Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/dg2ENpAWcEPc-TWxSZGfd4BR9W0.roa
File: dg2ENpAWcEPc-TWxSZGfd4BR9W0.roa (raw, json)
Hash identifier: INTcM8oJYzK4qq/+/jBJoX/v+UScfBBT6kCIunQEjok=
Subject key identifier: 76:0D:84:36:90:16:70:43:DC:F9:35:B1:49:91:9F:77:80:51:F5:6D
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 01960FA45505282ECC7DA5B275D5A403640A
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/dg2ENpAWcEPc-TWxSZGfd4BR9W0.roa
Signing time: Mon 07 Apr 2025 09:45:49 +0000
ROA not before: Mon 07 Apr 2025 09:45:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212335
IP address blocks: 5.180.233.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:0f:a4:55:05:28:2e:cc:7d:a5:b2:75:d5:a4:03:64:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Apr 7 09:45:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=760d843690167043dcf935b149919f778051f56d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:84:08:e6:69:5c:c3:b7:a4:c3:f8:ed:f9:ec:
bb:92:a5:17:89:d5:7b:30:3d:e3:23:7a:99:40:14:
b2:ae:10:85:a7:46:b8:27:ce:ef:44:6f:f9:9c:4b:
c9:0f:7b:d8:b2:fb:5a:b9:34:00:dd:fa:2e:b4:da:
40:da:da:24:e8:22:9d:b6:f9:de:7d:ab:87:d5:5e:
48:bd:4a:fc:12:79:d3:cf:c2:a4:0c:7a:3c:29:b9:
51:4e:0b:44:a3:e1:ef:b1:58:f9:2c:32:fa:38:93:
db:15:5b:a6:b7:6d:c3:92:87:cf:d1:33:40:bc:0e:
10:31:e0:93:0b:68:50:72:d6:19:e6:9d:e3:4e:23:
fb:be:86:b9:20:6e:02:fe:6b:ec:04:b4:2b:af:dd:
57:e0:b2:c2:88:64:d9:34:48:7f:75:6c:c4:b6:a7:
be:26:aa:46:c1:1a:c2:6d:5f:da:b0:49:b2:1b:a2:
8f:7d:93:b1:d8:77:4f:b2:f9:d2:51:2d:11:1a:83:
f9:d9:da:0b:2d:79:ab:4d:f5:5d:f2:39:fb:f1:48:
f7:25:8c:d3:2e:d8:d0:a3:80:d1:73:30:26:41:27:
16:b7:5c:04:24:6d:b0:70:32:59:c5:9c:2c:7f:16:
96:8b:0e:49:3c:66:5b:39:44:18:68:32:6c:06:29:
be:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:0D:84:36:90:16:70:43:DC:F9:35:B1:49:91:9F:77:80:51:F5:6D
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/dg2ENpAWcEPc-TWxSZGfd4BR9W0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.233.0/24
Signature Algorithm: sha256WithRSAEncryption
30:6b:86:c6:ab:de:23:c4:69:7e:89:31:47:e4:df:6f:fa:aa:
ea:a6:2e:80:35:85:0e:c8:91:f2:76:c9:bb:ea:dc:71:10:aa:
c3:59:85:af:62:a0:9e:ea:17:3f:6b:24:00:e5:b1:3d:92:68:
a6:77:fc:a3:8b:f6:7b:55:81:03:b4:28:95:30:e1:b7:c6:9a:
e1:74:13:44:28:d7:26:3a:dd:67:08:4c:4a:4a:1f:2f:f2:72:
80:1c:73:4c:76:a6:8b:fe:52:10:06:af:d9:46:f0:ee:a2:fe:
ea:90:02:54:78:95:91:05:1b:78:81:22:b3:13:91:ca:aa:e2:
db:09:38:85:41:f6:78:5f:86:98:1a:bc:63:7a:76:05:ba:f3:
b5:b9:f6:4d:e1:23:bf:6b:fb:38:ed:aa:fb:6f:38:1f:e4:ce:
a7:fe:c9:f4:d2:c3:66:f8:f1:ac:82:6d:74:c4:0d:96:9f:b5:
1a:46:dc:0e:c8:e2:37:e4:8f:3e:71:76:e6:b6:29:b9:74:46:
f2:14:10:5d:0b:94:98:eb:5f:31:0a:85:88:ca:4f:72:54:8b:
95:40:50:f2:97:95:5e:9f:4e:28:ee:ef:12:43:68:fe:29:be:
19:43:c5:e0:71:d9:60:2c:cb:dc:21:23:f4:1f:9f:13:9c:38:
7c:1b:01:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:40 2025 by rpki-client on console.sobornost.net