Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/cd7047-0816-4821-8dea-6078efd0785e/1/nGmNNcPYPqUlkXgs_RQgBIHWHdU.roa
File: nGmNNcPYPqUlkXgs_RQgBIHWHdU.roa (raw, json)
Hash identifier: qd/h+GWajfOX6OMR5HYNSJZTt3Etfb5C3Mcx9RhNRgY=
Subject key identifier: 9C:69:8D:35:C3:D8:3E:A5:25:91:78:2C:FD:14:20:04:81:D6:1D:D5
Certificate issuer: /CN=0b78b2d3f62700fe67e593b5a33d1cf91789252f
Certificate serial: 019420687311A2D3C7A8B7E987E20ED0FCDD
Authority key identifier: 0B:78:B2:D3:F6:27:00:FE:67:E5:93:B5:A3:3D:1C:F9:17:89:25:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C3iy0_YnAP5n5ZO1oz0c-ReJJS8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/cd7047-0816-4821-8dea-6078efd0785e/1/nGmNNcPYPqUlkXgs_RQgBIHWHdU.roa
Signing time: Wed 01 Jan 2025 05:48:23 +0000
ROA not before: Wed 01 Jan 2025 05:48:23 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 205478
IP address blocks: 176.113.95.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:68:73:11:a2:d3:c7:a8:b7:e9:87:e2:0e:d0:fc:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0b78b2d3f62700fe67e593b5a33d1cf91789252f
Validity
Not Before: Jan 1 05:48:23 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9c698d35c3d83ea52591782cfd14200481d61dd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:80:92:de:15:f8:e8:97:d8:fb:6a:83:17:6a:
29:cf:a0:50:00:a5:3a:ee:f9:6e:8b:5f:45:93:65:
3e:9c:5b:e9:0d:8f:53:62:dd:07:89:f4:1c:82:e0:
1d:77:bc:86:8b:6f:52:82:ac:b7:64:93:47:ac:e6:
04:db:ec:aa:4f:cc:bf:e2:36:c2:18:b2:fd:93:62:
cc:a2:95:f1:94:b8:d5:e0:ec:eb:46:bc:72:67:be:
91:58:7e:19:5a:b2:62:9c:f2:80:7b:4f:69:77:9a:
28:5a:69:43:16:a2:2e:b2:ee:eb:08:eb:63:f6:1b:
45:72:47:54:fe:a3:f0:3d:07:71:a3:b4:dc:6c:49:
5d:bf:7a:54:e6:a7:db:fb:a8:d1:71:b5:6b:c9:4f:
e2:8e:5f:65:b4:da:67:5b:33:34:1d:8d:c0:fa:6b:
d6:75:2e:76:1e:40:f5:8a:3f:94:6f:1c:32:bd:cb:
fb:89:35:4a:7c:b7:44:a1:1c:53:74:c2:27:85:07:
c4:cc:04:7e:48:ed:27:e6:e7:95:6d:c9:2b:78:2e:
b2:64:b9:52:d4:da:fc:7f:2c:49:46:28:7d:8d:00:
54:7e:3b:60:bd:29:8e:9e:22:bc:f8:72:1c:29:3b:
85:e7:60:d2:b4:6d:5c:54:2f:77:a9:15:d2:24:60:
a0:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:69:8D:35:C3:D8:3E:A5:25:91:78:2C:FD:14:20:04:81:D6:1D:D5
X509v3 Authority Key Identifier:
keyid:0B:78:B2:D3:F6:27:00:FE:67:E5:93:B5:A3:3D:1C:F9:17:89:25:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C3iy0_YnAP5n5ZO1oz0c-ReJJS8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/cd7047-0816-4821-8dea-6078efd0785e/1/nGmNNcPYPqUlkXgs_RQgBIHWHdU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/cd7047-0816-4821-8dea-6078efd0785e/1/C3iy0_YnAP5n5ZO1oz0c-ReJJS8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.113.95.0/24
Signature Algorithm: sha256WithRSAEncryption
43:43:20:8d:ea:cd:47:c9:ea:fa:b3:32:b7:ae:7e:5a:23:3a:
f6:b7:ce:c4:a7:1a:3f:a0:55:2d:07:3b:b2:34:13:d3:b7:d9:
18:3b:6f:8f:10:6c:66:2e:0f:36:61:0d:6d:d7:97:3f:db:c6:
4c:7c:8e:f5:12:34:79:9b:15:d8:59:6b:cd:c2:fd:6b:d6:0a:
9b:8d:3e:93:29:ca:1e:0f:3d:c0:5f:46:f6:e1:65:75:32:27:
e5:8f:c3:64:a1:89:47:9d:a6:23:7b:49:f4:a3:5c:cf:13:52:
c8:cb:ae:b5:80:b9:86:0a:82:db:0c:8e:dd:7f:f5:16:57:4f:
61:88:ee:9a:ab:c9:5f:f9:b9:6e:de:fb:79:83:6e:0c:aa:a6:
36:09:7f:65:06:50:fe:53:fb:af:e9:01:fe:98:71:f9:cc:82:
b2:96:09:c5:27:3f:c6:61:42:e5:92:cc:4b:ec:5e:dc:e4:ff:
7a:4f:34:17:8b:59:7b:aa:18:59:da:39:7d:b1:6a:d5:3b:61:
8c:76:db:50:1a:85:f5:94:9c:7e:9a:f7:d4:5d:73:c4:d4:1e:
5c:73:4d:72:03:42:9a:4b:f4:89:b9:b7:21:f3:8d:5d:59:f7:
16:fc:90:7c:aa:d3:1e:95:0b:8f:49:6b:bd:39:c0:9c:41:d4:
d1:fd:1c:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:42 2025 by rpki-client on console.sobornost.net