Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/6e4582-dfe9-4146-8c14-8aadf7a9856b/1/PHx_cn3cwOP0zIbd-tSOarri2jU.roa
File: PHx_cn3cwOP0zIbd-tSOarri2jU.roa (raw, json)
Hash identifier: jvXJa9wGshKFR0UvbJd8wg24Fv3g0IRm/OGSnIujd88=
Subject key identifier: 3C:7C:7F:72:7D:DC:C0:E3:F4:CC:86:DD:FA:D4:8E:6A:BA:E2:DA:35
Certificate issuer: /CN=f512a759c65e9849bb7c532d5ebb44499a515bff
Certificate serial: 01960F447A3AB0DAD8508FE96A3C8CB59AD4
Authority key identifier: F5:12:A7:59:C6:5E:98:49:BB:7C:53:2D:5E:BB:44:49:9A:51:5B:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9RKnWcZemEm7fFMtXrtESZpRW_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/6e4582-dfe9-4146-8c14-8aadf7a9856b/1/PHx_cn3cwOP0zIbd-tSOarri2jU.roa
Signing time: Mon 07 Apr 2025 08:01:08 +0000
ROA not before: Mon 07 Apr 2025 08:01:08 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 216122
IP address blocks: 195.178.99.0/24 maxlen: 24
2a14:3400::/29 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:0f:44:7a:3a:b0:da:d8:50:8f:e9:6a:3c:8c:b5:9a:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f512a759c65e9849bb7c532d5ebb44499a515bff
Validity
Not Before: Apr 7 08:01:08 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3c7c7f727ddcc0e3f4cc86ddfad48e6abae2da35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:8e:02:7a:5b:53:d5:fb:a0:8d:1d:69:91:98:
c5:19:65:93:51:35:b5:8f:cc:64:ca:c8:1a:cd:4d:
c6:5f:6c:6f:41:8d:f0:68:2d:a4:4e:1e:25:78:f3:
2e:9a:40:96:32:ce:f5:2f:2c:37:2b:2e:9b:44:94:
5d:c2:e3:87:19:c6:01:44:09:cb:e3:31:cc:b9:da:
63:f7:00:dc:c6:32:39:17:5a:2e:f9:6f:21:2e:e1:
85:b7:c0:4c:cc:f3:41:c2:62:b6:26:91:46:43:a4:
80:4d:4d:73:43:ba:eb:02:28:3c:2c:83:a5:9e:d3:
80:e5:3c:d5:26:4a:e4:c4:1e:03:48:36:79:f7:ea:
93:98:be:d5:bc:84:73:bf:0a:2b:3f:35:a2:a2:23:
68:8a:02:36:b0:a8:ab:4c:0d:ef:77:f6:c3:cb:31:
eb:f7:a0:b6:00:5f:59:1e:cd:ec:98:19:06:ac:b7:
73:7b:e9:a7:8a:1f:aa:7a:6d:04:c9:d2:ce:e0:71:
bb:28:7b:7e:cd:26:1b:9d:68:69:60:08:11:0c:a0:
29:55:06:b4:f1:b7:b8:7c:8d:b0:b4:bd:be:25:5d:
4c:25:b3:7a:1d:b2:b3:66:3a:47:27:f8:68:e2:61:
11:6d:49:30:a7:47:f2:36:e4:d2:ad:83:59:a7:8f:
08:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:7C:7F:72:7D:DC:C0:E3:F4:CC:86:DD:FA:D4:8E:6A:BA:E2:DA:35
X509v3 Authority Key Identifier:
keyid:F5:12:A7:59:C6:5E:98:49:BB:7C:53:2D:5E:BB:44:49:9A:51:5B:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9RKnWcZemEm7fFMtXrtESZpRW_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/6e4582-dfe9-4146-8c14-8aadf7a9856b/1/PHx_cn3cwOP0zIbd-tSOarri2jU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/6e4582-dfe9-4146-8c14-8aadf7a9856b/1/9RKnWcZemEm7fFMtXrtESZpRW_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.178.99.0/24
IPv6:
2a14:3400::/29
Signature Algorithm: sha256WithRSAEncryption
32:19:17:0f:05:e4:f3:2a:34:d1:bc:ad:6a:ef:59:0b:a5:09:
b3:81:3a:dc:b9:c6:27:91:a6:1c:14:b4:8d:96:9b:9a:81:92:
fd:59:30:28:ee:b9:f9:33:14:eb:2d:70:31:28:84:b3:53:9d:
79:53:5b:4b:bc:0b:8f:d4:c2:70:2a:a6:30:f1:c8:98:dc:21:
96:a2:13:f2:eb:29:ed:a2:ad:77:d3:40:f0:39:18:be:2a:c0:
07:f3:ca:08:10:c7:04:dd:5f:13:e5:d9:eb:11:e1:9a:e8:43:
77:85:ca:b3:17:88:a4:a3:06:4a:f5:bf:d4:cd:6c:5b:ad:46:
10:75:c5:26:0a:14:ee:be:63:e0:03:fc:65:cb:fe:77:62:27:
1b:30:07:99:8e:fb:50:dc:08:aa:55:98:89:05:4c:8b:a3:fe:
5e:a7:5a:28:9f:c6:eb:50:88:d0:f8:7c:0a:21:2a:94:d7:ee:
d1:d9:b3:56:fc:02:c1:20:23:c3:1e:bd:dd:6b:17:2d:ab:6d:
a0:88:9c:d1:74:3c:6d:d1:86:64:10:fe:ce:4b:06:f2:c1:1b:
5d:c5:aa:8f:70:b7:a8:16:aa:4c:f5:cd:ea:d7:8e:14:fd:1b:
b7:3f:56:d8:1b:fe:2a:c2:82:c9:f3:48:05:31:71:c2:cc:f2:
ed:ab:1b:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:10 2025 by rpki-client on console.sobornost.net