Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/4771c5-26f6-4c7d-9851-f5189eb13a17/1/Rw3BYoyXYSEo6V5vN0qo3508qkM.roa
File: Rw3BYoyXYSEo6V5vN0qo3508qkM.roa (raw, json)
Hash identifier: sKlzeUwowKBMHyUl3VaDBvqX0srdSepcxCjN2qsXkZI=
Subject key identifier: 47:0D:C1:62:8C:97:61:21:28:E9:5E:6F:37:4A:A8:DF:9D:3C:AA:43
Certificate issuer: /CN=76976e737039a698672fe9524add337d1ff52cfd
Certificate serial: 019421B21630D5A8509DE8416DD2682D0007
Authority key identifier: 76:97:6E:73:70:39:A6:98:67:2F:E9:52:4A:DD:33:7D:1F:F5:2C:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dpduc3A5pphnL-lSSt0zfR_1LP0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/4771c5-26f6-4c7d-9851-f5189eb13a17/1/Rw3BYoyXYSEo6V5vN0qo3508qkM.roa
Signing time: Wed 01 Jan 2025 11:48:26 +0000
ROA not before: Wed 01 Jan 2025 11:48:26 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 39766
IP address blocks: 89.185.192.0/19 maxlen: 19
185.14.204.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b2:16:30:d5:a8:50:9d:e8:41:6d:d2:68:2d:00:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76976e737039a698672fe9524add337d1ff52cfd
Validity
Not Before: Jan 1 11:48:26 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=470dc1628c97612128e95e6f374aa8df9d3caa43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:12:6f:76:8d:b5:ca:5e:80:71:e6:aa:7a:1a:
94:7b:00:0c:b3:72:3c:4a:fe:e1:5a:e4:d9:fb:a0:
e5:ba:d5:56:6d:03:be:19:d7:24:a9:71:d4:33:2b:
33:88:d6:5e:6e:94:76:04:15:71:2c:0a:c1:42:32:
83:34:fc:fe:b2:d2:5d:7e:6c:f9:04:e9:6a:09:c2:
95:b3:e4:4b:d6:a6:90:b4:b4:20:a5:63:0c:6b:83:
fe:32:b0:9d:f3:56:76:f9:8b:f0:01:70:b8:d9:9e:
49:9d:ca:5e:0f:81:5f:36:56:9b:7f:0c:7e:ec:3f:
d0:26:90:b8:fa:6d:5d:af:80:c1:ab:4c:d2:81:fc:
ab:91:68:52:49:fb:55:04:16:e0:2c:d4:11:2f:e7:
7d:0f:fa:5c:24:57:2c:4e:24:8c:ad:e2:fb:d7:13:
eb:f4:5d:84:81:7f:c6:7c:27:06:01:11:c6:f2:75:
a4:36:48:91:5d:46:ae:42:69:c7:83:1f:9a:0e:e3:
4c:68:48:60:fd:89:e7:4c:80:5a:1b:99:40:ea:b0:
69:74:82:9d:5e:fb:55:53:c3:ab:25:6c:ef:75:6b:
f8:cd:bf:ec:ae:d2:20:92:ce:a8:ef:87:1d:21:5c:
6a:f8:8c:ff:ce:05:ca:d1:91:6b:92:5f:c6:6b:32:
ed:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:0D:C1:62:8C:97:61:21:28:E9:5E:6F:37:4A:A8:DF:9D:3C:AA:43
X509v3 Authority Key Identifier:
keyid:76:97:6E:73:70:39:A6:98:67:2F:E9:52:4A:DD:33:7D:1F:F5:2C:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dpduc3A5pphnL-lSSt0zfR_1LP0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/4771c5-26f6-4c7d-9851-f5189eb13a17/1/Rw3BYoyXYSEo6V5vN0qo3508qkM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/4771c5-26f6-4c7d-9851-f5189eb13a17/1/dpduc3A5pphnL-lSSt0zfR_1LP0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.185.192.0/19
185.14.204.0/22
Signature Algorithm: sha256WithRSAEncryption
28:e0:dc:8e:3f:42:67:e0:14:8f:9a:75:97:b4:85:71:b4:d2:
cd:2a:6b:52:28:7f:58:f3:01:55:e4:71:0a:26:46:6b:52:c9:
02:a4:d8:5c:b4:cc:f5:c7:7c:e4:a5:46:37:93:f4:c0:8b:8b:
2c:3e:2b:1d:46:e5:37:cf:d9:ec:b3:bc:96:e0:a2:d8:44:e2:
c9:2c:df:ad:a9:ae:7c:d5:cc:8f:8f:3b:b4:1c:3e:ef:8c:4c:
a7:f3:58:84:fb:45:14:2e:ba:98:6b:1b:7d:47:a8:f7:c7:27:
e3:ee:25:09:72:13:b0:64:ec:a7:34:99:94:14:64:f2:5e:b7:
2a:d8:25:31:3a:8a:69:c9:ac:99:85:f4:1c:4c:cf:61:28:85:
96:30:f5:6d:18:e4:7a:91:8f:d9:f7:18:84:7d:fb:87:1b:18:
18:83:49:18:7b:de:07:5c:46:b1:19:54:4e:27:6c:b5:b8:65:
12:7b:38:68:79:aa:b7:84:47:62:c6:3c:71:ec:63:26:79:79:
22:fe:c7:c6:ea:2f:90:df:aa:9d:ab:f9:68:75:bb:2b:bb:f7:
a8:8c:4b:15:8f:ac:c2:fb:85:d0:fd:ac:83:fa:73:29:42:32:
5b:06:cb:e9:59:cb:2f:f1:1e:86:6c:dc:52:9b:2d:a6:42:b6:
cb:fe:b8:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:31 2025 by rpki-client on console.sobornost.net