Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/8b141b-494e-466b-a22c-a224fefac218/1/VqJZEln3bccahadYDW0ePgV1gdw.roa
File: VqJZEln3bccahadYDW0ePgV1gdw.roa (raw, json)
Hash identifier: CgpHiF36vVgykBJlcL4O9MnI1LRoTpD9E00VJ7RhYwg=
Subject key identifier: 56:A2:59:12:59:F7:6D:C7:1A:85:A7:58:0D:6D:1E:3E:05:75:81:DC
Certificate issuer: /CN=137f3372df57c814aba8b51a907861d92b9e4f55
Certificate serial: 0194221F61BC6B062F2159B4E90B996E4B3B
Authority key identifier: 13:7F:33:72:DF:57:C8:14:AB:A8:B5:1A:90:78:61:D9:2B:9E:4F:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E38zct9XyBSrqLUakHhh2SueT1U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/8b141b-494e-466b-a22c-a224fefac218/1/VqJZEln3bccahadYDW0ePgV1gdw.roa
Signing time: Wed 01 Jan 2025 13:47:49 +0000
ROA not before: Wed 01 Jan 2025 13:47:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 208006
IP address blocks: 5.253.24.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:61:bc:6b:06:2f:21:59:b4:e9:0b:99:6e:4b:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=137f3372df57c814aba8b51a907861d92b9e4f55
Validity
Not Before: Jan 1 13:47:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=56a2591259f76dc71a85a7580d6d1e3e057581dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:39:fc:4a:85:85:50:5c:1e:fa:9a:bd:d6:36:
af:d1:10:c6:0b:3e:ab:e8:64:7a:df:ca:e5:45:c6:
e3:22:35:d5:b2:a4:28:87:26:21:41:d7:75:f5:99:
dc:1e:b8:f6:ad:ce:d8:e2:d8:4e:82:02:c9:f3:2e:
4b:38:3c:b9:7e:d7:ab:b9:6c:50:35:c1:f1:f9:e7:
e6:a0:cf:eb:94:1f:26:e2:99:d0:23:fa:26:33:65:
91:35:11:53:87:22:71:8b:7c:07:3b:9d:19:8e:6a:
43:bd:98:3a:da:c9:9c:b8:5a:5b:a6:ef:20:d6:c2:
80:8d:66:ff:af:2f:f1:86:52:dc:61:cb:6e:5d:d3:
65:c6:fc:f9:27:46:24:de:37:a9:68:95:a8:32:40:
27:a9:4d:95:6c:c3:a8:74:96:5c:4c:e6:11:b1:7e:
96:a4:a0:cb:59:67:35:cb:e8:b5:81:39:e7:0c:83:
e8:44:a4:fa:86:b2:e4:a8:d1:99:a6:90:25:98:f4:
21:67:2d:ee:d5:f5:f1:5a:1a:9e:bc:11:b8:fc:6e:
99:49:db:2c:7d:db:ee:cd:9f:27:68:ff:39:84:74:
87:82:4a:21:15:b9:df:a4:5f:cc:e7:a8:43:5b:f9:
ef:25:db:ac:67:67:7a:d0:62:3b:e9:29:4d:00:a8:
42:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:A2:59:12:59:F7:6D:C7:1A:85:A7:58:0D:6D:1E:3E:05:75:81:DC
X509v3 Authority Key Identifier:
keyid:13:7F:33:72:DF:57:C8:14:AB:A8:B5:1A:90:78:61:D9:2B:9E:4F:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E38zct9XyBSrqLUakHhh2SueT1U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/8b141b-494e-466b-a22c-a224fefac218/1/VqJZEln3bccahadYDW0ePgV1gdw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/8b141b-494e-466b-a22c-a224fefac218/1/E38zct9XyBSrqLUakHhh2SueT1U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.24.0/22
Signature Algorithm: sha256WithRSAEncryption
06:70:17:11:6a:ad:27:69:ca:97:3d:5d:a1:e5:6d:69:9c:ab:
ac:b4:f8:a7:09:bd:43:27:e3:4d:51:6f:ea:1f:31:51:78:11:
85:45:d4:30:33:f9:8b:fa:3a:06:dd:55:64:4f:c8:97:26:d6:
2f:2c:34:a3:cd:9a:e5:7e:9f:5c:05:8d:7c:ad:f9:8b:ca:2a:
b1:6c:04:ae:e7:73:f5:fa:41:e8:74:d0:d1:6c:1c:b4:ea:85:
2a:c2:a3:56:63:bc:17:9d:65:f1:aa:47:d1:81:1b:fc:f1:89:
b8:49:13:d3:f4:ad:1f:cc:38:8b:8e:cb:dc:b2:de:be:f9:64:
9e:50:35:46:27:9c:23:9a:75:fe:72:28:9e:36:eb:43:cb:5c:
2b:a6:55:b0:71:95:e6:bf:90:40:86:bd:0a:0f:02:43:76:98:
ea:f6:f2:7e:69:e4:3e:44:bc:0a:ca:70:54:d6:a1:6c:2a:30:
11:bf:9d:8f:fa:d7:a0:e3:ca:3c:5b:87:c5:41:cf:dd:4a:32:
91:72:85:52:53:e1:f1:f1:7c:e8:80:fb:60:57:f2:8c:c6:9a:
6e:76:b2:c2:75:e3:2d:35:ed:31:e5:0b:e4:b0:17:a2:05:d8:
3f:bd:7d:ef:b5:ad:59:79:28:3f:c0:52:f8:6c:e8:fb:5b:71:
7e:9b:50:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:58 2025 by rpki-client on console.sobornost.net