Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/ecaeb3-f42f-4bac-a49e-242ffdaa2670/1/0_tGmdVdpjc2L8zUWyzyW9iPObU.roa
File: 0_tGmdVdpjc2L8zUWyzyW9iPObU.roa (raw, json)
Hash identifier: bn84kxibGx4/EOPh2OY0dkRz9RK07gMRfVN7WrprjOg=
Subject key identifier: D3:FB:46:99:D5:5D:A6:37:36:2F:CC:D4:5B:2C:F2:5B:D8:8F:39:B5
Certificate issuer: /CN=cd7ee4b0327996304cf18a128e2655780c9d6b9b
Certificate serial: 0194258FC51028540B9CADC3985A8B73B5B2
Authority key identifier: CD:7E:E4:B0:32:79:96:30:4C:F1:8A:12:8E:26:55:78:0C:9D:6B:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zX7ksDJ5ljBM8YoSjiZVeAyda5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/ecaeb3-f42f-4bac-a49e-242ffdaa2670/1/0_tGmdVdpjc2L8zUWyzyW9iPObU.roa
Signing time: Thu 02 Jan 2025 05:49:26 +0000
ROA not before: Thu 02 Jan 2025 05:49:26 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48727
IP address blocks: 185.124.128.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:c5:10:28:54:0b:9c:ad:c3:98:5a:8b:73:b5:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd7ee4b0327996304cf18a128e2655780c9d6b9b
Validity
Not Before: Jan 2 05:49:26 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d3fb4699d55da637362fccd45b2cf25bd88f39b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:86:e2:53:4b:f8:65:48:31:c3:dd:cd:4a:c6:
57:81:f6:18:d0:c3:aa:2a:b9:ee:3f:f2:87:5e:ab:
3b:fe:a9:b6:95:b5:a2:93:69:c4:37:9a:f5:ba:69:
fb:7a:6d:d7:98:b3:0f:0d:98:06:35:1d:71:d0:40:
54:89:4c:6e:d9:e5:35:b6:71:16:97:a8:74:36:e5:
f1:26:1d:38:5b:d7:eb:9d:21:67:dd:45:d6:85:ca:
e6:a9:28:cb:a2:f4:02:d3:72:a5:b8:70:1a:c8:fe:
02:13:09:8b:7e:e4:7f:cd:43:f3:08:70:e4:01:c3:
db:e5:92:6d:ca:8a:cc:de:3a:af:a0:1a:b6:a7:52:
89:cb:bd:11:45:8e:5c:72:66:7c:57:94:a4:03:b1:
98:85:c3:dd:dd:8a:fe:b6:ad:2c:0e:ac:43:ce:d5:
5a:4e:db:06:25:16:d8:8d:1c:fd:f7:1a:79:ae:a4:
93:05:d7:93:b0:aa:f8:78:26:7b:04:14:c9:88:85:
b8:ed:0c:e0:50:a9:83:ea:9e:73:91:e0:66:f3:5d:
1f:61:7e:f1:81:32:b5:54:07:f8:c8:5f:ab:66:03:
d1:94:99:91:45:44:99:38:3e:cf:f1:df:cb:29:6b:
6c:99:15:41:e2:8c:45:b1:10:0b:f1:cb:6c:a6:9d:
c2:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:FB:46:99:D5:5D:A6:37:36:2F:CC:D4:5B:2C:F2:5B:D8:8F:39:B5
X509v3 Authority Key Identifier:
keyid:CD:7E:E4:B0:32:79:96:30:4C:F1:8A:12:8E:26:55:78:0C:9D:6B:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zX7ksDJ5ljBM8YoSjiZVeAyda5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/ecaeb3-f42f-4bac-a49e-242ffdaa2670/1/0_tGmdVdpjc2L8zUWyzyW9iPObU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/ecaeb3-f42f-4bac-a49e-242ffdaa2670/1/zX7ksDJ5ljBM8YoSjiZVeAyda5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.124.128.0/22
Signature Algorithm: sha256WithRSAEncryption
34:3c:99:01:a1:47:5b:ef:82:cf:78:8b:84:49:df:be:16:95:
6a:15:2e:ee:73:a5:1f:e3:b9:57:ad:3b:4b:c4:9a:5e:92:93:
67:15:97:66:6c:04:3d:3f:ef:93:da:41:66:f8:e0:a8:2a:6b:
25:a0:11:7d:5e:f0:f7:f3:ad:ca:e4:d7:9c:b2:6d:7c:54:c4:
e5:da:19:6a:45:05:60:2f:4d:c5:5c:a4:c4:e1:54:73:c5:3a:
57:45:10:1c:8c:c3:e4:8d:70:9b:33:b9:45:4e:9b:67:d5:a6:
0e:84:ae:7e:55:be:a9:01:45:d7:15:cc:fc:01:79:d3:3e:b7:
2b:1d:25:fe:77:58:9b:63:05:53:25:86:26:97:0e:b9:d4:d3:
4b:09:8c:6b:6e:99:1d:18:83:61:9a:37:55:0d:71:85:a6:2a:
0e:80:f0:6a:e5:d3:75:66:95:94:4a:da:a6:5d:b2:2a:f9:c1:
24:cc:be:c8:08:7d:d6:35:ec:3a:06:a7:5a:6d:91:48:50:0b:
9f:5f:41:ac:cf:29:9e:dd:e7:4e:54:83:61:2c:fa:08:b2:86:
4a:0b:63:75:30:ac:f6:d9:17:53:25:e6:4b:04:54:c6:41:e2:
16:3f:fb:74:80:86:51:8f:0d:b3:17:9c:7b:76:05:a8:0e:73:
3b:f4:28:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:28 2025 by rpki-client on console.sobornost.net