Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/7a8f3f-304c-4a26-aeca-18bdfe8cc0cd/1/5xqkx7rxr0A4ZoZWTCOMeWbUwt0.roa
File: 5xqkx7rxr0A4ZoZWTCOMeWbUwt0.roa (raw, json)
Hash identifier: 4Hck3JY+pm1ENmjLoSNCLwI2ygQA04QrM7UO64TPQ/E=
Subject key identifier: E7:1A:A4:C7:BA:F1:AF:40:38:66:86:56:4C:23:8C:79:66:D4:C2:DD
Certificate issuer: /CN=bc663c6e779dae9bdb046854f189fe8c5c3c32e1
Certificate serial: 01942747A03E842B08FFB0E67BA60FC4CB26
Authority key identifier: BC:66:3C:6E:77:9D:AE:9B:DB:04:68:54:F1:89:FE:8C:5C:3C:32:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vGY8bnedrpvbBGhU8Yn-jFw8MuE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/7a8f3f-304c-4a26-aeca-18bdfe8cc0cd/1/5xqkx7rxr0A4ZoZWTCOMeWbUwt0.roa
Signing time: Thu 02 Jan 2025 13:49:53 +0000
ROA not before: Thu 02 Jan 2025 13:49:53 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 51607
IP address blocks: 109.235.191.0/24 maxlen: 24
185.30.118.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:47:a0:3e:84:2b:08:ff:b0:e6:7b:a6:0f:c4:cb:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc663c6e779dae9bdb046854f189fe8c5c3c32e1
Validity
Not Before: Jan 2 13:49:53 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e71aa4c7baf1af40386686564c238c7966d4c2dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:a5:b5:96:70:93:7d:b1:48:db:3f:72:1d:2d:
df:18:c3:18:d3:a5:4b:28:fe:7e:40:df:bc:96:98:
47:42:ac:ed:6f:cd:ef:f6:5b:2e:3a:4b:ea:69:87:
b2:bc:5a:2c:d0:1b:40:3a:89:20:01:3d:bc:e8:90:
c4:be:bb:20:29:90:11:42:56:49:c9:e2:d1:25:e5:
24:5f:bf:67:d2:d8:97:f6:e4:f6:95:94:83:5e:d8:
0e:aa:ec:88:e1:58:3a:df:e3:6a:2e:43:7e:c7:42:
fd:92:dc:e4:3b:b7:a6:4c:90:07:32:75:fd:ee:c7:
81:a6:95:16:f5:fb:e7:69:8c:42:d8:5f:c9:6b:82:
39:a8:38:3a:c0:da:9e:92:80:60:8f:66:12:98:4b:
0d:1b:e0:b8:8f:24:d2:58:31:6a:34:ed:a6:b1:a8:
5a:bc:82:03:43:90:98:43:a5:1d:b5:86:71:f4:b4:
a1:24:ba:0f:4f:21:bd:6d:37:b5:90:ad:4c:10:18:
9a:60:02:6b:3d:18:4b:33:79:af:16:25:2b:a3:6d:
dd:20:55:79:ca:1b:e3:c7:c5:95:02:08:25:e1:da:
ad:91:41:a3:a4:8f:b6:11:63:bd:53:4a:9e:eb:79:
f8:53:b3:09:d1:39:8f:d4:32:90:6f:40:e0:fa:78:
ed:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:1A:A4:C7:BA:F1:AF:40:38:66:86:56:4C:23:8C:79:66:D4:C2:DD
X509v3 Authority Key Identifier:
keyid:BC:66:3C:6E:77:9D:AE:9B:DB:04:68:54:F1:89:FE:8C:5C:3C:32:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vGY8bnedrpvbBGhU8Yn-jFw8MuE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/7a8f3f-304c-4a26-aeca-18bdfe8cc0cd/1/5xqkx7rxr0A4ZoZWTCOMeWbUwt0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/7a8f3f-304c-4a26-aeca-18bdfe8cc0cd/1/vGY8bnedrpvbBGhU8Yn-jFw8MuE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.235.191.0/24
185.30.118.0/23
Signature Algorithm: sha256WithRSAEncryption
82:94:cc:68:b0:87:e5:23:e1:cc:0d:2f:47:be:de:58:e0:4e:
9f:4e:a5:85:95:52:03:84:85:b2:0d:81:9e:9c:36:91:bc:0f:
8e:d7:87:ad:76:fc:ce:34:fe:24:45:96:b3:6b:d3:f2:7a:f2:
78:a5:96:9f:dc:d2:40:21:ca:2b:ee:ad:e7:39:01:8d:f9:4a:
d6:b9:d9:bc:3d:0d:40:ac:60:b8:13:40:43:39:dd:48:03:7a:
3b:36:31:e8:dd:f5:8f:9e:09:00:c1:d5:b7:6d:56:16:cc:56:
0e:f4:b3:6d:3a:8b:58:2f:a3:99:9e:63:b7:80:22:db:f5:42:
16:85:d6:46:86:9f:13:a0:f8:1f:3d:fc:a0:da:2d:cf:c4:30:
d8:72:fa:14:22:a1:2a:de:04:94:e3:b7:47:1e:2c:16:b0:12:
c7:b9:6b:2c:41:32:0e:3e:52:80:03:dd:42:a8:cc:2e:6e:ba:
53:4a:4b:60:32:ae:33:8d:14:15:ca:62:58:51:5d:b4:73:00:
15:eb:f0:94:f1:a1:c1:62:eb:26:67:c1:28:45:9d:bf:8b:45:
03:40:eb:34:d3:9b:db:b8:a1:9d:0f:13:d8:d7:a4:a5:c4:bc:
bd:1e:16:d6:b5:cf:ff:dc:8b:eb:02:07:93:69:e8:b4:79:e7:
20:c8:d6:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:01 2025 by rpki-client on console.sobornost.net