Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/45772a-a10f-429d-b5db-9218f92f3036/1/_rUyDRCvHwSyqAlsk1x1kmDAA1Y.roa
File: _rUyDRCvHwSyqAlsk1x1kmDAA1Y.roa (raw, json)
Hash identifier: u2bEo6KOgaKuYwpakyI83pe629wYN0VrES8GdaEa9Jg=
Subject key identifier: FE:B5:32:0D:10:AF:1F:04:B2:A8:09:6C:93:5C:75:92:60:C0:03:56
Certificate issuer: /CN=e9057470fd56f1b773b2e40abaee79f9966e4436
Certificate serial: 0194221FFE8CC538E8E04C63C7CA84E0098A
Authority key identifier: E9:05:74:70:FD:56:F1:B7:73:B2:E4:0A:BA:EE:79:F9:96:6E:44:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6QV0cP1W8bdzsuQKuu55-ZZuRDY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/45772a-a10f-429d-b5db-9218f92f3036/1/_rUyDRCvHwSyqAlsk1x1kmDAA1Y.roa
Signing time: Wed 01 Jan 2025 13:48:29 +0000
ROA not before: Wed 01 Jan 2025 13:48:29 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 58323
IP address blocks: 164.138.192.0/21 maxlen: 24
2a00:bac0::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:fe:8c:c5:38:e8:e0:4c:63:c7:ca:84:e0:09:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9057470fd56f1b773b2e40abaee79f9966e4436
Validity
Not Before: Jan 1 13:48:29 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=feb5320d10af1f04b2a8096c935c759260c00356
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:b0:57:f6:5c:e9:61:38:76:64:fa:ad:12:a6:
18:70:b4:06:57:03:14:54:cc:fa:2d:c6:bf:81:c2:
dd:ad:07:8c:ab:bd:3b:67:90:3d:5d:b9:55:47:61:
39:12:d5:25:e5:2d:bb:e5:7b:be:81:f7:d5:54:22:
68:54:e4:5c:6e:31:7c:c4:62:4d:47:90:cf:36:83:
59:d3:c7:3e:a7:78:c7:17:46:a3:a7:37:2d:43:df:
28:83:04:29:f4:08:b3:58:1c:6a:1d:cc:cc:8a:0a:
99:19:f0:6b:9d:20:85:95:6a:72:ba:44:79:62:43:
76:6f:2f:57:af:2f:b4:ab:63:b5:20:a0:d0:79:a5:
bd:31:c9:a7:e8:cd:3a:7b:ec:98:7a:bb:cb:dd:c1:
9b:2e:18:2d:1e:1b:79:ae:b3:9c:59:5c:ca:b9:1a:
19:82:45:b0:f6:08:83:8f:4c:3b:f9:15:27:2a:b9:
f6:02:64:8f:6a:61:5a:2c:a0:6b:20:a9:8c:34:8c:
ca:e7:a3:b6:76:2b:05:54:61:4c:62:63:b1:c0:80:
5d:2d:d2:02:4b:ed:ce:e3:43:0e:23:84:b1:9c:2e:
67:c8:ef:77:f8:07:d3:16:33:01:34:fb:7f:49:2e:
3d:f0:44:23:5a:15:50:52:20:41:2f:4c:35:79:63:
ee:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:B5:32:0D:10:AF:1F:04:B2:A8:09:6C:93:5C:75:92:60:C0:03:56
X509v3 Authority Key Identifier:
keyid:E9:05:74:70:FD:56:F1:B7:73:B2:E4:0A:BA:EE:79:F9:96:6E:44:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6QV0cP1W8bdzsuQKuu55-ZZuRDY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/45772a-a10f-429d-b5db-9218f92f3036/1/_rUyDRCvHwSyqAlsk1x1kmDAA1Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/45772a-a10f-429d-b5db-9218f92f3036/1/6QV0cP1W8bdzsuQKuu55-ZZuRDY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
164.138.192.0/21
IPv6:
2a00:bac0::/32
Signature Algorithm: sha256WithRSAEncryption
84:ca:3b:59:58:d6:22:85:22:ec:52:6e:c4:17:d9:5e:a2:ec:
03:48:ac:4f:39:96:dd:e3:2e:91:60:8a:7e:c4:96:c6:81:7c:
47:ac:cb:1e:8c:63:dd:28:28:9a:c7:2b:bb:68:48:79:81:c4:
bf:3d:be:c7:8e:81:b3:b7:0b:ec:11:06:99:85:d0:14:11:34:
c7:bb:4b:44:5a:5d:68:e2:e3:f3:8a:11:84:73:7b:6d:23:05:
24:5f:f6:24:29:be:99:86:00:52:20:14:80:82:82:c5:0b:a1:
f1:34:44:3f:e2:52:80:ab:28:c9:a2:d3:54:0f:a6:4d:ab:3c:
e2:dc:9e:1b:2a:dd:5d:63:4c:99:22:e0:7b:42:2e:2c:bf:19:
a0:e0:78:7b:1f:ba:6c:57:21:4c:70:cf:db:28:19:eb:c0:5d:
bc:e8:bf:a9:0f:d3:24:50:f5:f9:8a:1b:1d:b3:df:40:02:01:
fd:c8:2c:32:ee:be:4f:04:ac:61:9f:73:23:4a:59:72:f9:d3:
13:9d:d1:77:99:43:fb:e6:47:c9:ae:fa:6d:c4:be:2f:0b:6d:
88:7f:cd:fe:92:69:e1:77:4d:e1:65:22:96:0e:2a:65:5c:d9:
bb:5c:d6:fc:4d:e8:40:2c:45:27:e8:8d:bc:e9:e6:03:5d:81:
74:d0:03:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 00:21:50 2025 by rpki-client on console.sobornost.net