Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/zSzL4yqiLtZZjGLtdY4oIXUossg.roa
File: zSzL4yqiLtZZjGLtdY4oIXUossg.roa (raw, json)
Hash identifier: +jR749UKy/cTH2uh8caNpitfppJCp33iqABh0VJuUOo=
Subject key identifier: CD:2C:CB:E3:2A:A2:2E:D6:59:8C:62:ED:75:8E:28:21:75:28:B2:C8
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 0194258FB11A981A4E069E4A120E8E079BC7
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/zSzL4yqiLtZZjGLtdY4oIXUossg.roa
Signing time: Thu 02 Jan 2025 05:49:21 +0000
ROA not before: Thu 02 Jan 2025 05:49:21 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 202673
IP address blocks: 176.105.230.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:b1:1a:98:1a:4e:06:9e:4a:12:0e:8e:07:9b:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Jan 2 05:49:21 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=cd2ccbe32aa22ed6598c62ed758e28217528b2c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:18:f6:43:4e:d7:fc:98:4b:9e:7a:b4:04:4a:
a2:0b:e2:6f:4c:7c:83:f0:6e:c7:58:9e:f3:95:2b:
b4:6a:cd:ff:99:87:bb:a2:82:ab:d7:d8:71:9b:ca:
9a:4b:8e:f1:48:4e:62:50:b4:e8:50:72:8b:01:a0:
1d:b0:4c:50:f2:31:0d:28:86:d8:31:a8:01:48:c5:
73:81:b2:63:54:4c:76:a1:78:6b:a3:18:6f:5e:75:
93:69:30:bf:b3:d8:b1:3a:23:dc:5e:2a:d3:e4:37:
9a:98:31:d5:95:36:93:b8:d8:88:cb:69:64:c7:1d:
cd:e1:f8:e5:87:06:bc:48:32:e6:ec:e5:9a:8b:7e:
d9:85:31:6b:6f:78:b4:6c:66:85:49:f8:3a:dc:50:
37:e2:b0:c1:a8:33:7c:d9:ff:ef:cb:d8:a4:be:0c:
10:a2:21:a3:26:d3:2f:9b:9b:e9:69:a3:05:3e:ab:
6d:78:0f:59:cc:da:61:62:21:83:09:2e:90:39:41:
b3:4c:33:50:82:cf:74:db:5d:1b:dc:f4:13:5b:92:
85:24:bb:ba:9c:a9:35:d7:16:86:d3:a0:33:76:a2:
67:75:90:5d:4d:fd:76:f7:b6:e9:b6:e1:9d:2c:59:
52:b9:42:f6:e1:2a:db:ff:e4:7c:0b:74:05:c6:db:
02:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:2C:CB:E3:2A:A2:2E:D6:59:8C:62:ED:75:8E:28:21:75:28:B2:C8
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/zSzL4yqiLtZZjGLtdY4oIXUossg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.105.230.0/24
Signature Algorithm: sha256WithRSAEncryption
cb:31:44:6e:7e:44:92:40:fd:56:26:1e:14:bc:40:df:ab:35:
34:cf:bf:25:58:72:72:e1:b3:d3:d4:81:7c:61:75:7c:9c:5a:
54:58:d5:3e:cd:94:0b:00:02:83:b9:c7:dd:32:99:7f:f1:de:
ae:36:ae:90:35:7c:9f:d7:e9:45:b6:53:70:8d:16:5e:54:4a:
a5:0d:71:cc:78:a6:e2:91:f4:02:bd:3e:80:87:73:80:ce:30:
cc:4e:20:1c:75:18:a7:c8:c9:e1:d1:03:34:2d:41:9e:fd:21:
4d:3c:53:06:65:b3:c4:ad:5b:53:e8:90:59:92:25:15:89:ba:
7e:ef:29:6e:4f:41:7f:b3:bd:c3:13:d3:9d:38:30:8d:84:ae:
5e:4a:e7:8c:60:47:dc:d0:e1:29:91:a7:6c:83:8c:47:ef:ad:
ec:e7:a3:e4:6f:49:ce:43:f8:dc:fa:d4:c1:cc:f7:d2:8a:b0:
ec:d9:25:95:86:9a:18:e7:cc:1a:6c:23:42:6b:22:a6:96:d2:
d3:3a:aa:2f:e7:33:76:d6:89:ae:75:e6:3f:0e:af:28:ec:1d:
50:5a:55:5d:6d:9e:02:08:80:5f:ea:25:57:21:91:cd:67:ca:
48:54:e6:64:0b:3b:3f:f6:7f:1e:93:cd:a2:6e:c8:30:e1:1c:
53:5b:a4:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 21 15:04:05 2025 by rpki-client on console.sobornost.net