Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/I6vZ96jj_j_Rgbk7qiMH5Et-cY0.roa
File: I6vZ96jj_j_Rgbk7qiMH5Et-cY0.roa (raw, json)
Hash identifier: 1pAv4veaZaAls0LK0ZpaGH93EwiL0N/TGCdAe/Cd/mY=
Subject key identifier: 23:AB:D9:F7:A8:E3:FE:3F:D1:81:B9:3B:AA:23:07:E4:4B:7E:71:8D
Certificate issuer: /CN=60581e673d80f7474936b21337eafcc1bdc385e9
Certificate serial: 019625EFE2955E254B694E3A3D6FBC1A85CA
Authority key identifier: 60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/I6vZ96jj_j_Rgbk7qiMH5Et-cY0.roa
Signing time: Fri 11 Apr 2025 17:40:00 +0000
ROA not before: Fri 11 Apr 2025 17:40:00 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 9304
IP address blocks: 104.239.55.0/24 maxlen: 24
104.249.23.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:25:ef:e2:95:5e:25:4b:69:4e:3a:3d:6f:bc:1a:85:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60581e673d80f7474936b21337eafcc1bdc385e9
Validity
Not Before: Apr 11 17:40:00 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=23abd9f7a8e3fe3fd181b93baa2307e44b7e718d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:5e:97:c0:a4:0f:03:37:d6:ac:7a:ae:bd:a1:
c4:a3:0a:e3:7e:56:5b:33:cf:e7:f0:3b:69:32:d2:
68:9a:95:85:aa:94:7a:d6:6b:40:73:27:a6:4a:ea:
d3:03:d4:1c:0e:8f:56:ca:c8:b8:b7:c0:2c:b0:ef:
1b:7f:a3:97:82:d4:2d:8a:08:f4:71:57:bc:d5:1e:
1e:79:2c:34:0a:ce:9a:8e:05:71:11:e6:b6:a2:11:
a4:3f:f6:3e:30:78:1c:7e:7f:d5:6f:6e:e5:d0:b4:
6d:d4:ca:44:83:8f:42:94:40:9a:e1:db:9b:15:42:
5f:b5:1b:4c:6a:4b:2c:d6:e3:b4:93:8e:7c:ba:e7:
0d:2b:34:a7:1d:43:0c:e5:d5:2e:fb:ed:81:ec:3f:
8d:c6:ea:d0:5d:01:46:e0:06:49:62:50:99:7e:87:
0d:07:83:fd:84:31:14:75:47:c0:8d:70:a2:93:b3:
b2:20:2b:0b:cd:fc:13:0a:6e:8e:79:4d:b0:35:56:
cf:f8:73:3f:1e:61:f6:e7:dc:48:42:0a:6f:3d:22:
e4:d7:55:34:66:60:08:fc:33:31:1c:02:a7:16:33:
36:0b:57:8c:8c:4d:e0:6f:6d:42:d4:8a:48:23:1b:
00:55:53:07:6d:a3:5e:e7:85:6d:8a:20:96:94:9c:
0e:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:AB:D9:F7:A8:E3:FE:3F:D1:81:B9:3B:AA:23:07:E4:4B:7E:71:8D
X509v3 Authority Key Identifier:
keyid:60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/I6vZ96jj_j_Rgbk7qiMH5Et-cY0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/YFgeZz2A90dJNrITN-r8wb3Dhek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
104.239.55.0/24
104.249.23.0/24
Signature Algorithm: sha256WithRSAEncryption
40:cb:31:6c:02:22:14:6a:ad:5b:0e:ea:a8:1e:72:de:65:46:
82:b6:52:48:43:fa:1e:31:e4:34:7b:0f:67:fa:aa:60:cc:c2:
c1:d8:a6:26:ce:24:39:8a:6f:66:9a:b4:5f:74:42:ef:b8:64:
e1:a2:35:06:ec:d2:79:ed:30:ca:27:8d:6a:54:97:3d:f1:15:
e3:8d:6e:52:b1:83:be:b2:b1:c5:92:6d:38:9d:e9:70:dc:aa:
dc:30:02:cd:b6:fd:9e:59:1a:82:75:09:e1:e6:0d:5d:be:5c:
7a:0c:fc:9c:fa:5b:36:c7:5b:cb:47:d5:5f:da:d9:95:89:0a:
6e:8b:3e:35:b1:d2:bb:07:c8:95:cc:a4:88:62:9d:4a:13:f2:
71:96:7f:0b:00:a2:7f:95:8d:06:cb:43:1c:a8:86:40:37:37:
4a:f1:65:fe:31:a6:cb:f1:c6:e6:4f:9a:64:34:9c:74:41:4f:
09:d3:23:78:44:12:85:e4:52:f1:7c:fe:e1:fb:39:18:8c:3a:
c7:c0:01:a2:22:d2:4d:70:30:3a:cd:78:56:1f:d6:6a:1f:f6:
44:ab:e2:94:45:bf:52:06:d9:08:03:28:65:29:67:b3:70:43:
70:e5:68:3f:08:4c:1f:89:e2:4a:39:59:13:08:bb:08:9e:35:
2d:48:d7:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:29 2025 by rpki-client on console.sobornost.net