Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/b54f2a-d898-4d03-b789-9cb261e66762/1/c5PalyNSyST_aAI1KT3QGDFOwJs.roa
File: c5PalyNSyST_aAI1KT3QGDFOwJs.roa (raw, json)
Hash identifier: mO2ZdsVC3fTegCqI2v7PXch94it/WJD1mL1+9bQtLsY=
Subject key identifier: 73:93:DA:97:23:52:C9:24:FF:68:02:35:29:3D:D0:18:31:4E:C0:9B
Certificate issuer: /CN=10dd3a72f790b25ee3d229ac99f69a71bf1d8294
Certificate serial: 019426D9E2F93C71C6AEFC4D6DEE024700D2
Authority key identifier: 10:DD:3A:72:F7:90:B2:5E:E3:D2:29:AC:99:F6:9A:71:BF:1D:82:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EN06cveQsl7j0imsmfaacb8dgpQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/b54f2a-d898-4d03-b789-9cb261e66762/1/c5PalyNSyST_aAI1KT3QGDFOwJs.roa
Signing time: Thu 02 Jan 2025 11:50:01 +0000
ROA not before: Thu 02 Jan 2025 11:50:01 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 203116
IP address blocks: 185.143.24.0/22 maxlen: 22
2a07:4540::/29 maxlen: 29
2a07:4540:a::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:e2:f9:3c:71:c6:ae:fc:4d:6d:ee:02:47:00:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10dd3a72f790b25ee3d229ac99f69a71bf1d8294
Validity
Not Before: Jan 2 11:50:01 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7393da972352c924ff680235293dd018314ec09b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:e9:43:dd:09:27:78:ef:61:02:17:74:02:46:
11:0d:5e:08:19:a9:0b:60:cc:5e:8a:ac:3e:03:1d:
9a:69:c4:b6:fc:a3:ae:09:a3:4e:9c:29:59:24:82:
c0:d0:18:0b:d5:ee:7b:75:1f:d6:e3:e5:de:da:b2:
53:e5:e3:ac:14:33:65:26:3b:e4:e3:82:07:6e:d4:
e5:e1:f7:a8:f2:81:38:6d:a4:e6:70:00:62:00:16:
07:5e:33:2f:3a:28:9c:61:42:87:8e:47:05:b6:93:
97:7c:4d:e7:6f:8d:16:cf:64:87:57:af:6e:cf:76:
44:48:c0:b2:8e:67:c7:54:cc:d5:74:6e:04:88:6a:
a6:ac:b2:a8:32:80:28:1b:60:06:b2:11:4c:8c:16:
cc:7e:f0:2b:72:07:e0:f9:1d:f4:50:38:fd:d3:5d:
f8:5b:2b:01:a8:31:cc:b9:be:88:0b:f6:f2:cf:3a:
01:8e:56:fd:d5:9e:d1:68:e4:9f:64:86:02:3e:07:
ed:4b:5c:ae:ff:50:a7:f9:18:6f:d2:53:7a:9e:98:
5a:c7:c3:d9:cf:2f:88:24:5b:b8:9b:04:4e:5c:10:
3e:b2:cf:ee:db:4b:fe:c0:98:40:77:49:77:fd:54:
fc:63:8f:6c:ce:de:63:90:79:c6:43:ed:9a:a2:5f:
78:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:93:DA:97:23:52:C9:24:FF:68:02:35:29:3D:D0:18:31:4E:C0:9B
X509v3 Authority Key Identifier:
keyid:10:DD:3A:72:F7:90:B2:5E:E3:D2:29:AC:99:F6:9A:71:BF:1D:82:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EN06cveQsl7j0imsmfaacb8dgpQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/b54f2a-d898-4d03-b789-9cb261e66762/1/c5PalyNSyST_aAI1KT3QGDFOwJs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/b54f2a-d898-4d03-b789-9cb261e66762/1/EN06cveQsl7j0imsmfaacb8dgpQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.143.24.0/22
IPv6:
2a07:4540::/29
Signature Algorithm: sha256WithRSAEncryption
8d:a1:78:5a:01:2b:0b:8f:c4:86:9e:9d:62:c4:c6:20:ed:6e:
f0:24:4c:9e:b6:35:56:98:46:33:b5:ff:3c:4b:a7:fb:7c:19:
7e:fc:e5:17:21:24:28:f7:72:a8:e1:73:7f:c6:ac:05:29:05:
02:f2:39:2a:d0:a6:d5:0e:43:69:f2:12:85:91:51:40:eb:38:
03:9e:eb:ad:48:55:01:56:11:ca:b3:02:3b:c7:91:de:8d:30:
01:12:10:2d:29:dc:b7:e2:8e:ab:6f:a6:e4:0b:69:04:b0:9c:
49:94:97:14:14:df:6b:3e:4d:e7:b2:9e:dd:50:52:02:4c:45:
22:17:e0:3d:e4:be:b9:ae:d9:b1:bf:2f:1a:64:a7:b3:40:b0:
dd:f1:23:c7:20:e3:d7:a1:70:da:7b:14:e5:3c:f6:e8:d7:dd:
2d:05:2e:05:48:01:55:61:15:a5:fa:64:e7:9a:bb:7a:48:d5:
1d:ad:9c:40:a7:a8:01:80:08:42:4c:5c:48:5a:f4:fa:60:96:
8f:cb:1a:ea:10:35:17:cb:94:cb:94:0a:25:c1:22:ab:84:e3:
6d:1f:ba:3f:79:2e:6b:34:cf:49:bf:91:2d:5a:df:fa:9f:5f:
cf:32:c7:18:45:c3:0e:b7:4a:fa:c3:b7:e7:65:c7:4d:4e:ea:
cb:bc:d0:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:32 2025 by rpki-client on console.sobornost.net