Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/0600a4-1464-4a7c-af56-18e86f0b1d81/1/2WtoHZvg5te_N4m2YVTI34CdoYk.roa
File: 2WtoHZvg5te_N4m2YVTI34CdoYk.roa (raw, json)
Hash identifier: po1CAhe738W8G3Ru+HFg6o15PnibllxC1AqpMi8ycAQ=
Subject key identifier: D9:6B:68:1D:9B:E0:E6:D7:BF:37:89:B6:61:54:C8:DF:80:9D:A1:89
Certificate issuer: /CN=7ee053cb9cb4f41c1e4773e7f16e84bb57522033
Certificate serial: 019623B0812878A5DBD123EA781E46D546DA
Authority key identifier: 7E:E0:53:CB:9C:B4:F4:1C:1E:47:73:E7:F1:6E:84:BB:57:52:20:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fuBTy5y09BweR3Pn8W6Eu1dSIDM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/0600a4-1464-4a7c-af56-18e86f0b1d81/1/2WtoHZvg5te_N4m2YVTI34CdoYk.roa
Signing time: Fri 11 Apr 2025 07:11:32 +0000
ROA not before: Fri 11 Apr 2025 07:11:32 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 329007
IP address blocks: 88.218.18.0/24 maxlen: 24
88.218.19.0/24 maxlen: 24
193.228.91.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:23:b0:81:28:78:a5:db:d1:23:ea:78:1e:46:d5:46:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ee053cb9cb4f41c1e4773e7f16e84bb57522033
Validity
Not Before: Apr 11 07:11:32 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d96b681d9be0e6d7bf3789b66154c8df809da189
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:3e:55:4e:1c:9b:3a:a4:97:56:24:ba:86:12:
32:50:c0:4d:61:52:3f:14:c2:9d:2f:37:c2:79:f7:
9b:a0:25:7f:c2:ff:73:c3:68:7b:81:cd:6d:93:2a:
0f:3e:5a:14:0c:62:6e:b3:78:c9:07:6e:1c:3a:41:
2d:26:01:a2:f6:07:a5:e6:d9:54:b0:1e:30:35:39:
26:f7:c4:18:49:56:70:8d:1a:3f:f2:1b:6c:c4:fa:
64:6b:5f:ca:d1:8a:01:52:e3:29:3d:ce:25:08:4c:
3b:ac:31:f1:09:39:c8:f9:49:60:a6:57:19:f7:11:
95:43:fd:6a:60:f8:81:71:d8:04:ac:a7:16:2a:56:
ea:c1:5c:bc:8d:02:ae:90:25:93:d6:f7:be:96:81:
27:a9:e4:d9:a8:b5:5c:ab:5d:af:6b:39:21:e8:6e:
4c:03:e6:b0:1f:aa:b2:84:ad:21:e7:9d:fc:20:97:
07:a3:38:28:2d:b0:58:40:e8:d3:e4:d8:c8:fd:b5:
be:11:9a:91:75:d7:b8:a1:82:6a:29:04:a9:39:85:
31:23:65:7a:34:c8:04:e9:98:44:4d:c1:ec:98:98:
47:99:46:95:60:15:c6:ec:b0:9b:27:5a:a1:be:de:
a9:fc:19:d0:57:05:5c:12:57:2c:b7:fe:18:a4:9b:
61:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:6B:68:1D:9B:E0:E6:D7:BF:37:89:B6:61:54:C8:DF:80:9D:A1:89
X509v3 Authority Key Identifier:
keyid:7E:E0:53:CB:9C:B4:F4:1C:1E:47:73:E7:F1:6E:84:BB:57:52:20:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fuBTy5y09BweR3Pn8W6Eu1dSIDM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/0600a4-1464-4a7c-af56-18e86f0b1d81/1/2WtoHZvg5te_N4m2YVTI34CdoYk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/0600a4-1464-4a7c-af56-18e86f0b1d81/1/fuBTy5y09BweR3Pn8W6Eu1dSIDM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.218.18.0/23
193.228.91.0/24
Signature Algorithm: sha256WithRSAEncryption
15:6f:3f:e3:15:7b:b2:1b:64:d2:e1:55:dd:38:bb:5d:15:57:
9b:45:32:59:a1:c9:dc:25:71:fd:52:2f:39:3b:2c:e2:55:ab:
3b:d9:5c:21:9c:38:f3:77:8d:b0:9e:f7:2a:57:a6:19:7c:1f:
af:43:e1:f8:85:c0:35:7b:6a:e9:f3:3a:f9:1c:e2:48:34:c8:
53:be:f5:58:33:62:1e:6f:8b:03:c9:7c:8f:f5:f9:86:67:ad:
61:17:0d:7b:47:cb:d6:1e:47:f3:a0:66:cd:dc:ed:a3:a1:43:
c8:d5:95:72:90:23:48:b2:dd:2a:c8:a6:18:19:2f:fc:e3:2a:
c9:ed:15:70:5f:c0:90:40:03:5e:87:72:db:96:c1:fe:3c:03:
04:f2:1b:04:b9:1b:64:6a:ae:c6:7b:7b:fe:26:dc:e1:3f:55:
8c:d9:8e:09:2f:2e:31:07:55:fc:a1:23:e3:ae:bf:8a:c9:4a:
ec:d9:fc:54:6a:93:87:e8:bf:80:26:bd:b3:f2:4a:b8:0e:f0:
b9:e4:fd:05:96:7c:a9:e6:d4:3a:ff:1d:bf:22:df:7b:90:98:
41:5e:b4:3e:01:f2:7d:84:df:71:91:47:e6:84:6d:cd:58:03:
a8:b5:26:3e:ea:ec:76:74:2b:3a:52:c0:d5:ac:f4:2a:90:d3:
8e:e6:ff:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:59 2025 by rpki-client on console.sobornost.net