Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/dfa4a8-38b0-461b-a082-843e262dd8dc/1/ooSUZeRWEgEQnBmOBZBl50kW0Ss.roa
File: ooSUZeRWEgEQnBmOBZBl50kW0Ss.roa (raw, json)
Hash identifier: XaXFTIC5WACeTPiGq5647vf0R9FxLAGRvbwFyBodmmI=
Subject key identifier: A2:84:94:65:E4:56:12:01:10:9C:19:8E:05:90:65:E7:49:16:D1:2B
Certificate issuer: /CN=5cf56321eb7ea3ee45cded028668420e37fa2fac
Certificate serial: 019425FC75E463561096B2ACA7F4F96771A2
Authority key identifier: 5C:F5:63:21:EB:7E:A3:EE:45:CD:ED:02:86:68:42:0E:37:FA:2F:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XPVjIet-o-5Fze0ChmhCDjf6L6w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/dfa4a8-38b0-461b-a082-843e262dd8dc/1/ooSUZeRWEgEQnBmOBZBl50kW0Ss.roa
Signing time: Thu 02 Jan 2025 07:48:09 +0000
ROA not before: Thu 02 Jan 2025 07:48:09 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 15943
IP address blocks: 194.76.122.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fc:75:e4:63:56:10:96:b2:ac:a7:f4:f9:67:71:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cf56321eb7ea3ee45cded028668420e37fa2fac
Validity
Not Before: Jan 2 07:48:09 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a2849465e4561201109c198e059065e74916d12b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:13:c2:c5:f2:e5:79:1b:96:44:a4:ac:d9:cb:
f9:2d:5e:25:97:da:8d:40:0d:77:1b:e1:2e:95:c7:
60:33:54:35:6b:25:bf:d0:db:12:b2:68:d6:b3:cb:
24:f7:d5:7f:a6:5e:53:8c:1f:95:8b:97:fe:87:e9:
20:96:2f:86:b2:db:af:a3:b9:4f:d0:60:32:d4:8f:
f0:f2:40:e5:45:1b:10:9e:d6:53:c8:65:8d:10:0b:
c3:72:9a:a0:fd:d2:05:78:d5:d7:fe:3a:27:e3:48:
c2:85:e1:19:d3:4a:16:1e:a1:7a:41:f4:dc:2a:a6:
22:ac:13:6d:8b:6e:00:75:38:16:cb:30:df:7e:e0:
36:8c:69:64:46:db:2b:f7:b5:cb:d8:86:8e:1c:16:
1c:83:71:85:f7:65:5c:cd:cf:74:6e:7f:1e:e7:e3:
91:57:7f:50:67:24:2e:6b:39:76:05:f4:15:e3:17:
2f:ef:ac:82:47:d0:a7:81:95:48:62:11:9e:f7:c8:
cf:c9:42:d8:ef:4e:bb:c4:e0:66:bf:4e:39:eb:56:
db:63:43:6f:30:b2:c0:c2:7e:73:b9:03:81:97:db:
e3:b3:20:65:a9:b1:b7:2f:b9:e2:aa:d0:d5:84:ff:
2a:ea:e6:c3:cb:92:fd:15:ec:f1:89:41:87:19:46:
ee:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:84:94:65:E4:56:12:01:10:9C:19:8E:05:90:65:E7:49:16:D1:2B
X509v3 Authority Key Identifier:
keyid:5C:F5:63:21:EB:7E:A3:EE:45:CD:ED:02:86:68:42:0E:37:FA:2F:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XPVjIet-o-5Fze0ChmhCDjf6L6w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/dfa4a8-38b0-461b-a082-843e262dd8dc/1/ooSUZeRWEgEQnBmOBZBl50kW0Ss.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/dfa4a8-38b0-461b-a082-843e262dd8dc/1/XPVjIet-o-5Fze0ChmhCDjf6L6w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.76.122.0/23
Signature Algorithm: sha256WithRSAEncryption
ae:5c:35:f8:a8:f4:23:22:4a:d3:9c:ba:07:cd:ee:be:d9:e3:
c1:06:08:40:8c:82:6c:5b:98:7c:0a:73:98:5e:37:1f:8d:36:
fe:e2:fa:22:ae:ef:97:59:77:78:5c:4f:7f:db:f3:ab:58:46:
88:6f:03:f8:b9:3e:b8:2e:35:11:e6:ff:a4:74:31:0f:5d:62:
b7:f5:5d:f0:20:26:3a:bf:93:be:43:bf:04:e2:18:cc:31:ac:
a0:fc:1c:2f:67:9f:c0:0b:4a:6a:27:40:ce:34:32:2a:13:5a:
66:f0:65:16:f2:df:30:58:7f:e1:06:14:2f:e5:19:a1:46:18:
88:a8:22:0d:95:52:e3:57:8f:0d:04:cf:69:0f:5a:0d:3d:b1:
5e:61:d0:97:d1:60:0d:e1:1d:60:6a:d7:21:3e:f0:c6:2b:99:
f1:81:25:94:92:ae:db:91:e0:ca:cd:d5:14:a5:93:92:6e:be:
27:e3:e6:e4:76:ee:fd:6d:6a:d4:77:60:3f:a4:ed:2e:04:0a:
05:6c:4a:6b:92:01:f2:82:c4:fe:93:c1:55:05:b8:84:b2:ba:
1b:f0:9d:55:8b:d1:9f:5f:b2:6d:11:f4:92:b3:f3:89:89:af:
dd:23:6a:65:cc:d6:d5:fb:cb:b4:e8:0f:48:0f:bd:4d:a2:2f:
ed:dc:a9:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:34 2025 by rpki-client on console.sobornost.net