Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/22d20e-0bd6-49fb-b9c3-e20d707c00fb/1/d97Ch2oOF5rboQAm4Ny7S68pdDs.roa
File: d97Ch2oOF5rboQAm4Ny7S68pdDs.roa (raw, json)
Hash identifier: GTey3KF1CvpIvjeJCgqABtZ3XGUGtGoEyAaxaxLHaVc=
Subject key identifier: 77:DE:C2:87:6A:0E:17:9A:DB:A1:00:26:E0:DC:BB:4B:AF:29:74:3B
Certificate issuer: /CN=d5a89094e12e54dd901e32d33ce5131e046ee70c
Certificate serial: 0194221FA11C99E3CDED6AD980B8D04845D9
Authority key identifier: D5:A8:90:94:E1:2E:54:DD:90:1E:32:D3:3C:E5:13:1E:04:6E:E7:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1aiQlOEuVN2QHjLTPOUTHgRu5ww.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/22d20e-0bd6-49fb-b9c3-e20d707c00fb/1/d97Ch2oOF5rboQAm4Ny7S68pdDs.roa
Signing time: Wed 01 Jan 2025 13:48:05 +0000
ROA not before: Wed 01 Jan 2025 13:48:05 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 61363
IP address blocks: 176.119.216.0/24 maxlen: 24
194.11.203.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:a1:1c:99:e3:cd:ed:6a:d9:80:b8:d0:48:45:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5a89094e12e54dd901e32d33ce5131e046ee70c
Validity
Not Before: Jan 1 13:48:05 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=77dec2876a0e179adba10026e0dcbb4baf29743b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:93:29:53:30:a1:76:ae:93:d3:7c:2d:0b:4f:
1f:45:10:17:f7:88:57:ac:f5:8e:ab:83:bc:1f:b7:
37:10:90:58:2a:56:3f:8d:ff:e2:19:dd:9b:d0:fe:
61:56:b5:ed:df:d4:3b:23:78:b0:fe:6e:c4:01:a3:
78:10:44:f6:08:2f:ff:48:5c:34:3b:00:9f:f3:c0:
1c:19:79:81:69:05:bf:e2:76:63:7a:27:74:ae:5f:
c6:0d:99:34:d1:cc:fd:f4:2a:c5:6c:7c:52:ed:47:
1c:32:3b:57:71:50:93:f1:2b:01:ad:95:86:e7:38:
95:c7:44:69:92:4a:d5:45:e9:9b:69:7f:f9:fc:c3:
ea:da:56:84:72:cf:6d:f2:87:58:79:b5:5b:de:2a:
2d:8b:3e:f2:5e:0f:0d:a3:24:0a:c5:69:33:d3:f4:
1b:37:7e:cc:e7:ac:86:34:74:70:aa:71:68:78:0f:
b0:74:ae:73:52:de:f3:a7:fa:f6:59:cd:73:30:b8:
85:35:dd:b5:88:90:c5:af:a8:a8:d9:00:77:3a:22:
5c:78:c7:3c:4e:16:74:32:a6:09:56:09:f3:11:5b:
31:05:3d:02:c4:a8:22:20:88:84:18:77:dd:8d:9c:
f6:63:a4:60:35:69:5b:4f:29:ed:55:d3:4e:2e:c3:
ae:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:DE:C2:87:6A:0E:17:9A:DB:A1:00:26:E0:DC:BB:4B:AF:29:74:3B
X509v3 Authority Key Identifier:
keyid:D5:A8:90:94:E1:2E:54:DD:90:1E:32:D3:3C:E5:13:1E:04:6E:E7:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1aiQlOEuVN2QHjLTPOUTHgRu5ww.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/22d20e-0bd6-49fb-b9c3-e20d707c00fb/1/d97Ch2oOF5rboQAm4Ny7S68pdDs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/22d20e-0bd6-49fb-b9c3-e20d707c00fb/1/1aiQlOEuVN2QHjLTPOUTHgRu5ww.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.119.216.0/24
194.11.203.0/24
Signature Algorithm: sha256WithRSAEncryption
30:e2:08:3a:52:fa:ab:9d:56:30:9b:06:8d:2a:13:1d:eb:41:
0a:f6:a3:7c:64:cf:26:82:0a:8f:fc:19:bc:24:9d:cb:32:3f:
a8:55:1e:9f:c3:72:8f:e8:f9:c9:76:83:44:2f:f2:cc:62:08:
25:80:d7:91:a2:82:a7:88:9d:6c:7c:db:3c:c5:c9:8f:20:1c:
b5:8c:7d:ed:3e:4b:74:e2:3e:c7:b4:cf:ac:d9:dc:d4:44:30:
11:47:7d:0d:a9:04:e0:0f:5a:ac:50:98:50:be:c8:ef:dc:bf:
d6:92:4d:a8:3f:e1:ce:4f:e4:86:a0:4a:93:c9:04:06:72:79:
b4:a4:06:f0:9f:56:7d:91:15:70:e7:6a:5e:b0:21:48:0e:aa:
34:88:8c:50:95:75:38:4e:4b:6c:d3:d0:6f:b2:4b:61:3e:a6:
07:3d:8a:36:af:90:96:d1:27:a3:bb:c5:de:da:13:24:f4:97:
96:95:34:96:b5:b5:a2:a6:51:2d:92:91:b2:49:67:54:26:56:
4a:99:d9:36:88:d4:76:e2:97:75:26:f6:e1:c8:05:7f:ff:03:
cd:1f:ec:82:84:08:fc:bc:55:fc:0f:d8:d0:54:af:36:fe:ce:
80:1c:ca:ac:b8:2f:01:34:0e:0d:58:24:f4:42:ce:07:20:ab:
3a:22:4b:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:26 2025 by rpki-client on console.sobornost.net