Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/b62e59-e2c5-4a76-8b67-55672634cbc1/1/0oVfx4tRY8OdO-PChC_5XteysH0.roa
File: 0oVfx4tRY8OdO-PChC_5XteysH0.roa (raw, json)
Hash identifier: GbKCzhdeN2aFWua1Fqr/ZrjdIb+wfBYag5SVn3tUFwo=
Subject key identifier: D2:85:5F:C7:8B:51:63:C3:9D:3B:E3:C2:84:2F:F9:5E:D7:B2:B0:7D
Certificate issuer: /CN=a3679bf4c627d85fee2ce13a53c44851b9df0563
Certificate serial: 019427B62807050F5463DF991A326B2AF200
Authority key identifier: A3:67:9B:F4:C6:27:D8:5F:EE:2C:E1:3A:53:C4:48:51:B9:DF:05:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o2eb9MYn2F_uLOE6U8RIUbnfBWM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/b62e59-e2c5-4a76-8b67-55672634cbc1/1/0oVfx4tRY8OdO-PChC_5XteysH0.roa
Signing time: Thu 02 Jan 2025 15:50:36 +0000
ROA not before: Thu 02 Jan 2025 15:50:36 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 39087
IP address blocks: 88.201.170.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b6:28:07:05:0f:54:63:df:99:1a:32:6b:2a:f2:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3679bf4c627d85fee2ce13a53c44851b9df0563
Validity
Not Before: Jan 2 15:50:36 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d2855fc78b5163c39d3be3c2842ff95ed7b2b07d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:63:82:11:da:b2:6d:b3:7a:6e:b6:af:f3:e8:
3b:08:ac:3c:13:63:50:6f:60:80:ef:e2:29:65:61:
67:27:7e:94:e0:bd:6b:7d:e1:7f:42:12:ed:b8:ca:
53:a9:33:53:12:1f:7a:65:8d:6d:54:70:14:05:a9:
1c:9e:c5:0a:03:23:6a:2a:5a:56:ee:f3:ca:cf:7e:
1d:39:c3:5a:17:d5:6c:38:bd:f9:13:fd:c8:63:b9:
f5:07:66:c2:7d:8c:da:06:c3:8c:fe:e5:a0:33:ac:
08:53:db:c0:e6:39:67:53:49:5d:d6:5f:a8:c8:7f:
26:98:a6:fc:4b:74:79:3f:fa:97:f3:d1:f9:69:4a:
ec:ca:ad:35:1f:c0:57:ae:48:3b:59:5b:86:74:c6:
d7:fb:72:99:db:02:37:c1:06:01:7a:b1:cf:3e:7a:
bd:63:6a:b8:00:57:d6:78:35:b4:be:92:04:8d:fa:
19:9d:3d:15:3c:d5:d8:52:f2:81:e6:ac:99:6b:fa:
4a:33:5b:bb:70:96:db:ec:7d:1d:80:c9:81:ae:93:
06:9e:d7:95:7a:7e:15:3b:ea:47:0d:4c:f7:74:ed:
0a:60:9f:ee:0d:05:53:f9:1a:b5:d8:71:87:91:f8:
e2:97:ad:a3:06:40:7f:2e:1c:87:13:29:ba:06:9e:
1c:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:85:5F:C7:8B:51:63:C3:9D:3B:E3:C2:84:2F:F9:5E:D7:B2:B0:7D
X509v3 Authority Key Identifier:
keyid:A3:67:9B:F4:C6:27:D8:5F:EE:2C:E1:3A:53:C4:48:51:B9:DF:05:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o2eb9MYn2F_uLOE6U8RIUbnfBWM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/b62e59-e2c5-4a76-8b67-55672634cbc1/1/0oVfx4tRY8OdO-PChC_5XteysH0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/b62e59-e2c5-4a76-8b67-55672634cbc1/1/o2eb9MYn2F_uLOE6U8RIUbnfBWM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.201.170.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:ac:ed:3f:4e:c5:48:4f:e0:dc:b8:71:17:4e:36:08:68:85:
1a:3b:2d:6d:78:7a:fe:90:8d:97:aa:e1:ef:17:b2:ad:3f:0b:
17:ee:01:a1:8e:35:ff:f4:18:15:e5:6b:58:da:43:db:8f:56:
11:4f:df:8b:ca:0c:7c:20:f5:ca:ea:55:6c:ec:48:30:96:0d:
7a:7e:db:3b:6b:73:b2:7b:cd:b6:8a:45:67:84:90:7b:47:f0:
1f:4b:f7:5a:76:e1:6f:31:9d:a8:02:fc:8c:00:13:2e:98:88:
76:72:9a:f8:43:3a:89:ed:98:a0:9a:c2:26:e7:28:99:3f:ba:
88:8f:bd:47:10:18:23:f4:19:6c:60:73:4e:69:3c:8b:23:dd:
15:b6:70:61:83:7a:80:0b:50:70:bc:47:68:7e:80:0e:5d:9b:
71:2d:af:da:74:56:dd:a3:5d:71:36:bb:1c:85:2f:af:13:db:
f5:05:f4:fb:18:ee:9f:63:1e:87:7f:3d:29:e5:e2:3f:c5:e4:
4f:60:2d:53:b3:f9:72:f0:83:5b:62:31:bf:29:a8:45:47:7f:
f4:b6:4d:b1:3e:8e:61:eb:47:d6:de:38:cb:21:0e:f0:a8:55:
91:32:2d:46:a7:5e:29:62:be:fe:c6:a2:85:a7:1f:0d:08:fe:
61:88:f0:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:12 2025 by rpki-client on console.sobornost.net