Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/777eef-4d02-4d39-b1e4-1079d55aee91/1/ORMftoMd9do2ooK5ue-6TvmAIxQ.roa
File: ORMftoMd9do2ooK5ue-6TvmAIxQ.roa (raw, json)
Hash identifier: gRL2F0Qf83gqy3K3r8kmYdUB/bOzK/Peuq/Grv7jGIY=
Subject key identifier: 39:13:1F:B6:83:1D:F5:DA:36:A2:82:B9:B9:EF:BA:4E:F9:80:23:14
Certificate issuer: /CN=d58214cfa326611e9d494135a12ce8276f0f1784
Certificate serial: 019422FC14DEF6C48A635167AAABC82BAA4F
Authority key identifier: D5:82:14:CF:A3:26:61:1E:9D:49:41:35:A1:2C:E8:27:6F:0F:17:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1YIUz6MmYR6dSUE1oSzoJ28PF4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/777eef-4d02-4d39-b1e4-1079d55aee91/1/ORMftoMd9do2ooK5ue-6TvmAIxQ.roa
Signing time: Wed 01 Jan 2025 17:48:53 +0000
ROA not before: Wed 01 Jan 2025 17:48:53 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 216264
IP address blocks: 194.150.174.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fc:14:de:f6:c4:8a:63:51:67:aa:ab:c8:2b:aa:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d58214cfa326611e9d494135a12ce8276f0f1784
Validity
Not Before: Jan 1 17:48:53 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=39131fb6831df5da36a282b9b9efba4ef9802314
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:77:9a:34:77:5f:fa:69:67:04:99:57:bd:8c:
2c:00:b6:15:5e:9f:78:b1:74:b9:76:51:a7:92:74:
94:6b:ad:f3:fd:1a:ca:d7:77:2b:f2:b9:99:b3:3f:
5e:d4:27:dd:a1:90:97:ac:a1:f8:2f:0a:71:92:38:
c1:a3:58:3e:bb:7a:f7:0b:c6:79:da:34:40:35:4e:
c6:7f:dd:07:87:a2:c4:f6:1d:df:39:99:b9:00:0e:
12:ce:29:90:7e:65:50:a9:77:c1:b2:e7:44:21:71:
45:6c:d1:ca:4f:ad:78:99:ab:97:4f:29:af:6c:35:
03:b6:df:4d:46:6c:d8:d6:97:30:36:38:e6:3f:29:
ac:87:c2:e9:df:c8:a4:ba:51:d8:c4:97:93:3a:6a:
0c:60:d7:60:b8:8e:a1:3c:96:78:94:65:97:fc:41:
27:39:20:1d:a9:bc:40:ff:1c:35:97:63:51:78:8e:
a9:42:2a:54:71:82:56:a0:16:9c:27:74:49:3b:12:
db:cb:e7:48:f5:5d:d2:95:34:80:3f:d0:40:84:9b:
3a:8d:2d:7d:48:07:95:bb:bf:96:2e:6c:04:7e:fd:
71:16:46:97:8e:0a:4f:05:e4:51:a1:29:9a:cd:32:
2a:e3:ca:6a:46:0d:95:5a:58:11:83:33:11:2a:8e:
53:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:13:1F:B6:83:1D:F5:DA:36:A2:82:B9:B9:EF:BA:4E:F9:80:23:14
X509v3 Authority Key Identifier:
keyid:D5:82:14:CF:A3:26:61:1E:9D:49:41:35:A1:2C:E8:27:6F:0F:17:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1YIUz6MmYR6dSUE1oSzoJ28PF4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/777eef-4d02-4d39-b1e4-1079d55aee91/1/ORMftoMd9do2ooK5ue-6TvmAIxQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/777eef-4d02-4d39-b1e4-1079d55aee91/1/1YIUz6MmYR6dSUE1oSzoJ28PF4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.150.174.0/23
Signature Algorithm: sha256WithRSAEncryption
0b:ee:3e:a8:ec:bd:7d:35:62:63:67:57:bd:4b:2f:4e:e4:7b:
25:6f:5a:25:cc:49:52:01:1f:ce:a6:7d:1f:21:63:89:4f:1d:
06:65:83:e5:70:b0:74:ff:80:1e:31:7d:db:28:e4:07:26:cd:
66:c4:8c:37:54:15:c1:cc:b5:1d:3e:16:4c:6d:cf:37:80:0b:
9f:03:f3:4f:98:4a:06:80:0f:2f:af:0b:4f:6b:95:9d:3a:22:
62:ae:c9:2c:dd:53:7a:ec:63:a8:b3:98:57:a4:cc:2f:14:3b:
dd:88:cc:55:c1:b2:d4:a1:ab:aa:0d:75:60:b4:c0:43:e3:63:
bf:df:2b:6e:6f:fc:e7:b2:2e:eb:c7:95:83:80:38:cd:9a:de:
2a:c7:d6:5c:c0:d3:ae:2b:01:05:6b:30:13:f0:92:74:60:e9:
4f:09:0e:05:ba:e2:9e:a6:a0:63:07:dd:ea:77:56:2a:5b:40:
bc:ee:b5:fa:79:c0:d3:ba:a6:7e:e4:b6:6d:4d:bf:76:eb:a6:
14:8a:84:0c:c5:ca:0c:32:7c:ef:14:15:e3:d5:d5:c6:64:0a:
f3:b1:6a:e5:cf:4b:96:f4:1d:1d:6c:45:40:5d:d0:43:c6:1d:
a0:21:92:0b:3d:cb:1c:34:1a:7a:00:95:69:01:a8:76:f2:b1:
e8:39:bc:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:31 2025 by rpki-client on console.sobornost.net