Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/ESr9zioHCBYZ86HDg4eovEqdX6M.roa
File: ESr9zioHCBYZ86HDg4eovEqdX6M.roa (raw, json)
Hash identifier: MYFTzIM52H5hH9HHF0ZyBDCjsvixX7YrAYb/vviEJWk=
Subject key identifier: 11:2A:FD:CE:2A:07:08:16:19:F3:A1:C3:83:87:A8:BC:4A:9D:5F:A3
Certificate issuer: /CN=5a6f9295521df30a158f506ba7cb873ab9529dc3
Certificate serial: 019421B220760EF0707289581520EF858F24
Authority key identifier: 5A:6F:92:95:52:1D:F3:0A:15:8F:50:6B:A7:CB:87:3A:B9:52:9D:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wm-SlVId8woVj1Brp8uHOrlSncM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/ESr9zioHCBYZ86HDg4eovEqdX6M.roa
Signing time: Wed 01 Jan 2025 11:48:29 +0000
ROA not before: Wed 01 Jan 2025 11:48:29 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 6867
IP address blocks: 194.177.197.0/24 maxlen: 24
2001:648:2c00::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b2:20:76:0e:f0:70:72:89:58:15:20:ef:85:8f:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a6f9295521df30a158f506ba7cb873ab9529dc3
Validity
Not Before: Jan 1 11:48:29 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=112afdce2a07081619f3a1c38387a8bc4a9d5fa3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:2a:f5:42:3d:06:b6:34:cf:09:7b:67:31:d0:
5e:ba:61:e5:94:50:e1:b2:64:29:65:50:38:37:fc:
79:94:55:22:32:0a:e5:2a:be:ca:16:df:fe:78:57:
5d:55:0e:c4:65:df:0d:86:85:4d:4e:28:cb:50:37:
6f:33:01:fb:18:0a:a7:55:7d:39:83:71:e4:e4:95:
c4:6b:74:27:0b:cc:04:56:53:22:50:73:8f:71:d1:
be:a9:a3:fd:de:a7:be:4f:ae:3b:2e:45:ad:5b:ba:
06:df:24:d8:3a:7e:19:66:5c:ba:42:b2:f3:33:43:
e2:e3:3b:95:5d:fa:7a:a1:02:62:8d:e6:14:19:b0:
7a:46:11:0a:ab:48:ef:60:b1:26:a7:ea:84:40:4c:
71:71:99:83:90:8c:44:ac:01:57:7e:7b:c1:a9:b5:
98:3b:e1:6e:fc:65:a4:98:4c:7f:48:d8:86:07:26:
28:29:d8:a0:c7:b3:9b:0e:79:af:7d:5c:a9:f2:04:
3b:8c:e5:91:c6:dd:bb:32:ab:fc:f8:bd:35:ad:88:
8b:5c:5e:98:b5:e1:84:58:a3:b0:fd:47:85:ca:40:
15:d4:3b:06:21:43:24:a7:4e:32:89:85:f5:17:2c:
37:48:a2:67:e3:8e:57:cf:f4:58:6b:ef:50:1b:b4:
96:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:2A:FD:CE:2A:07:08:16:19:F3:A1:C3:83:87:A8:BC:4A:9D:5F:A3
X509v3 Authority Key Identifier:
keyid:5A:6F:92:95:52:1D:F3:0A:15:8F:50:6B:A7:CB:87:3A:B9:52:9D:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wm-SlVId8woVj1Brp8uHOrlSncM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/ESr9zioHCBYZ86HDg4eovEqdX6M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/Wm-SlVId8woVj1Brp8uHOrlSncM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.177.197.0/24
IPv6:
2001:648:2c00::/48
Signature Algorithm: sha256WithRSAEncryption
17:3d:71:0a:53:ba:1e:94:76:8b:be:5c:17:c0:e5:14:10:54:
88:10:10:98:73:d3:32:4c:39:d9:d0:e4:b4:2b:03:b8:61:32:
2d:ba:58:3c:22:1d:fc:38:63:f3:e5:cd:95:ce:99:0e:4a:48:
2e:39:74:ba:a9:be:7a:5c:b1:44:55:01:a3:7e:a4:05:4f:9d:
e1:fb:70:bb:e8:b6:47:9e:42:8d:e6:87:07:7d:fb:26:65:0b:
4c:72:0e:2e:1f:c1:bc:91:11:16:18:8a:9f:c1:9c:41:10:a6:
30:3d:9b:c9:f1:68:57:b8:b0:57:f4:cc:9a:e4:96:27:6f:4e:
69:f8:16:7e:a4:3c:a6:d9:48:5e:b3:e6:ea:14:f5:f6:a5:32:
15:ce:6a:a6:f6:7b:b8:49:1a:f5:2a:99:d9:2d:c2:3c:62:64:
61:ff:43:0f:72:b8:b4:90:a3:dc:b1:66:1f:dd:10:57:e6:98:
7e:bc:16:e2:2b:f7:8d:63:f0:48:e8:81:1e:ba:9d:92:b9:4e:
06:33:f3:7a:ce:04:cc:e3:bc:e5:a2:18:25:8b:18:5d:94:ac:
5c:7c:a1:34:50:df:98:62:ac:ba:02:7f:25:a7:11:4c:b1:97:
2c:47:74:93:0e:20:b0:8f:4b:d2:68:ec:88:4f:35:4f:66:0d:
10:f2:c5:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:02 2025 by rpki-client on console.sobornost.net