Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/760c0f-12ab-483d-8cdb-57e1d5b72b2d/1/VrYsvXiCDPnj40E2Yaxc1ZuyCs4.roa
File: VrYsvXiCDPnj40E2Yaxc1ZuyCs4.roa (raw, json)
Hash identifier: bW2MMX9UsQfvfk+kfYlnSI5Q8jrUxC2hBN7648mrq4E=
Subject key identifier: 56:B6:2C:BD:78:82:0C:F9:E3:E3:41:36:61:AC:5C:D5:9B:B2:0A:CE
Certificate issuer: /CN=5d88e4f7a302412c316a3bb599cdd2042b5ff485
Certificate serial: 019424B3ADA65BF6FA2B063174DED8211027
Authority key identifier: 5D:88:E4:F7:A3:02:41:2C:31:6A:3B:B5:99:CD:D2:04:2B:5F:F4:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XYjk96MCQSwxaju1mc3SBCtf9IU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/760c0f-12ab-483d-8cdb-57e1d5b72b2d/1/VrYsvXiCDPnj40E2Yaxc1ZuyCs4.roa
Signing time: Thu 02 Jan 2025 01:49:02 +0000
ROA not before: Thu 02 Jan 2025 01:49:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 204266
IP address blocks: 37.209.174.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:ad:a6:5b:f6:fa:2b:06:31:74:de:d8:21:10:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d88e4f7a302412c316a3bb599cdd2042b5ff485
Validity
Not Before: Jan 2 01:49:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=56b62cbd78820cf9e3e3413661ac5cd59bb20ace
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:fa:d0:68:94:1d:a4:40:9e:25:67:71:75:99:
30:ab:7e:6f:46:bc:83:31:e2:07:74:ea:4c:a0:97:
26:54:aa:05:2f:f1:ec:2d:9c:12:11:1a:da:a2:10:
e2:3b:b9:77:01:43:78:24:95:0e:6e:a3:11:0b:8f:
2d:50:50:84:b0:4e:5a:0b:8c:a5:d4:91:7b:75:5b:
46:6b:57:ad:09:4f:4b:c7:8c:21:d6:74:39:bc:b2:
9f:0f:4b:43:c5:e2:11:9e:2c:7a:0f:29:3f:56:81:
36:8a:31:db:af:40:a8:e3:1c:e2:d0:63:c8:da:1f:
80:4e:0d:89:f4:d4:99:e8:94:ea:51:a7:5e:9e:28:
87:f6:d2:fd:3f:01:1d:94:6b:98:f9:37:16:ae:09:
af:6c:3f:f3:d1:c7:d2:51:81:77:66:eb:a3:b4:ac:
2c:88:33:48:cc:98:d0:42:13:f7:9a:4b:58:2f:10:
ee:85:50:1b:66:7e:ba:f3:6a:59:62:a8:96:78:18:
35:43:92:45:d5:d2:62:6d:51:6d:e2:a1:84:29:e6:
38:26:46:76:bc:56:b1:95:b6:e8:07:5b:b8:12:f8:
43:20:dc:57:5e:c2:51:49:00:85:63:e8:90:79:cc:
d5:95:e8:e8:1f:a2:cc:80:09:32:92:07:4b:74:da:
87:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:B6:2C:BD:78:82:0C:F9:E3:E3:41:36:61:AC:5C:D5:9B:B2:0A:CE
X509v3 Authority Key Identifier:
keyid:5D:88:E4:F7:A3:02:41:2C:31:6A:3B:B5:99:CD:D2:04:2B:5F:F4:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYjk96MCQSwxaju1mc3SBCtf9IU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/760c0f-12ab-483d-8cdb-57e1d5b72b2d/1/VrYsvXiCDPnj40E2Yaxc1ZuyCs4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/760c0f-12ab-483d-8cdb-57e1d5b72b2d/1/XYjk96MCQSwxaju1mc3SBCtf9IU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.209.174.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:60:c9:1f:6d:9f:f4:4b:8d:33:ff:5d:c1:b0:64:88:1e:cd:
48:23:45:c5:06:0c:a1:20:c2:48:5d:a8:2d:a1:02:66:99:1d:
95:a4:c7:64:73:38:65:fe:74:6c:c6:ea:c8:32:cb:aa:c1:c1:
dd:34:4e:5e:db:02:de:87:3a:8c:6e:cb:5f:8b:40:d3:ef:71:
cc:e0:c9:e0:cd:94:3a:d6:59:03:9a:94:d6:c9:5a:5a:af:ba:
df:31:8a:c8:1f:4f:a3:cc:d8:11:94:a9:b1:5f:44:67:fe:53:
00:ac:b9:de:29:b6:a7:fa:1e:e4:af:b5:32:b4:8d:d3:82:45:
fe:a4:71:d0:5b:e2:a6:14:6e:34:4b:5b:c6:73:36:98:ce:32:
2e:a2:e4:57:46:ad:c8:db:25:e7:9f:8b:1d:44:78:c1:86:33:
95:fd:22:05:76:48:4c:aa:ad:0b:e6:0a:68:2d:1c:38:54:97:
12:3c:e1:f6:d7:22:a1:42:d3:26:c0:14:3e:b1:85:8a:72:c4:
da:f5:48:8a:8e:83:d6:88:c6:ec:01:6c:66:ff:37:dd:50:2d:
fc:ad:bf:11:26:b5:d1:f9:b6:4b:82:f6:de:65:59:7d:fb:be:
e3:5b:19:d3:b1:f3:6b:00:78:59:57:c8:05:53:74:09:d3:7c:
44:95:ac:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:31 2025 by rpki-client on console.sobornost.net