Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/f536cd-943f-4554-9f17-344cc502f1bd/1/5l7niHnSzFawKg-6eXVddr5nW40.roa
File: 5l7niHnSzFawKg-6eXVddr5nW40.roa (raw, json)
Hash identifier: fnthIPYyIns5UnUMVS3MzUFUL59q+jV5tt0gne5luRs=
Subject key identifier: E6:5E:E7:88:79:D2:CC:56:B0:2A:0F:BA:79:75:5D:76:BE:67:5B:8D
Certificate issuer: /CN=304e59a223f4bcb823492fb1096c3a82310c03da
Certificate serial: 019427B626FEB8D679B482AD569CEC221FC0
Authority key identifier: 30:4E:59:A2:23:F4:BC:B8:23:49:2F:B1:09:6C:3A:82:31:0C:03:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ME5ZoiP0vLgjSS-xCWw6gjEMA9o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/f536cd-943f-4554-9f17-344cc502f1bd/1/5l7niHnSzFawKg-6eXVddr5nW40.roa
Signing time: Thu 02 Jan 2025 15:50:36 +0000
ROA not before: Thu 02 Jan 2025 15:50:36 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 204418
IP address blocks: 185.119.105.0/24 maxlen: 24
2a06:8a01::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b6:26:fe:b8:d6:79:b4:82:ad:56:9c:ec:22:1f:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=304e59a223f4bcb823492fb1096c3a82310c03da
Validity
Not Before: Jan 2 15:50:36 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e65ee78879d2cc56b02a0fba79755d76be675b8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:63:a6:e9:07:4d:c5:7e:5e:6d:1d:98:44:99:
57:64:55:14:39:ac:2f:7e:de:16:a2:b5:f0:de:0e:
d0:cd:af:8e:66:2f:61:a2:9a:72:c3:09:99:0a:e3:
0f:96:a1:55:0a:5f:2d:1e:8a:a8:01:92:93:ee:b1:
e1:38:9e:9b:36:f1:22:90:15:93:0d:f5:77:68:46:
f3:f0:2f:f3:1f:2a:4d:15:0c:38:81:c7:c0:3f:16:
a3:b8:2e:35:76:f1:ce:51:4b:3a:43:7a:72:5b:db:
61:8d:38:18:5e:b5:a7:55:73:63:17:c6:7e:7c:2b:
26:e6:82:17:71:c1:84:9a:4b:89:b4:9b:06:41:be:
38:87:78:9c:13:b6:b8:79:ec:2a:1c:48:4c:72:82:
0f:77:0c:eb:2c:8a:99:89:d7:0c:59:cf:a9:49:69:
92:94:2f:62:57:7d:76:39:e3:7c:1b:0a:db:fa:79:
67:09:8e:45:5f:dc:f0:b1:2b:54:fb:25:31:0d:2f:
0e:21:db:93:31:9b:98:31:2b:e5:ba:d8:1f:97:93:
f8:4d:1e:f9:43:1b:17:1a:63:7e:7c:a9:d9:fd:f4:
3f:ea:a3:69:20:18:ec:4d:81:e5:1d:91:12:68:e8:
3f:ce:6f:4a:55:73:7d:eb:e2:90:ef:c4:9c:f0:69:
d5:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:5E:E7:88:79:D2:CC:56:B0:2A:0F:BA:79:75:5D:76:BE:67:5B:8D
X509v3 Authority Key Identifier:
keyid:30:4E:59:A2:23:F4:BC:B8:23:49:2F:B1:09:6C:3A:82:31:0C:03:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ME5ZoiP0vLgjSS-xCWw6gjEMA9o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/f536cd-943f-4554-9f17-344cc502f1bd/1/5l7niHnSzFawKg-6eXVddr5nW40.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/f536cd-943f-4554-9f17-344cc502f1bd/1/ME5ZoiP0vLgjSS-xCWw6gjEMA9o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.119.105.0/24
IPv6:
2a06:8a01::/32
Signature Algorithm: sha256WithRSAEncryption
88:90:71:22:13:fd:4c:6c:e5:d2:e3:b9:93:be:81:ea:45:d1:
cc:f3:63:97:0f:95:75:db:1b:9f:25:58:7d:01:7f:5a:6d:a9:
ff:6b:b5:a5:73:af:3b:e3:5c:bb:ae:4f:8e:2f:0e:c5:d9:36:
ea:83:a9:f2:7e:69:62:e7:23:34:13:b5:16:2c:42:66:f2:d7:
5a:47:0d:e0:8b:03:b7:5e:ef:24:7d:20:4e:b3:78:7e:e0:aa:
5d:b6:29:62:ff:dd:53:12:98:09:69:12:2c:56:9c:f3:bb:76:
64:c7:95:87:6e:a5:82:c8:ef:a7:34:c5:30:08:a1:b8:6c:c7:
46:6b:54:2c:b3:b7:d7:49:79:5a:d3:49:93:15:b7:aa:2e:c1:
cd:f9:65:5a:3e:12:89:74:d6:dc:70:bb:1e:3e:2b:c8:34:7e:
f1:36:95:73:63:68:4f:62:ef:9e:89:26:78:da:a6:ae:a3:6d:
75:30:dc:d1:0b:15:1b:48:68:3c:f2:71:eb:5c:6a:b7:5b:72:
a2:d4:63:99:dc:1a:eb:87:d6:2f:0a:0f:c7:a6:b5:df:ae:1a:
b3:f9:10:17:5c:b5:dc:67:fb:e3:78:07:fa:84:71:17:94:72:
5c:2e:37:00:5a:69:12:43:db:ae:08:dc:12:63:98:d6:6a:b7:
f4:f6:84:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:00 2025 by rpki-client on console.sobornost.net