Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/IzggmbUtRK0deMfVbn5EwY1Woi0.roa
File: IzggmbUtRK0deMfVbn5EwY1Woi0.roa (raw, json)
Hash identifier: RukC/fHa0KmxTNj/KfbcYxhjtT5jAN/mWq/feWJXPXs=
Subject key identifier: 23:38:20:99:B5:2D:44:AD:1D:78:C7:D5:6E:7E:44:C1:8D:56:A2:2D
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 0194CC6879FE44E12F1D6D162F1FFE2451B9
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/IzggmbUtRK0deMfVbn5EwY1Woi0.roa
Signing time: Mon 03 Feb 2025 15:23:06 +0000
ROA not before: Mon 03 Feb 2025 15:23:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215355
IP address blocks: 5.102.124.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:cc:68:79:fe:44:e1:2f:1d:6d:16:2f:1f:fe:24:51:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Feb 3 15:23:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=23382099b52d44ad1d78c7d56e7e44c18d56a22d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:62:82:3a:1c:87:e1:2f:de:2f:ab:01:08:48:
18:5d:70:f5:16:23:36:b0:ad:44:98:5e:de:9a:ab:
3a:0d:80:1d:7e:f1:38:cb:1d:56:8a:42:2e:b5:59:
7a:1b:28:ac:40:8a:5c:59:41:40:75:a1:b4:eb:9f:
01:32:7a:28:57:44:00:7a:fc:c2:26:d1:26:74:22:
f0:3f:40:45:84:ee:d2:04:54:a4:42:7c:66:d7:4f:
df:41:9c:04:29:23:cd:ad:fc:b3:6b:81:c3:fc:66:
4a:c0:35:d3:e0:f3:2d:0c:d9:46:aa:34:fe:ec:b5:
c9:cc:a9:4c:68:84:da:bb:02:31:40:74:6a:f8:67:
f8:f3:93:19:c2:58:eb:29:17:42:c9:47:2d:14:69:
50:ca:1c:3c:c4:29:47:52:c8:dd:1d:0e:98:58:12:
36:90:5e:69:67:2c:59:7e:7f:7f:79:a1:97:63:a8:
2b:13:e7:77:43:2a:fa:72:f9:fa:d0:39:02:f6:72:
1e:62:d1:37:cd:bb:86:6f:e6:a7:73:d2:9b:46:97:
ae:aa:63:ab:0d:dd:ea:3e:d2:6b:f7:e7:45:15:10:
83:d9:26:13:0d:ca:ed:ed:3d:51:71:55:2a:c0:89:
33:f6:cc:85:fa:97:64:92:31:b5:cd:45:0b:c9:bb:
16:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:38:20:99:B5:2D:44:AD:1D:78:C7:D5:6E:7E:44:C1:8D:56:A2:2D
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/IzggmbUtRK0deMfVbn5EwY1Woi0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.102.124.0/22
Signature Algorithm: sha256WithRSAEncryption
02:f3:34:ba:3c:31:0f:65:03:11:02:00:17:81:bc:0a:12:69:
e6:7d:48:d4:66:c8:8e:89:d6:50:c5:af:18:5c:df:41:b7:fe:
1d:d3:15:db:62:f7:c3:8c:e6:2a:6e:d0:dd:7c:92:06:3d:c5:
ec:8e:69:12:6a:f2:38:52:13:ff:79:38:98:07:c2:9c:fb:02:
ce:d8:2c:70:f0:4b:b1:f7:35:8e:a3:ec:ab:70:81:f5:9e:c1:
31:95:e1:05:c0:b0:7b:ab:c2:5c:15:bc:26:6a:75:e2:ba:ec:
3a:e7:e4:9c:8e:de:94:16:cd:dd:9d:cf:1d:51:e5:59:03:1d:
d5:ba:1b:6d:5d:05:df:ba:5d:d5:6f:ea:54:b2:50:cd:cc:e4:
0f:4e:da:b6:29:bd:d0:88:4d:58:ea:5f:1f:15:64:8e:ab:43:
4b:d2:84:4f:5f:73:3d:d8:a7:d3:3c:c8:a1:31:77:8b:0f:5e:
ed:3e:a4:12:17:80:0e:5d:11:9b:79:60:ed:3b:18:d0:cf:2e:
ed:2e:05:47:5e:01:97:9f:bd:ff:ff:e3:20:96:01:b9:a9:fa:
f1:84:46:de:3d:18:7c:7b:a0:20:39:e2:fb:50:5a:fa:a2:da:
8f:b1:af:58:95:65:71:5e:5c:50:a7:10:9f:89:9d:df:19:da:
a1:df:26:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 8 04:50:40 2025 by rpki-client on console.sobornost.net