Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/866e5e-831e-4cb1-bd51-b4540c74c94b/1/PWrXZ44q_Cq8wknfi-1f_R43Zcs.roa
File: PWrXZ44q_Cq8wknfi-1f_R43Zcs.roa (raw, json)
Hash identifier: O2e0v3vfKmkGrtW0wy8GSrYcnNNlxR6QNeD9UqdWmD0=
Subject key identifier: 3D:6A:D7:67:8E:2A:FC:2A:BC:C2:49:DF:8B:ED:5F:FD:1E:37:65:CB
Certificate issuer: /CN=22373571c90249bf2aa948e78bed13e08528b87e
Certificate serial: 01942143D091EE7F5F151BA32C1777B3DACF
Authority key identifier: 22:37:35:71:C9:02:49:BF:2A:A9:48:E7:8B:ED:13:E0:85:28:B8:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ijc1cckCSb8qqUjni-0T4IUouH4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/866e5e-831e-4cb1-bd51-b4540c74c94b/1/PWrXZ44q_Cq8wknfi-1f_R43Zcs.roa
Signing time: Wed 01 Jan 2025 09:47:59 +0000
ROA not before: Wed 01 Jan 2025 09:47:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 198154
IP address blocks: 5.160.135.0/24 maxlen: 24
5.160.144.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:43:d0:91:ee:7f:5f:15:1b:a3:2c:17:77:b3:da:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22373571c90249bf2aa948e78bed13e08528b87e
Validity
Not Before: Jan 1 09:47:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3d6ad7678e2afc2abcc249df8bed5ffd1e3765cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:57:ae:f7:0b:bf:ea:b6:19:86:5c:96:c2:d9:
75:a6:b1:ed:53:b0:c7:63:92:4b:a3:85:cb:c5:68:
97:68:4e:ea:4e:b1:74:c0:ff:d0:08:e4:98:76:54:
2c:9f:5b:06:4b:79:0b:ef:74:04:d4:de:20:36:03:
a5:0e:bf:5c:8b:b9:75:65:00:d4:4a:b0:1c:9d:b0:
0f:c5:db:3c:40:8e:e7:70:a1:f7:da:a8:84:68:c6:
15:f0:fc:69:c6:d7:ca:d2:67:e7:c2:31:47:7a:05:
57:17:b8:42:c3:3b:c5:ef:99:fd:0b:8b:5e:e7:4f:
7d:54:6b:87:5e:31:85:17:7b:27:e7:0e:ca:02:4c:
66:a7:55:6a:f5:fe:59:77:2e:b8:4b:6b:dc:ee:38:
e4:64:e5:7e:53:13:7c:7c:23:d7:84:11:0b:70:d8:
4e:2a:eb:34:32:75:80:c6:06:36:12:d3:b1:d1:1a:
48:a4:87:6f:9f:6b:cf:53:5e:ca:60:9c:c3:00:f1:
e1:23:12:8a:da:ce:a1:5f:b8:1d:e4:de:68:db:40:
9e:65:2e:98:b1:a9:2a:4d:27:9c:d1:f2:36:75:49:
de:56:ed:fa:fc:fb:73:60:8b:0a:69:f0:e1:f8:31:
72:f5:e2:12:33:4a:ae:6f:a4:47:6a:69:f8:15:01:
11:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:6A:D7:67:8E:2A:FC:2A:BC:C2:49:DF:8B:ED:5F:FD:1E:37:65:CB
X509v3 Authority Key Identifier:
keyid:22:37:35:71:C9:02:49:BF:2A:A9:48:E7:8B:ED:13:E0:85:28:B8:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ijc1cckCSb8qqUjni-0T4IUouH4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/866e5e-831e-4cb1-bd51-b4540c74c94b/1/PWrXZ44q_Cq8wknfi-1f_R43Zcs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/866e5e-831e-4cb1-bd51-b4540c74c94b/1/Ijc1cckCSb8qqUjni-0T4IUouH4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.160.135.0/24
5.160.144.0/24
Signature Algorithm: sha256WithRSAEncryption
44:a4:da:62:2d:f2:5c:15:18:d1:e5:80:e0:1b:96:61:91:65:
83:54:0f:02:44:ea:ad:22:37:c1:18:cd:1d:20:f5:37:3f:8a:
86:43:d2:2d:40:79:7a:8d:40:76:cc:4a:52:cb:ec:32:da:dd:
00:68:21:76:98:99:2f:a6:96:53:05:aa:48:42:fb:29:63:d2:
53:42:89:2e:96:22:aa:dd:e4:cf:46:eb:a4:7d:0c:6a:7b:66:
84:a8:c2:5c:f6:0f:4e:92:16:6f:b5:92:c1:cd:14:8f:c0:72:
7f:a3:b8:01:43:e1:4c:7d:07:bc:ba:9c:ed:c0:9f:a4:5f:5c:
d3:95:5a:02:d6:81:56:fa:a9:0c:2a:a1:f5:c0:cd:3a:d3:fb:
6f:bf:3c:51:79:76:a7:f6:d2:ff:3d:34:50:9a:90:d2:4d:19:
2b:db:6e:dc:0e:3f:41:6f:d0:5b:09:3b:53:14:44:6e:89:97:
05:f6:77:6d:9e:78:96:d3:09:9b:2d:b3:1d:82:aa:e7:7e:d3:
4f:c1:2d:1f:7b:b8:c0:e2:06:3b:57:da:bd:2e:9a:21:b1:8a:
19:45:c9:d0:53:a9:40:ad:50:90:61:84:4c:c7:8a:9c:c3:e7:
a4:a4:1b:19:a0:26:cc:8b:0a:6e:e5:bb:54:bd:ee:95:08:fc:
95:88:ed:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 23 19:16:15 2025 by rpki-client on console.sobornost.net