Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/5d1852-afa8-45c5-a6b7-b5ab78960c6b/1/aOLkUwKlyZCWJaSS1dakY6JU8B8.roa
File: aOLkUwKlyZCWJaSS1dakY6JU8B8.roa (raw, json)
Hash identifier: 9gmA62Oo7ZhqLy8gi4PS0qhVisTPHP1+xk49Xpd1+EQ=
Subject key identifier: 68:E2:E4:53:02:A5:C9:90:96:25:A4:92:D5:D6:A4:63:A2:54:F0:1F
Certificate issuer: /CN=8939abf71eec10c5d90609fca9f34cb85d3d544e
Certificate serial: 019420680D5DA58E5C0EB5EB58F80B0BE1D9
Authority key identifier: 89:39:AB:F7:1E:EC:10:C5:D9:06:09:FC:A9:F3:4C:B8:5D:3D:54:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iTmr9x7sEMXZBgn8qfNMuF09VE4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/5d1852-afa8-45c5-a6b7-b5ab78960c6b/1/aOLkUwKlyZCWJaSS1dakY6JU8B8.roa
Signing time: Wed 01 Jan 2025 05:47:57 +0000
ROA not before: Wed 01 Jan 2025 05:47:57 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 210885
IP address blocks: 87.236.149.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:68:0d:5d:a5:8e:5c:0e:b5:eb:58:f8:0b:0b:e1:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8939abf71eec10c5d90609fca9f34cb85d3d544e
Validity
Not Before: Jan 1 05:47:57 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=68e2e45302a5c9909625a492d5d6a463a254f01f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:be:9b:e4:bd:73:c5:09:91:96:7b:aa:11:e3:
9a:26:64:3c:99:fd:d2:16:02:97:e8:ce:38:29:8d:
83:2d:47:b1:33:d6:12:54:0d:93:ea:f6:bc:2e:d2:
61:52:0a:18:97:72:32:ef:58:e3:ce:79:75:09:d2:
28:2a:b2:f3:54:5e:de:d2:fa:c4:4e:f7:cd:09:3c:
bc:26:82:cc:c3:48:7f:4c:31:39:5d:53:eb:61:a8:
1a:5e:e3:67:e0:b1:f3:65:57:f0:3a:f7:6d:c9:05:
45:5f:d0:02:20:dc:95:49:20:cf:14:35:df:09:c4:
47:75:07:3b:f7:64:a2:23:22:0c:23:0d:0b:0f:d9:
99:e1:25:36:d4:be:a5:11:a4:67:83:9f:65:7b:32:
e4:09:6e:05:a7:54:1e:62:94:e2:de:ec:e9:a5:53:
e6:e3:2c:59:55:4f:c2:01:d0:3f:f2:af:79:d3:bc:
6f:29:f0:f5:00:e0:ea:6b:1d:a3:c6:cb:cc:85:35:
56:52:5a:87:a9:e9:67:04:76:a8:8b:0c:a6:ba:ac:
91:7e:7e:04:ef:0a:de:01:88:12:85:22:38:bf:7e:
b0:78:08:9d:08:25:92:a1:a7:23:89:84:44:5f:45:
05:5a:2e:76:01:04:c1:5b:78:ca:90:df:05:c9:d5:
bd:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:E2:E4:53:02:A5:C9:90:96:25:A4:92:D5:D6:A4:63:A2:54:F0:1F
X509v3 Authority Key Identifier:
keyid:89:39:AB:F7:1E:EC:10:C5:D9:06:09:FC:A9:F3:4C:B8:5D:3D:54:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iTmr9x7sEMXZBgn8qfNMuF09VE4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/5d1852-afa8-45c5-a6b7-b5ab78960c6b/1/aOLkUwKlyZCWJaSS1dakY6JU8B8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/5d1852-afa8-45c5-a6b7-b5ab78960c6b/1/iTmr9x7sEMXZBgn8qfNMuF09VE4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.236.149.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:64:05:43:ae:e4:b3:48:a6:2f:a2:15:7c:a3:3b:00:a7:26:
84:53:55:0a:c9:7f:b6:84:67:c9:ce:1d:27:f4:d9:92:be:83:
1e:2f:aa:d5:80:fd:67:f8:87:51:33:fe:bf:11:33:40:20:94:
0e:5a:3f:b0:c6:48:3f:ad:0c:43:76:a5:b3:aa:35:7a:ca:f8:
9d:7a:d7:69:61:64:12:6b:42:7b:30:2f:e5:60:c6:40:06:7e:
ab:d5:bb:58:5e:3c:b5:34:ec:b8:36:91:71:35:50:92:57:af:
54:7b:31:ef:8b:c9:19:24:df:3f:e5:11:57:11:ae:04:0c:9b:
c5:67:a0:6d:5b:fc:06:f6:9b:d7:9e:6a:1a:8f:b5:c8:97:b0:
ca:a9:44:6c:05:71:97:9f:4c:f9:13:c0:92:82:3e:4d:a1:8c:
61:e5:8f:73:71:f2:91:e3:0a:7f:74:31:a6:83:53:6a:93:40:
06:69:4e:49:13:43:e9:d2:8a:b7:36:71:d7:e9:64:24:f7:33:
7b:00:e2:60:1f:80:af:bb:91:eb:d6:84:dd:05:a5:76:f5:2a:
f3:f5:24:c7:5c:6a:7c:b0:ff:c6:c0:2f:a5:d0:fa:c5:11:39:
77:2a:2d:8e:1c:f7:c5:f7:f0:15:47:60:8b:8d:f7:05:fd:00:
1e:c8:28:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:13 2025 by rpki-client on console.sobornost.net