Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/437150-783c-431a-b3fd-7c3d79401ec2/1/WRsKHbHpQ9jZIvciUb2Wz6AHSW4.roa
File: WRsKHbHpQ9jZIvciUb2Wz6AHSW4.roa (raw, json)
Hash identifier: 8Nnxx5No66UiBNPIjWPMS0jddJkyISjgfdGXoNS0d/M=
Subject key identifier: 59:1B:0A:1D:B1:E9:43:D8:D9:22:F7:22:51:BD:96:CF:A0:07:49:6E
Certificate issuer: /CN=40518ecbd6464d78ad451551648f9206f7fb5f42
Certificate serial: 0194888246234D325498C9CC984C83B3EE2A
Authority key identifier: 40:51:8E:CB:D6:46:4D:78:AD:45:15:51:64:8F:92:06:F7:FB:5F:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QFGOy9ZGTXitRRVRZI-SBvf7X0I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/437150-783c-431a-b3fd-7c3d79401ec2/1/WRsKHbHpQ9jZIvciUb2Wz6AHSW4.roa
Signing time: Tue 21 Jan 2025 10:57:06 +0000
ROA not before: Tue 21 Jan 2025 10:57:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 21473
IP address blocks: 138.222.72.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:88:82:46:23:4d:32:54:98:c9:cc:98:4c:83:b3:ee:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40518ecbd6464d78ad451551648f9206f7fb5f42
Validity
Not Before: Jan 21 10:57:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=591b0a1db1e943d8d922f72251bd96cfa007496e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:f5:89:0f:32:1e:09:e4:93:55:27:2e:5e:2a:
c7:91:08:5b:f5:bf:71:95:b1:83:d0:1b:49:b2:de:
28:b0:23:08:c3:96:96:1a:79:b5:99:70:67:08:3a:
c0:ad:83:9e:cf:5b:b9:d8:09:50:4e:ea:ae:f8:5e:
0d:da:ac:45:8d:91:87:f3:67:1f:1e:ca:9a:e3:cc:
3a:de:c1:b9:34:ce:fe:61:64:d4:9b:93:da:73:e4:
28:2a:c7:a1:28:72:46:6f:31:8a:c4:48:c0:39:f1:
ea:c1:88:a3:39:0c:b8:9e:24:67:fa:ab:91:47:ca:
1a:9d:c2:da:3e:2b:a9:e8:26:96:2b:87:a8:7c:ee:
c6:92:b2:8a:ed:32:94:af:ea:a8:13:d5:2a:d3:02:
d6:e8:1f:7c:ed:cc:4c:22:eb:7a:86:2d:5c:e9:33:
52:41:14:93:18:74:42:3a:34:cb:63:2b:ac:ec:36:
77:a3:ae:77:bf:4e:81:b0:54:c6:21:3a:76:83:f7:
eb:a9:33:8a:fd:f2:d7:e2:78:c7:51:ba:09:1b:ef:
a3:d8:5b:69:01:4c:fb:49:0f:97:fe:e3:e8:75:42:
22:89:2b:03:de:3a:6e:62:8e:ad:56:ea:fd:f2:a3:
12:79:79:26:32:be:d2:18:ba:58:d3:cb:39:66:78:
12:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:1B:0A:1D:B1:E9:43:D8:D9:22:F7:22:51:BD:96:CF:A0:07:49:6E
X509v3 Authority Key Identifier:
keyid:40:51:8E:CB:D6:46:4D:78:AD:45:15:51:64:8F:92:06:F7:FB:5F:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QFGOy9ZGTXitRRVRZI-SBvf7X0I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/437150-783c-431a-b3fd-7c3d79401ec2/1/WRsKHbHpQ9jZIvciUb2Wz6AHSW4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/437150-783c-431a-b3fd-7c3d79401ec2/1/QFGOy9ZGTXitRRVRZI-SBvf7X0I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.222.72.0/24
Signature Algorithm: sha256WithRSAEncryption
55:56:38:fe:53:00:a3:41:7e:6e:04:ba:a7:db:1a:b3:b2:d5:
92:38:11:46:7c:23:8b:98:a5:d9:1f:5c:91:63:ba:b1:7a:ad:
21:29:2e:e4:76:f0:42:e2:c7:55:47:9d:6b:d9:98:39:2b:25:
72:35:ab:91:bb:dd:32:62:1e:22:b9:2d:54:f8:94:8d:8c:f7:
b8:05:12:37:aa:fc:91:31:4e:f4:1a:4c:f7:5f:a5:f9:43:1a:
17:fb:d6:70:67:d0:48:6e:f3:9d:1b:16:37:9c:0f:0f:80:45:
79:47:bb:5d:5d:cb:eb:49:2b:88:d6:b3:fe:cb:a3:09:a3:0d:
15:62:81:c1:cf:9d:59:8c:58:de:a7:47:31:b8:5c:e5:e9:62:
f5:4f:fd:70:b1:98:c0:6c:28:f4:7b:33:8b:38:a3:d7:01:cd:
28:04:4b:41:3e:01:0f:49:61:11:a2:b1:71:65:e2:6b:c9:6e:
c3:2b:e9:77:cc:41:6e:83:f5:67:e1:38:b6:be:0a:3c:9b:0f:
b7:ef:8b:5f:25:7c:65:e6:4f:76:d9:ed:7e:fc:15:71:98:d4:
97:49:a2:ad:a8:b9:35:87:a4:87:98:3c:01:af:de:9b:8a:97:
a7:27:94:bb:a6:7f:f6:6f:31:e7:20:e0:73:c6:a5:e2:53:67:
79:d2:e0:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:58 2025 by rpki-client on console.sobornost.net