Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/ef9221-c354-4e67-a32f-84e596a3c121/1/Wrm4Xo5M6Od7VmecTT8hFIZ3qpU.roa
File: Wrm4Xo5M6Od7VmecTT8hFIZ3qpU.roa (raw, json)
Hash identifier: VMyIfns1xRX3nJc0aO+48RkMt038/NfSu9JKR70iYqE=
Subject key identifier: 5A:B9:B8:5E:8E:4C:E8:E7:7B:56:67:9C:4D:3F:21:14:86:77:AA:95
Certificate issuer: /CN=39e4059e519e7cad0536bd54d91bc97875644cdb
Certificate serial: 019421B23837BBC970643737E81C2D0BDD17
Authority key identifier: 39:E4:05:9E:51:9E:7C:AD:05:36:BD:54:D9:1B:C9:78:75:64:4C:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OeQFnlGefK0FNr1U2RvJeHVkTNs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/ef9221-c354-4e67-a32f-84e596a3c121/1/Wrm4Xo5M6Od7VmecTT8hFIZ3qpU.roa
Signing time: Wed 01 Jan 2025 11:48:35 +0000
ROA not before: Wed 01 Jan 2025 11:48:35 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 2200
IP address blocks: 145.238.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b2:38:37:bb:c9:70:64:37:37:e8:1c:2d:0b:dd:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39e4059e519e7cad0536bd54d91bc97875644cdb
Validity
Not Before: Jan 1 11:48:35 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5ab9b85e8e4ce8e77b56679c4d3f21148677aa95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:c9:8c:92:35:00:f8:4f:c5:b5:85:83:0a:38:
75:ed:c5:91:fa:0c:82:8d:4e:34:df:50:a8:11:94:
77:8b:1e:5d:0e:34:1c:0b:ac:e9:09:10:03:8c:65:
3b:2d:a3:b9:13:5b:36:fc:3f:14:2f:b8:95:99:5a:
e4:e3:26:64:9f:ee:67:1b:7d:00:ff:fb:b4:42:20:
ed:81:af:4a:a0:41:d1:ce:23:62:fe:d9:4a:e6:17:
ef:12:6f:08:cc:17:4a:b1:1d:56:32:ca:63:95:71:
c1:57:89:a1:7b:88:16:13:ba:ac:f8:53:d3:81:69:
3c:31:3b:ba:d6:e2:10:0a:90:1f:00:95:21:86:74:
b2:f2:23:a9:d6:22:4b:04:b1:0a:bc:2e:e6:8b:a9:
9f:db:8d:d8:d2:19:53:71:08:43:39:aa:16:18:b6:
f6:2f:b7:e1:7e:2e:2a:b7:52:4c:b3:2a:b6:9a:b5:
fe:6c:e0:f2:24:35:ed:e8:a4:a7:bd:a8:3a:37:f6:
2b:99:34:2b:76:a0:4d:75:f1:66:35:6f:7a:aa:36:
e1:ab:b2:15:1e:b9:50:b8:2a:fa:8b:b2:d7:58:47:
12:8c:5a:f2:6d:c1:26:90:a9:e9:61:bd:87:46:c4:
82:09:7c:c5:8f:1b:33:74:6a:56:aa:c2:04:15:f6:
05:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:B9:B8:5E:8E:4C:E8:E7:7B:56:67:9C:4D:3F:21:14:86:77:AA:95
X509v3 Authority Key Identifier:
keyid:39:E4:05:9E:51:9E:7C:AD:05:36:BD:54:D9:1B:C9:78:75:64:4C:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OeQFnlGefK0FNr1U2RvJeHVkTNs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/ef9221-c354-4e67-a32f-84e596a3c121/1/Wrm4Xo5M6Od7VmecTT8hFIZ3qpU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/ef9221-c354-4e67-a32f-84e596a3c121/1/OeQFnlGefK0FNr1U2RvJeHVkTNs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.238.0.0/16
Signature Algorithm: sha256WithRSAEncryption
7f:84:6b:14:b1:bf:45:54:e8:74:b7:77:65:2f:5f:ac:a1:b0:
e6:1c:0e:95:f0:c0:0b:84:33:f4:a7:92:6f:d4:23:af:43:c8:
31:d2:96:0f:44:5e:29:dc:6b:2e:c4:9c:56:1d:19:04:e8:d8:
de:d7:12:b6:dc:16:cc:a7:68:3d:34:1b:39:7b:10:55:04:59:
77:2b:d6:b3:d8:da:a1:01:04:1a:4f:11:22:bf:f3:1b:34:64:
79:f8:72:8c:39:f5:3b:b4:0e:d4:f6:83:59:34:5e:4f:6d:27:
8b:3e:7e:dd:2d:29:27:5d:e6:ef:6a:3a:cb:12:25:aa:a8:95:
2f:e0:f2:a2:3b:df:50:93:8c:07:1b:c8:92:53:40:6d:b7:42:
4e:dc:1a:0b:5e:08:1e:39:25:f4:86:5c:93:5c:49:f1:09:03:
07:5d:84:fa:67:8f:82:38:ba:95:d6:f8:41:29:84:40:2b:de:
7f:3f:26:3a:65:9d:53:6f:db:cd:ea:c4:49:f9:7a:81:fc:87:
49:01:27:bc:e7:24:cb:be:d4:e7:2f:f1:75:18:d6:a9:ec:a4:
23:c5:fc:02:61:35:e4:73:86:d6:97:2b:cd:09:52:82:e5:d0:
29:bd:5e:47:3d:60:3e:33:4d:45:d6:e8:7b:73:8d:c7:1a:50:
8a:c7:b3:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:13 2025 by rpki-client on console.sobornost.net