Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/973431-5ae4-4521-9454-c8eb08ce9089/1/gW5vsz1XHWHAiEv2XrHiZAPT2LM.roa
File: gW5vsz1XHWHAiEv2XrHiZAPT2LM.roa (raw, json)
Hash identifier: /LPDMtSPu0KMCf6GqHsTiZ0o1jWTrz0r+OipJeljVUk=
Subject key identifier: 81:6E:6F:B3:3D:57:1D:61:C0:88:4B:F6:5E:B1:E2:64:03:D3:D8:B3
Certificate issuer: /CN=be37c70f1c67eca1775a709c9235d6a2f55516b8
Certificate serial: 01942521550C11B4306BFFEB1AC3CBCCDCD9
Authority key identifier: BE:37:C7:0F:1C:67:EC:A1:77:5A:70:9C:92:35:D6:A2:F5:55:16:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vjfHDxxn7KF3WnCckjXWovVVFrg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/973431-5ae4-4521-9454-c8eb08ce9089/1/gW5vsz1XHWHAiEv2XrHiZAPT2LM.roa
Signing time: Thu 02 Jan 2025 03:48:48 +0000
ROA not before: Thu 02 Jan 2025 03:48:48 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 200806
IP address blocks: 185.95.116.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:55:0c:11:b4:30:6b:ff:eb:1a:c3:cb:cc:dc:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be37c70f1c67eca1775a709c9235d6a2f55516b8
Validity
Not Before: Jan 2 03:48:48 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=816e6fb33d571d61c0884bf65eb1e26403d3d8b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:ab:a2:9e:34:f0:cc:14:a3:e5:cd:a2:1b:3f:
6e:bb:ea:37:bd:0a:98:b8:b8:e3:e2:b2:d5:67:8a:
d5:d7:94:3d:69:66:13:61:43:a2:8f:94:46:ff:41:
d9:9d:12:16:26:1c:33:31:b8:69:e8:13:45:a7:d6:
9e:f5:d2:45:44:b5:de:f7:82:ff:e8:ea:18:9c:f2:
cf:88:0f:14:ff:1b:e8:7d:10:f3:78:50:11:ef:05:
eb:5a:9a:25:a1:e7:79:5b:c1:d6:df:7f:3d:87:85:
8b:80:a1:57:08:14:5e:ed:d6:dc:05:6b:b9:c7:7c:
a7:42:c4:73:66:9a:23:46:0b:fd:e6:1e:fd:7f:39:
f3:91:06:9b:48:e2:46:6b:28:0d:ff:75:ec:09:d6:
83:45:5f:f9:44:4e:56:d5:ed:07:e1:9d:3d:03:cb:
15:89:52:48:32:f1:3e:44:66:06:53:a8:a4:e0:81:
fa:7a:d0:8d:03:5f:bb:46:69:ba:de:20:e0:8b:46:
2d:cc:67:4d:ed:a3:96:67:89:fe:3b:ba:b9:e1:87:
58:dd:90:22:6e:3d:ad:63:6a:71:8d:17:b8:67:96:
9f:ad:1e:0f:1c:ed:31:3f:a5:fc:86:b8:39:48:bb:
e5:ed:f3:39:5d:84:56:58:27:e0:74:ad:39:6f:20:
f7:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:6E:6F:B3:3D:57:1D:61:C0:88:4B:F6:5E:B1:E2:64:03:D3:D8:B3
X509v3 Authority Key Identifier:
keyid:BE:37:C7:0F:1C:67:EC:A1:77:5A:70:9C:92:35:D6:A2:F5:55:16:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vjfHDxxn7KF3WnCckjXWovVVFrg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/973431-5ae4-4521-9454-c8eb08ce9089/1/gW5vsz1XHWHAiEv2XrHiZAPT2LM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/973431-5ae4-4521-9454-c8eb08ce9089/1/vjfHDxxn7KF3WnCckjXWovVVFrg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.95.116.0/23
Signature Algorithm: sha256WithRSAEncryption
26:61:1c:20:55:55:bd:ea:4f:af:23:ea:80:5f:d2:16:6a:cb:
16:c2:6f:7c:5c:f0:84:8e:20:e8:f9:64:33:a4:ba:ea:58:4d:
ae:ed:84:e2:63:fc:99:05:07:b3:db:14:84:1a:33:a6:cf:df:
87:f6:bd:39:9f:e9:f5:ab:2a:6f:2e:55:1a:f8:47:eb:71:63:
f2:48:0a:7b:6d:92:ac:e8:51:f9:4d:27:d2:b1:c2:48:43:e1:
e3:8f:07:0b:68:5f:bb:c8:70:dd:d8:7c:b1:dd:8e:8c:e6:a8:
8f:b8:b2:65:1a:5e:53:5c:ba:9e:98:f0:2e:80:5f:e6:d8:64:
08:0f:b9:42:0d:cb:71:7c:42:99:3b:5c:56:d1:d5:e7:ae:f3:
78:ab:b3:44:e8:7c:0d:bf:0b:9a:d2:c8:0f:b8:4c:d9:b3:d7:
c8:63:0c:08:72:4f:98:4c:19:9c:45:ed:72:f8:38:19:52:9d:
09:33:52:b1:ff:a8:af:40:d2:9e:42:81:52:e6:57:9e:ac:77:
5c:dc:01:ca:8d:ad:bf:07:b0:75:28:a6:a7:7c:ef:52:40:0d:
75:31:44:f1:95:c1:4e:f1:26:28:15:d2:9c:a6:56:27:32:b1:
f5:1c:11:43:1f:d8:74:fc:b5:11:f7:0c:20:03:01:bc:8c:f6:
a1:4b:1a:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:31 2025 by rpki-client on console.sobornost.net