Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/VWtmM9SzQVmV3mXZiFcFCLluW_w.roa
File: VWtmM9SzQVmV3mXZiFcFCLluW_w.roa (raw, json)
Hash identifier: ZtCB7wSsr5CBM3YasI0BGOGUXiFCrzRkee/FMnQ1LM4=
Subject key identifier: 55:6B:66:33:D4:B3:41:59:95:DE:65:D9:88:57:05:08:B9:6E:5B:FC
Certificate issuer: /CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Certificate serial: 019421B2522012EE732030C654D09F1E842D
Authority key identifier: 38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/VWtmM9SzQVmV3mXZiFcFCLluW_w.roa
Signing time: Wed 01 Jan 2025 11:48:41 +0000
ROA not before: Wed 01 Jan 2025 11:48:41 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 3343
IP address blocks: 86.110.118.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b2:52:20:12:ee:73:20:30:c6:54:d0:9f:1e:84:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Validity
Not Before: Jan 1 11:48:41 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=556b6633d4b3415995de65d988570508b96e5bfc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:5f:7d:ab:7e:26:05:2e:cf:27:5c:fd:6c:c5:
8c:7a:62:65:72:d3:41:b3:f0:7c:a0:98:35:40:8c:
e3:ad:94:28:80:ee:64:7e:25:f9:c9:13:97:06:4e:
d0:8d:d5:7c:21:63:fc:7a:7f:f5:c3:f0:e0:1f:15:
f4:d9:a7:a3:7f:0f:58:66:fb:c5:05:58:62:c7:57:
a4:b1:98:f2:39:12:ed:2f:03:40:d4:c1:60:4b:ad:
3f:ca:5a:90:a0:bf:71:f8:9c:b8:a6:3c:b4:80:db:
3c:ae:c6:28:c7:35:0c:d9:ee:16:ee:5e:6c:9e:d0:
4c:32:6d:f3:37:d8:ec:c0:f0:f8:df:5a:bc:cd:46:
e1:da:7d:a0:03:10:b2:ec:19:fe:58:c2:f3:a0:78:
4e:a8:ec:90:72:1c:24:d8:7c:19:8c:1a:26:79:3c:
d1:f3:a4:be:80:78:a5:b0:b5:f1:48:1f:be:49:e8:
01:be:45:09:7b:38:65:a9:08:89:a3:0f:cf:1d:a2:
bb:67:c3:a6:9d:1f:a1:9b:cd:16:60:e1:4b:11:19:
40:a9:c6:31:24:62:4f:53:74:02:2f:ed:fd:36:aa:
79:1b:9a:ea:7a:4b:93:79:a0:eb:a2:f8:84:bb:b9:
06:1f:81:81:21:7f:4f:f8:ce:22:c0:a6:e5:0c:c6:
70:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:6B:66:33:D4:B3:41:59:95:DE:65:D9:88:57:05:08:B9:6E:5B:FC
X509v3 Authority Key Identifier:
keyid:38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/VWtmM9SzQVmV3mXZiFcFCLluW_w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/OLIgI7bq1MKWg6n-1Ek9A97ixoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.110.118.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:96:a3:a2:9f:73:ff:6b:c7:20:9e:4e:af:9d:7b:33:77:2c:
98:3d:3a:40:08:c8:7d:83:9e:f2:9b:30:97:b0:69:a4:c3:ee:
b4:80:c0:84:47:06:25:98:30:a2:3a:71:57:c6:40:13:88:05:
94:58:01:ad:36:db:93:a2:9c:de:44:00:46:2f:06:b3:45:0b:
7e:39:30:11:d3:8d:24:0e:4d:45:5a:55:4f:f9:a0:7a:1a:61:
b1:61:61:83:60:7f:77:82:44:f8:ec:52:38:ab:02:f0:9f:ef:
f8:5d:fd:29:fd:6f:46:e6:92:5c:58:2f:ff:f4:94:19:3a:28:
7c:2e:31:c2:83:b7:62:bd:0e:a7:ca:11:7c:39:16:93:93:31:
1e:0d:47:a2:90:9b:b9:65:e3:6f:d8:c2:14:38:ba:50:e7:19:
6d:aa:3d:8e:85:73:96:98:cb:2e:61:7a:82:4b:80:df:e0:7d:
ec:cf:a1:6f:8e:22:9e:21:61:43:5f:65:d1:00:74:a3:e6:62:
87:29:e5:2a:a7:76:2c:f3:88:d4:79:38:2a:b1:ce:97:dd:9a:
f0:94:f0:76:26:5e:f4:40:4a:2d:c5:3d:ce:54:98:da:fc:21:
88:3c:e5:78:e5:b4:62:32:e8:ca:9d:7b:f1:aa:c0:53:f8:22:
f3:f8:c6:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 23 19:15:57 2025 by rpki-client on console.sobornost.net