Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/cWsA0SrcUV6GsVeivKY0JYgFzDE.roa
File: cWsA0SrcUV6GsVeivKY0JYgFzDE.roa (raw, json)
Hash identifier: HfpwQNUpDt0f/eGcDUcgnAFnGyZkCNyOZxde7XxsRjc=
Subject key identifier: 71:6B:00:D1:2A:DC:51:5E:86:B1:57:A2:BC:A6:34:25:88:05:CC:31
Certificate issuer: /CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Certificate serial: 0194DF4E1F71FFE190494755D29AD377D8AE
Authority key identifier: 38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/cWsA0SrcUV6GsVeivKY0JYgFzDE.roa
Signing time: Fri 07 Feb 2025 07:27:06 +0000
ROA not before: Fri 07 Feb 2025 07:27:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 3343
IP address blocks: 86.110.118.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:df:4e:1f:71:ff:e1:90:49:47:55:d2:9a:d3:77:d8:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Validity
Not Before: Feb 7 07:27:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=716b00d12adc515e86b157a2bca634258805cc31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:4e:9f:4d:66:53:34:90:9f:66:50:9e:f0:8f:
b0:58:eb:50:9f:f9:39:8c:eb:ae:4d:88:17:4f:df:
5a:32:06:3c:db:98:f8:7f:71:ed:d9:0f:a0:97:ff:
1c:26:97:f6:ae:00:f8:0e:80:9a:3e:dc:a1:7f:ef:
c5:7e:c6:47:ff:e5:28:17:6d:5b:fb:34:6d:ad:2d:
5b:19:1e:80:94:8d:b4:9c:33:b7:b8:90:56:d2:97:
3a:8f:bd:68:fc:e5:16:0d:f2:5d:a9:8a:3f:ec:ce:
23:f6:47:54:3a:65:fd:70:62:13:36:4a:ce:25:3e:
48:e0:8e:48:f1:06:e4:3f:25:3c:af:a1:b4:1d:58:
2a:36:14:4a:f9:03:88:30:d6:08:c0:86:17:db:98:
c9:93:c5:7f:44:78:49:ef:a7:ae:3c:30:d0:83:77:
52:8b:97:f8:22:7e:db:a0:9a:64:24:b0:c9:b3:45:
0f:22:81:9b:2e:86:aa:4d:10:23:f8:cc:04:a4:16:
3e:df:ed:40:53:c6:e7:3d:83:6b:7e:bf:3f:37:c5:
f0:d2:fc:43:9b:85:3e:50:47:9a:33:12:26:43:72:
04:7d:32:4b:b6:27:9f:f7:1c:11:22:34:65:83:e0:
34:b5:28:0d:ce:17:5e:21:56:59:6e:b5:71:1a:54:
1e:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:6B:00:D1:2A:DC:51:5E:86:B1:57:A2:BC:A6:34:25:88:05:CC:31
X509v3 Authority Key Identifier:
keyid:38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/cWsA0SrcUV6GsVeivKY0JYgFzDE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/OLIgI7bq1MKWg6n-1Ek9A97ixoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.110.118.0/24
Signature Algorithm: sha256WithRSAEncryption
18:ee:99:24:d9:db:01:da:11:06:28:32:16:e8:a3:63:cf:fc:
d5:dd:f2:56:5c:d6:1b:d2:c2:33:2b:29:ba:7b:03:db:fb:15:
de:76:3a:93:6e:3a:c1:40:de:96:1e:47:44:8d:85:d2:78:7d:
9f:f8:10:be:ff:57:6d:da:e8:6f:c8:a2:7a:08:d6:31:29:3f:
90:bd:52:c6:31:01:7a:89:cb:a5:a8:94:ee:51:e3:29:7b:a0:
ac:82:78:a5:78:1d:f3:9d:c2:07:cb:67:e1:5a:53:9a:3b:80:
bd:46:f0:bb:72:ea:aa:8a:3a:a6:27:d2:b7:c3:dd:90:38:38:
40:42:ce:89:a4:49:3c:0d:97:75:88:57:c0:98:6e:b4:8b:b8:
a1:8c:29:68:23:e5:0f:b3:0c:5e:6f:8b:53:95:ff:4b:56:d6:
00:b4:2b:8d:50:2c:8a:c0:5f:e3:d5:bd:03:de:d3:67:dc:06:
22:24:72:c7:aa:6a:2d:e9:56:0e:11:0e:88:dd:06:da:a6:5f:
6f:e4:e5:4f:0b:fa:8c:ad:93:07:da:00:9f:03:13:27:7d:10:
19:de:52:86:07:30:96:6d:9d:31:5f:7a:ae:c2:df:cb:d8:16:
36:86:fa:ea:70:36:f6:bf:be:b5:d6:b9:c2:68:c4:7a:3b:46:
de:d6:ff:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 8 04:53:59 2025 by rpki-client on console.sobornost.net