Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/iDHKoOkn76ewvGMKtSvQ55oreVI.roa
File: iDHKoOkn76ewvGMKtSvQ55oreVI.roa (raw, json)
Hash identifier: FdmrkxRsqXjJl6GApfB2yCowxyhEWG38nOt3Zk2IOgw=
Subject key identifier: 88:31:CA:A0:E9:27:EF:A7:B0:BC:63:0A:B5:2B:D0:E7:9A:2B:79:52
Certificate issuer: /CN=1c963e3d22847d466c262c20878c2780d8840003
Certificate serial: 0195F7B9498538DDD6A5490AF33ACB0BA7C3
Authority key identifier: 1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/iDHKoOkn76ewvGMKtSvQ55oreVI.roa
Signing time: Wed 02 Apr 2025 18:17:49 +0000
ROA not before: Wed 02 Apr 2025 18:17:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213568
IP address blocks: 5.181.183.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:f7:b9:49:85:38:dd:d6:a5:49:0a:f3:3a:cb:0b:a7:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c963e3d22847d466c262c20878c2780d8840003
Validity
Not Before: Apr 2 18:17:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8831caa0e927efa7b0bc630ab52bd0e79a2b7952
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:dc:41:6a:45:20:28:a6:d3:f3:b0:2d:49:b6:
d0:00:92:f5:c1:ee:2a:95:ac:31:f3:e2:c6:da:9b:
3d:bb:d3:e2:65:77:03:08:7d:80:ee:89:1a:ef:51:
a3:91:2b:5e:71:47:a2:35:97:bc:a1:07:87:ec:cb:
47:fe:74:49:dc:3d:ce:aa:9c:30:0c:b2:50:25:b5:
88:5b:77:7e:92:23:b9:9d:c1:21:24:9e:2d:64:eb:
8e:14:d5:ea:2a:1b:44:90:6d:9a:56:17:1f:6e:49:
1b:10:52:f7:1f:34:bf:d5:36:11:41:ea:b7:b7:e1:
46:73:7f:44:52:c0:47:62:7a:e7:70:db:c3:04:53:
c2:49:b3:86:9b:b1:c3:16:c0:bc:b1:1d:24:89:07:
91:30:c6:83:bb:97:12:aa:9e:91:06:53:3b:eb:64:
07:a4:1b:fa:c2:d5:29:fe:10:0f:bb:92:a0:aa:fb:
e8:a5:90:cd:59:87:43:d4:13:88:a6:ee:0a:c0:4f:
77:02:72:00:aa:5f:1d:9a:95:24:a8:50:f1:c5:2c:
9e:de:3f:00:e6:c1:ec:0b:a9:91:13:fd:57:ca:99:
43:97:e7:80:53:98:72:4d:56:2b:4f:8d:58:42:98:
d8:3c:dc:b0:f3:88:1e:bd:40:ae:09:f2:f7:9c:4d:
b6:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:31:CA:A0:E9:27:EF:A7:B0:BC:63:0A:B5:2B:D0:E7:9A:2B:79:52
X509v3 Authority Key Identifier:
keyid:1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/iDHKoOkn76ewvGMKtSvQ55oreVI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.183.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:0c:70:bd:a2:57:3b:7a:fe:1f:37:d6:b0:a5:54:bb:16:ab:
98:da:cd:10:73:59:a5:0f:57:9c:80:fe:bc:67:ed:4c:40:bf:
31:2f:95:98:e6:f4:87:df:ea:79:30:eb:73:e9:2d:aa:d0:38:
d2:2b:20:4b:8a:ef:2f:10:b0:c9:90:b9:3b:ee:a4:50:f1:2d:
58:80:1c:b2:d5:42:2d:de:ae:ac:38:93:81:7e:41:4b:eb:f7:
c4:e3:d7:1b:a1:64:2b:0a:eb:9b:42:51:88:22:ae:92:e7:73:
a6:06:c6:97:e7:6f:e3:21:78:5c:3e:13:ac:01:87:42:20:c1:
be:20:29:eb:d0:41:3d:6f:a1:a8:e2:c7:14:ea:ae:e9:45:97:
43:04:1b:2d:13:8b:2b:ff:51:98:2a:a1:81:91:af:3b:20:92:
9c:17:e3:1c:f9:16:7a:29:d7:0e:47:93:09:1a:7c:8a:2d:a3:
21:dc:41:f0:3f:8a:1a:1c:3b:79:07:47:69:ed:5b:4c:c2:a4:
ff:ed:e0:da:1e:b3:9f:1d:b3:b5:75:ad:47:45:72:47:3e:a9:
f4:0d:05:98:fd:d2:08:75:5f:80:bf:3e:71:3f:d5:49:22:d8:
dc:db:aa:b1:bf:dc:fe:a9:db:53:60:6c:6c:ce:c0:dd:b8:eb:
c0:4b:90:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:58 2025 by rpki-client on console.sobornost.net