Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/c931fc-df1e-4bb1-9de9-d74a12959ad7/1/cwNcFibEiknBhjZUsu5CDMCAHjU.roa
File: cwNcFibEiknBhjZUsu5CDMCAHjU.roa (raw, json)
Hash identifier: uRGOj4tJKaLxVK1NmQ/cajMQwRP5s1agqok1B0mO3Is=
Subject key identifier: 73:03:5C:16:26:C4:8A:49:C1:86:36:54:B2:EE:42:0C:C0:80:1E:35
Certificate issuer: /CN=5bd6cbdaa794a97a7d8266702cb054f1b249d4bf
Certificate serial: 0194252214FC9DD3721CEC34153AB46E2041
Authority key identifier: 5B:D6:CB:DA:A7:94:A9:7A:7D:82:66:70:2C:B0:54:F1:B2:49:D4:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W9bL2qeUqXp9gmZwLLBU8bJJ1L8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/c931fc-df1e-4bb1-9de9-d74a12959ad7/1/cwNcFibEiknBhjZUsu5CDMCAHjU.roa
Signing time: Thu 02 Jan 2025 03:49:38 +0000
ROA not before: Thu 02 Jan 2025 03:49:38 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 2200
IP address blocks: 192.33.156.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:22:14:fc:9d:d3:72:1c:ec:34:15:3a:b4:6e:20:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5bd6cbdaa794a97a7d8266702cb054f1b249d4bf
Validity
Not Before: Jan 2 03:49:38 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=73035c1626c48a49c1863654b2ee420cc0801e35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:0b:56:3d:0f:6d:10:14:45:40:c2:0e:57:59:
3c:39:2f:a0:f8:81:03:b4:55:2b:92:63:d1:4d:fa:
d9:de:bf:1c:b8:29:71:12:c1:ce:e2:e6:a3:ba:39:
e5:ed:b8:ac:49:0e:9e:a6:5c:b2:f8:ad:09:32:f9:
b7:f2:4a:08:78:ba:ec:79:4f:32:61:ec:83:63:e7:
7e:30:d7:72:5d:67:cc:7f:21:67:e7:f4:fa:64:49:
bf:61:ca:dc:8c:08:86:c1:89:d3:32:7d:68:10:a9:
c9:01:73:48:14:69:4d:07:7a:4f:70:e1:28:38:9a:
c9:e9:1e:59:1d:d6:bd:91:f3:2d:d5:3e:b6:08:37:
18:10:a8:d1:16:07:19:80:31:43:39:a4:cf:81:a4:
78:9a:7a:8f:06:5d:0c:02:0d:86:a5:8a:e2:54:8a:
50:37:9f:c3:a9:5d:79:83:43:d7:a0:ce:38:29:cc:
13:18:be:c3:e9:2b:e0:f7:28:2e:3f:49:a0:b4:ed:
40:0f:2d:fe:34:84:57:26:c5:47:27:d8:51:38:ad:
6d:6d:64:bf:ab:f6:c3:69:06:2c:06:02:c8:bd:01:
09:74:7e:e8:03:9c:c0:21:70:a6:0f:7f:73:46:de:
ce:7b:3a:1c:8c:1a:34:6e:bc:f3:a9:53:4d:48:db:
1e:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:03:5C:16:26:C4:8A:49:C1:86:36:54:B2:EE:42:0C:C0:80:1E:35
X509v3 Authority Key Identifier:
keyid:5B:D6:CB:DA:A7:94:A9:7A:7D:82:66:70:2C:B0:54:F1:B2:49:D4:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W9bL2qeUqXp9gmZwLLBU8bJJ1L8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/c931fc-df1e-4bb1-9de9-d74a12959ad7/1/cwNcFibEiknBhjZUsu5CDMCAHjU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/c931fc-df1e-4bb1-9de9-d74a12959ad7/1/W9bL2qeUqXp9gmZwLLBU8bJJ1L8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.33.156.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:40:d3:09:9e:19:f0:9e:68:3a:b9:0f:8f:ff:07:b3:0a:07:
e2:44:65:64:cb:53:44:7e:b8:10:b3:7e:3b:a9:11:ab:87:19:
71:d1:3c:19:c9:9d:86:3f:d0:71:80:5f:83:99:ed:70:2f:e1:
2f:64:f8:ea:6a:47:8e:31:ab:c4:3e:a9:0e:7e:65:7b:48:a3:
13:fe:5d:4d:c6:8a:cc:93:df:89:ac:09:78:8b:a9:ff:e4:3e:
cc:4d:01:59:30:df:a6:dd:78:7f:3f:eb:2a:4a:31:ca:7d:e5:
ed:54:26:33:5f:08:e9:e5:41:47:7f:57:b8:44:2d:9b:ce:0b:
ee:0c:31:7c:b8:92:bf:95:b1:ee:e8:e7:f0:d0:a2:1b:dc:fb:
5e:e5:15:f8:c3:a0:36:0d:eb:87:91:48:c1:32:5c:c2:e6:b5:
7b:80:d1:2b:ce:d1:90:41:88:8e:c1:00:42:24:78:d1:1f:5e:
25:32:84:0d:78:78:6c:9c:d3:fe:f6:64:09:24:0f:71:6a:18:
aa:f0:6f:0f:81:78:1b:7e:4f:10:9f:e7:d9:ba:c0:42:e7:89:
65:a4:41:86:b9:6b:21:97:7b:14:2c:e9:b9:0a:a5:51:81:bd:
69:de:40:fa:df:91:3b:7e:a0:7e:93:a4:a0:5e:f2:8c:71:81:
f3:75:10:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:10 2025 by rpki-client on console.sobornost.net