1B:89:02:54:DB:94:A9:B6:20:46:D6:BE:79:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EdGfiLDcG4kCVNuUqbYgRta-eUs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/9b783c-9f59-4696-82c4-48b4955f0600/1/iEka4Vv56ltOb2j3jT-ILWz-_Es.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/9b783c-9f59-4696-82c4-48b4955f0600/1/EdGfiLDcG4kCVNuUqbYgRta-eUs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.101.96.0/19
Signature Algorithm: sha256WithRSAEncryption
3c:7d:e1:c5:32:ec:b4:2e:7b:90:92:2f:17:74:dd:13:71:81:
56:ea:d9:e4:2b:42:4e:c5:2b:a1:f6:46:29:dc:f7:8d:35:e6:
82:45:a2:67:8b:ad:2c:97:e7:65:12:f8:4d:3f:1d:5d:61:27:
fa:c4:b7:72:08:3e:2e:e5:bd:6f:f8:a4:15:66:e8:2f:18:fd:
c9:f3:9c:ec:61:15:ef:9c:c3:0e:81:a1:01:9b:59:e3:14:8d:
90:02:8b:c1:10:2c:f6:06:33:29:d3:c8:6d:81:3e:7f:86:da:
bd:7f:fd:12:d6:99:56:3f:2e:a1:b3:ca:25:9a:ec:54:f2:c0:
96:58:7e:54:fd:f9:f8:31:14:c3:fc:bf:07:05:33:a3:bc:33:
cb:cf:38:c0:23:f8:b0:7d:f9:50:9e:cb:af:91:e1:b2:2d:7a:
e4:b3:d4:a0:0d:78:f7:f9:18:05:c8:c0:02:77:72:2d:20:5e:
5e:da:70:c9:1e:a5:20:34:af:a1:a0:6f:57:7b:e8:dd:e0:18:
ec:28:28:66:f6:4e:90:7b:46:31:de:22:9d:b6:53:77:77:f2:
98:85:0b:f1:ba:97:b0:08:2b:39:18:fa:36:50:ee:0a:92:d0:
6f:55:af:90:eb:82:9d:83:f8:c7:95:a1:9d:6b:c2:c5:42:cc:
a1:51:83:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:28 2025 by rpki-client on console.sobornost.net