Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/VxVmfXdZwW-6OJphy_YOQdN0r-A.roa
File: VxVmfXdZwW-6OJphy_YOQdN0r-A.roa (raw, json)
Hash identifier: en9ckXnB3cUJH506Btm1iT2oo4J6vWTx4tsrEz9WC5s=
Subject key identifier: 57:15:66:7D:77:59:C1:6F:BA:38:9A:61:CB:F6:0E:41:D3:74:AF:E0
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 0194258FB2AE0F8A96875F7603A5C26F85B3
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/VxVmfXdZwW-6OJphy_YOQdN0r-A.roa
Signing time: Thu 02 Jan 2025 05:49:21 +0000
ROA not before: Thu 02 Jan 2025 05:49:21 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 205733
IP address blocks: 176.105.229.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:b2:ae:0f:8a:96:87:5f:76:03:a5:c2:6f:85:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Jan 2 05:49:21 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5715667d7759c16fba389a61cbf60e41d374afe0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:4c:04:ad:03:23:f9:88:e6:f6:6a:ab:c7:1a:
45:59:5d:d6:2e:01:c2:04:e1:2b:8e:5b:e1:e2:63:
07:49:dd:e6:aa:82:1c:b7:01:f3:e9:b8:87:81:ed:
c4:df:76:e6:73:af:e3:fb:d9:36:39:18:34:62:47:
81:0c:dd:e1:d0:6d:f4:a2:1b:68:dd:87:2c:b8:8e:
5b:c2:0d:89:64:4e:1c:52:d6:97:cc:e9:9b:dc:f9:
66:51:72:5a:e1:22:9e:b9:02:54:f6:50:d9:c5:51:
60:57:cd:f8:fa:78:95:6b:f3:f4:99:3b:04:97:1f:
12:bd:58:fc:d8:9a:9f:b5:75:60:b3:18:c5:8a:80:
ab:1e:d1:ed:46:ca:4b:91:fd:f3:76:40:01:6c:26:
f2:64:f0:c9:2a:e9:5f:1c:00:b4:5f:fc:a1:1a:37:
db:1b:98:83:90:f9:67:fb:4c:ab:2a:c0:41:e8:89:
e0:ac:0e:17:5b:25:03:9f:13:86:a7:b9:ff:ab:96:
fb:a8:52:0d:ff:f1:1a:2e:c3:f1:7c:e4:e4:b5:01:
35:fe:99:75:ec:41:10:2a:78:f2:1f:19:a2:bf:ba:
b0:37:c0:d0:e1:fe:55:4a:b1:79:29:4d:e2:a9:76:
e5:74:8f:9e:7a:41:ff:46:b7:3b:0b:76:e1:c9:c8:
d8:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:15:66:7D:77:59:C1:6F:BA:38:9A:61:CB:F6:0E:41:D3:74:AF:E0
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/VxVmfXdZwW-6OJphy_YOQdN0r-A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.105.229.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:f7:0a:bc:e9:84:51:49:a3:29:3a:03:60:4c:5a:6f:4d:51:
83:a0:4b:99:ae:86:cd:6a:2a:22:07:58:91:c7:3c:a8:86:f2:
fd:56:92:c1:4b:ea:08:33:26:f7:56:88:36:b9:40:43:ac:05:
f7:c6:d4:b1:2e:87:57:d5:a0:ce:e7:01:2d:c1:e0:4f:39:08:
ec:9a:3b:38:c6:3c:d5:41:dc:24:90:36:35:19:06:76:72:a2:
22:18:b4:8f:f7:71:3f:0a:3e:dc:19:3e:9e:ab:38:4f:2b:45:
e7:d0:9b:3a:8f:57:c0:11:8d:32:b1:e7:35:8a:c5:e6:23:10:
b4:aa:83:cb:cb:cb:b7:7c:83:26:09:fd:7b:d0:d7:0d:1d:1d:
c0:f0:d8:59:19:c2:ff:96:c0:0f:13:d4:c5:48:29:3a:0f:c3:
46:6f:b0:fe:bf:a3:35:ba:12:b6:dd:7f:f5:d6:0b:6c:8f:b4:
44:51:36:a9:04:d9:c5:b0:7f:44:72:07:8b:08:e3:a7:bf:2e:
e3:f8:93:4d:77:fa:61:7c:5e:be:e9:31:cc:46:8d:36:63:04:
95:ef:17:f4:18:0d:c4:95:8f:4b:20:13:17:42:7e:f8:e3:c2:
2d:3d:67:4d:2f:8d:c8:d9:98:6e:f7:63:a5:2d:a3:d7:e1:de:
b9:1b:76:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 21 15:04:05 2025 by rpki-client on console.sobornost.net