Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/844769-cb3e-45cd-9165-687ae6fba3ad/1/1VNg1Q5CgydMlZtkT2gUiwyQsB8.roa
File: 1VNg1Q5CgydMlZtkT2gUiwyQsB8.roa (raw, json)
Hash identifier: hFOtYhVCGxVTmNvasMZGAdD1D7TMmY398V7CPu+M+nU=
Subject key identifier: D5:53:60:D5:0E:42:83:27:4C:95:9B:64:4F:68:14:8B:0C:90:B0:1F
Certificate issuer: /CN=733683cb856d6d9ff58e287e8a905d292dca6b34
Certificate serial: 0194236A1FC391618011F23A3AFCBB1EE6C2
Authority key identifier: 73:36:83:CB:85:6D:6D:9F:F5:8E:28:7E:8A:90:5D:29:2D:CA:6B:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/czaDy4VtbZ_1jih-ipBdKS3KazQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/844769-cb3e-45cd-9165-687ae6fba3ad/1/1VNg1Q5CgydMlZtkT2gUiwyQsB8.roa
Signing time: Wed 01 Jan 2025 19:49:05 +0000
ROA not before: Wed 01 Jan 2025 19:49:05 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206080
IP address blocks: 185.113.124.0/23 maxlen: 24
2a0a:9900::/29 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:6a:1f:c3:91:61:80:11:f2:3a:3a:fc:bb:1e:e6:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=733683cb856d6d9ff58e287e8a905d292dca6b34
Validity
Not Before: Jan 1 19:49:05 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d55360d50e4283274c959b644f68148b0c90b01f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:6c:78:db:c1:0b:a9:99:72:76:f6:a8:9b:0a:
f4:8b:66:8e:d2:02:be:c7:f9:e5:89:29:10:87:78:
a7:ba:1a:c5:a3:67:79:fb:80:f6:28:a0:a4:95:90:
09:fa:1f:31:6a:66:da:54:52:5f:b3:b3:04:bb:83:
1f:0e:e5:2b:e3:7c:21:d1:69:d8:3d:1b:96:53:c5:
4e:4e:30:d6:ba:2f:15:43:2b:2b:ec:4b:a5:4e:92:
5c:52:aa:a6:5c:77:6b:8e:71:79:22:92:6e:95:35:
9d:d5:28:5e:76:52:61:d5:2d:65:82:ab:95:0d:3d:
28:2a:0f:5d:d5:03:1d:61:0d:98:00:3a:62:86:4b:
9d:f1:f1:bb:55:1b:04:d7:23:14:a6:50:77:e7:98:
02:5e:19:00:c5:56:3e:78:b4:78:bb:5e:3e:00:bc:
4b:bd:32:20:38:a3:87:cc:5e:2f:01:78:13:6a:08:
22:79:2e:7b:81:ed:75:c1:7f:ea:15:cc:c0:f6:e5:
a2:12:13:67:79:cd:a3:39:08:47:6b:b3:95:aa:90:
db:9c:14:d7:60:61:e9:79:b3:5f:64:07:85:69:70:
e4:88:38:37:c8:1f:56:aa:27:db:ab:5d:79:3f:c3:
a3:38:25:1b:a3:cc:b1:a5:29:95:27:d0:49:7e:3f:
af:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:53:60:D5:0E:42:83:27:4C:95:9B:64:4F:68:14:8B:0C:90:B0:1F
X509v3 Authority Key Identifier:
keyid:73:36:83:CB:85:6D:6D:9F:F5:8E:28:7E:8A:90:5D:29:2D:CA:6B:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/czaDy4VtbZ_1jih-ipBdKS3KazQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/844769-cb3e-45cd-9165-687ae6fba3ad/1/1VNg1Q5CgydMlZtkT2gUiwyQsB8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/844769-cb3e-45cd-9165-687ae6fba3ad/1/czaDy4VtbZ_1jih-ipBdKS3KazQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.113.124.0/23
IPv6:
2a0a:9900::/29
Signature Algorithm: sha256WithRSAEncryption
42:9f:37:4e:3f:89:7e:67:e1:99:d2:d6:47:38:dd:b1:24:af:
c2:56:23:98:64:ac:5f:39:9b:46:b3:ab:f9:2f:55:d4:16:8a:
e7:ba:07:2a:6b:7a:32:58:d2:d2:83:cf:3f:84:fb:ef:b0:1b:
a8:1c:4e:40:e5:cc:76:1c:6a:f4:55:7a:1a:69:e6:20:88:4b:
f0:c8:21:2b:5b:34:6a:a2:11:60:18:e6:18:55:f4:44:68:d9:
1c:ea:39:3c:d4:e6:82:75:5f:39:4a:38:b1:46:82:b5:f2:02:
f7:86:e6:85:74:eb:a8:d9:5e:9d:83:8a:88:f4:07:a5:d8:ae:
72:13:67:34:a6:06:05:df:50:3f:a5:b2:95:c0:a2:4f:cf:0e:
83:8b:22:e6:36:15:30:74:19:36:af:86:e5:00:1a:59:97:42:
ec:82:67:c6:f6:ed:45:2e:54:47:15:d1:64:5a:56:5f:46:cb:
55:7c:f7:a7:bc:44:ac:06:90:18:8b:55:09:5e:e0:3d:29:47:
46:0f:a8:7d:c1:31:ba:3c:65:5e:84:88:e6:00:e9:52:e6:ce:
97:5a:52:ab:45:17:0e:0f:d3:2e:bd:4c:2c:3c:e9:92:08:35:
62:3c:d8:5b:e0:49:f8:a9:4d:70:1d:d8:3b:2a:be:9e:f8:77:
2f:8e:26:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:31 2025 by rpki-client on console.sobornost.net