Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/77e92a-eae1-48c0-8d9c-6fc4cdcb3f17/1/OEIiPrXdFUp5YXOck7o4s4rBGO0.roa
File: OEIiPrXdFUp5YXOck7o4s4rBGO0.roa (raw, json)
Hash identifier: zsHFam+CXLhObsumxLE2+jbhXix4p0SFjtst5VLxGeE=
Subject key identifier: 38:42:22:3E:B5:DD:15:4A:79:61:73:9C:93:BA:38:B3:8A:C1:18:ED
Certificate issuer: /CN=55b9cdf8b7e53efcd9799b11e740f555fd53f4c6
Certificate serial: 0194228E02E8448E638E5F018F91C47A8FC4
Authority key identifier: 55:B9:CD:F8:B7:E5:3E:FC:D9:79:9B:11:E7:40:F5:55:FD:53:F4:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VbnN-LflPvzZeZsR50D1Vf1T9MY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/77e92a-eae1-48c0-8d9c-6fc4cdcb3f17/1/OEIiPrXdFUp5YXOck7o4s4rBGO0.roa
Signing time: Wed 01 Jan 2025 15:48:39 +0000
ROA not before: Wed 01 Jan 2025 15:48:39 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 209106
IP address blocks: 5.182.96.0/22 maxlen: 22
194.246.74.0/24 maxlen: 24
2a0e:1400::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8e:02:e8:44:8e:63:8e:5f:01:8f:91:c4:7a:8f:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=55b9cdf8b7e53efcd9799b11e740f555fd53f4c6
Validity
Not Before: Jan 1 15:48:39 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3842223eb5dd154a7961739c93ba38b38ac118ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:b6:91:fd:f2:a4:55:c4:66:7c:ed:18:55:70:
0a:82:c4:81:07:e3:01:92:e6:da:af:a2:c2:d3:bb:
5a:21:4d:ad:1a:6a:dd:d1:51:ca:88:49:75:7f:3a:
84:ab:39:41:48:73:a6:ad:08:16:17:16:4b:65:cc:
80:ce:14:8c:7b:bb:77:70:cb:f9:b8:71:a0:2f:a4:
ed:6c:44:e5:19:7c:18:9f:b7:58:12:1d:91:af:93:
cf:f3:77:2b:87:a6:a4:5f:88:45:c8:fc:29:48:7a:
a3:55:2e:31:1c:c2:cb:c7:3c:fb:85:6a:33:8c:85:
9b:c5:52:f2:b8:59:51:30:b8:9d:e9:8b:3c:4a:bd:
d4:3d:a5:62:c0:bf:cd:06:e4:c9:71:40:b6:2c:f7:
45:0f:f6:ff:5d:2c:82:d9:2d:63:7c:8c:80:a7:7a:
7b:c4:82:fd:1f:ca:3a:e3:af:d3:e9:7a:7c:34:21:
54:5e:70:c7:dc:c9:fb:77:b8:1d:26:ff:dc:2e:58:
87:16:06:d4:db:f6:52:b6:d9:e1:e5:e4:a9:26:21:
a7:60:b0:59:a5:a1:e0:2b:bd:43:49:9f:eb:e6:b1:
bc:29:30:ed:c8:59:fe:ed:24:71:c6:91:60:2b:30:
64:df:25:1b:3f:6b:fa:99:15:2e:bc:5a:c6:a2:6c:
fc:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:42:22:3E:B5:DD:15:4A:79:61:73:9C:93:BA:38:B3:8A:C1:18:ED
X509v3 Authority Key Identifier:
keyid:55:B9:CD:F8:B7:E5:3E:FC:D9:79:9B:11:E7:40:F5:55:FD:53:F4:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VbnN-LflPvzZeZsR50D1Vf1T9MY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/77e92a-eae1-48c0-8d9c-6fc4cdcb3f17/1/OEIiPrXdFUp5YXOck7o4s4rBGO0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/77e92a-eae1-48c0-8d9c-6fc4cdcb3f17/1/VbnN-LflPvzZeZsR50D1Vf1T9MY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.96.0/22
194.246.74.0/24
IPv6:
2a0e:1400::/29
Signature Algorithm: sha256WithRSAEncryption
44:00:e1:cb:64:10:eb:cd:5d:72:af:c6:8f:28:fe:6f:bd:b6:
b4:bf:66:0f:f3:44:72:9b:bd:b6:86:19:56:8d:67:bc:d7:49:
9d:38:93:37:6f:48:b2:91:88:d8:b4:90:d1:7a:90:ab:42:6c:
dd:e0:ce:97:7b:ad:7a:dd:83:46:e0:d0:4d:18:1f:0c:89:c6:
59:70:0f:15:f2:69:bf:99:54:bb:9a:4f:cd:99:58:c8:c7:4c:
7d:8b:95:05:cd:72:cd:df:58:f8:63:c4:55:a8:6c:d5:30:79:
ce:0b:c1:d6:b2:76:6c:b8:ef:24:16:27:31:3c:78:19:fa:f8:
aa:56:85:a7:ed:16:06:af:64:2d:83:0a:7c:d7:18:c1:c3:bc:
bc:28:11:b2:61:fc:ed:7b:8b:a8:80:3a:79:2d:87:c7:2e:eb:
ab:1f:75:c3:f3:42:be:1f:cb:c9:3c:a8:8f:1f:f7:9d:32:bb:
30:1b:07:85:26:b8:38:ee:0c:27:b5:c8:a8:4c:10:d1:07:4a:
99:e2:f0:cc:97:5b:da:e1:0c:00:13:c6:fa:5e:f0:d3:c8:48:
ab:48:d9:2f:64:67:33:e9:1c:e7:e5:2c:dd:3a:ad:41:22:0d:
2e:2f:4a:44:3b:93:9a:a5:ed:10:0c:30:8d:f6:86:18:93:2a:
87:66:dd:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:24 2025 by rpki-client on console.sobornost.net