Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/22e49d-6953-4fc8-a896-c5c358837a84/1/9Ddwg04k-x748SWw8ZAq8FwjEC0.roa
File: 9Ddwg04k-x748SWw8ZAq8FwjEC0.roa (raw, json)
Hash identifier: hAsF5Dd97oXArWDCgchVp4XLtAVACH5ddk2EH9+qQDM=
Subject key identifier: F4:37:70:83:4E:24:FB:1E:F8:F1:25:B0:F1:90:2A:F0:5C:23:10:2D
Certificate issuer: /CN=c9cd38d1d1c4a23053cd997163318d649a7b2a57
Certificate serial: 0194221FBF2BE6D33631569586AD1794B71A
Authority key identifier: C9:CD:38:D1:D1:C4:A2:30:53:CD:99:71:63:31:8D:64:9A:7B:2A:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yc040dHEojBTzZlxYzGNZJp7Klc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/22e49d-6953-4fc8-a896-c5c358837a84/1/9Ddwg04k-x748SWw8ZAq8FwjEC0.roa
Signing time: Wed 01 Jan 2025 13:48:13 +0000
ROA not before: Wed 01 Jan 2025 13:48:13 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 205660
IP address blocks: 185.39.253.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:bf:2b:e6:d3:36:31:56:95:86:ad:17:94:b7:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9cd38d1d1c4a23053cd997163318d649a7b2a57
Validity
Not Before: Jan 1 13:48:13 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f43770834e24fb1ef8f125b0f1902af05c23102d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:10:4b:d9:85:cb:63:47:84:9d:ea:36:71:6d:
12:02:e6:83:f8:aa:2e:bd:10:87:8b:cc:ab:c3:a9:
01:e3:28:8c:49:d2:77:91:2e:21:56:50:87:2b:40:
e9:76:19:30:29:bd:2e:67:81:57:f9:9a:2b:5e:4b:
b0:b4:4f:c2:bf:c4:a2:30:52:ac:63:af:79:45:45:
cc:89:0b:ed:2a:64:ce:7d:fa:45:09:79:05:99:b8:
2b:d0:f2:2d:01:cd:da:b1:07:5b:82:3f:26:b8:7f:
e1:a5:b5:72:d9:4c:68:5d:eb:04:54:c9:ed:a8:0d:
14:83:1c:e4:07:f5:02:d1:e8:0a:14:a4:e6:94:3e:
47:db:f1:e1:16:fd:39:02:b6:91:aa:43:a4:78:ca:
49:0d:0a:29:7c:02:90:4f:93:31:41:96:55:55:54:
6c:c4:ad:12:b7:9f:19:68:74:52:ac:dc:93:9b:a6:
62:16:a0:3d:f2:df:f6:94:16:e6:2f:04:e5:78:49:
bf:88:f8:1f:21:e2:df:1b:7e:a0:79:78:a0:3b:82:
2e:d5:8b:4d:61:c1:e9:0c:e6:2b:51:42:a8:16:55:
b0:6e:f7:2f:04:6a:63:48:a5:81:82:65:33:9d:aa:
d1:4b:d4:50:e4:6b:ca:8d:53:96:f2:ee:90:d6:2e:
85:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:37:70:83:4E:24:FB:1E:F8:F1:25:B0:F1:90:2A:F0:5C:23:10:2D
X509v3 Authority Key Identifier:
keyid:C9:CD:38:D1:D1:C4:A2:30:53:CD:99:71:63:31:8D:64:9A:7B:2A:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yc040dHEojBTzZlxYzGNZJp7Klc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/22e49d-6953-4fc8-a896-c5c358837a84/1/9Ddwg04k-x748SWw8ZAq8FwjEC0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/22e49d-6953-4fc8-a896-c5c358837a84/1/yc040dHEojBTzZlxYzGNZJp7Klc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.39.253.0/24
Signature Algorithm: sha256WithRSAEncryption
06:3a:1c:9e:fa:6a:52:70:36:22:2c:10:ce:ef:82:9d:8f:03:
98:51:ff:52:05:d9:8e:29:72:c2:38:cc:a6:f4:51:73:bf:32:
04:5a:26:81:10:f2:57:d4:f0:87:f5:d6:32:9d:28:bc:99:f9:
09:47:02:13:d8:cd:1c:3f:73:5a:17:be:47:bc:3d:43:39:0a:
3c:ce:f7:94:61:32:c6:ac:ce:b9:8e:cd:98:6e:27:26:89:a1:
11:d9:0a:20:01:f8:fc:50:92:27:ac:eb:99:01:a2:17:47:41:
6e:ab:43:65:73:4a:77:a9:f2:f6:09:b9:05:06:d8:49:d8:c6:
2b:7f:ce:71:9f:e4:77:39:da:d6:ac:29:7a:51:2f:a5:14:1f:
f7:73:6d:28:00:04:4b:fe:f2:2d:31:6e:6f:59:2f:05:30:7a:
41:9d:7d:b0:f6:09:24:e7:e9:21:14:72:95:ef:0e:da:fc:6f:
05:34:2a:66:ff:ee:29:fb:3f:a1:86:cb:12:75:e5:a4:6f:55:
df:20:31:c9:d2:49:72:ce:6c:f8:55:fa:d3:0c:7c:e0:f2:f4:
1a:c9:74:e3:b9:9b:26:96:77:9a:ee:94:3a:cb:a8:8a:58:24:
c1:1f:2e:6d:1a:2a:14:ba:08:6b:e8:a4:ca:c8:aa:ec:b2:ed:
39:ab:0c:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:27 2025 by rpki-client on console.sobornost.net