Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/V06h50tDruiBUg9uiKF_DSq52w8.roa
File: V06h50tDruiBUg9uiKF_DSq52w8.roa (raw, json)
Hash identifier: A6FA8GQqXA3RMWxT5r25HFVTJrUQ2PZEYKc6YcmeWfw=
Subject key identifier: 57:4E:A1:E7:4B:43:AE:E8:81:52:0F:6E:88:A1:7F:0D:2A:B9:DB:0F
Certificate issuer: /CN=dd85dc6b6143a17feb49820ea520048958f48adc
Certificate serial: 0194258F09A3076D0C58908F55429F557F15
Authority key identifier: DD:85:DC:6B:61:43:A1:7F:EB:49:82:0E:A5:20:04:89:58:F4:8A:DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3YXca2FDoX_rSYIOpSAEiVj0itw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/V06h50tDruiBUg9uiKF_DSq52w8.roa
Signing time: Thu 02 Jan 2025 05:48:38 +0000
ROA not before: Thu 02 Jan 2025 05:48:38 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211928
IP address blocks: 83.242.107.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:09:a3:07:6d:0c:58:90:8f:55:42:9f:55:7f:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd85dc6b6143a17feb49820ea520048958f48adc
Validity
Not Before: Jan 2 05:48:38 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=574ea1e74b43aee881520f6e88a17f0d2ab9db0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:00:6a:a0:cd:8f:10:22:9b:a5:b9:9b:0a:5b:
95:02:29:46:fa:0f:b8:15:e2:4c:dc:dd:ee:fa:49:
3e:a5:3b:a5:4e:96:05:de:85:31:5f:b5:65:e9:65:
b8:62:37:1e:24:c0:2d:40:e7:8c:70:1a:ef:61:70:
31:bb:aa:15:41:f8:7e:49:0f:f0:71:8c:ca:b5:4b:
08:f0:51:96:b6:7e:2c:6f:b7:c6:02:5c:14:dd:d6:
e4:18:61:e3:9f:f1:eb:65:9e:d0:43:3d:f2:f9:c7:
1e:c6:a0:7d:73:a7:ec:99:83:ec:51:a6:f4:74:1c:
0e:26:25:5a:be:c1:0d:25:c9:bf:fb:46:61:9f:76:
93:b7:a0:bc:01:6a:a9:6e:bf:4f:d2:07:c3:34:81:
d4:de:63:e7:8b:a2:c0:15:74:b0:52:ce:c0:bd:4d:
b4:81:b2:c6:be:eb:9e:64:ac:b2:8a:a2:47:e5:05:
bd:b4:bd:d6:e3:da:9e:02:be:3c:e1:fb:18:e8:66:
15:6c:b6:a8:76:12:78:c7:fa:e6:e7:90:49:6f:a2:
ee:e3:01:d8:f3:c1:b9:de:e5:0b:5a:3a:40:3f:ca:
a9:b8:27:3f:7a:39:76:49:2b:f9:1c:51:69:d8:4e:
35:71:1e:d3:d5:a4:27:e3:d1:7f:a6:30:3c:04:30:
55:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:4E:A1:E7:4B:43:AE:E8:81:52:0F:6E:88:A1:7F:0D:2A:B9:DB:0F
X509v3 Authority Key Identifier:
keyid:DD:85:DC:6B:61:43:A1:7F:EB:49:82:0E:A5:20:04:89:58:F4:8A:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3YXca2FDoX_rSYIOpSAEiVj0itw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/V06h50tDruiBUg9uiKF_DSq52w8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.242.107.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:b6:e4:e8:10:5d:d8:6a:c9:7f:57:d1:08:ea:86:88:0b:0f:
0c:41:a0:a4:7b:02:e2:62:91:70:fe:8e:ab:02:0a:79:b6:f4:
e6:f5:4e:89:53:bb:e1:74:88:5a:16:47:99:20:6d:59:a3:2a:
a7:91:94:60:10:50:f2:ae:94:83:31:a0:d6:35:69:68:e1:6a:
63:b6:8f:51:fe:cc:4d:5f:34:8f:ec:0c:78:47:3d:49:69:42:
dd:1e:6b:f9:5e:fa:a2:ff:9d:b3:5e:f5:cb:b4:36:47:18:bc:
4c:b7:15:f0:02:a5:1b:4b:2d:65:ca:7b:80:0b:ef:ea:52:33:
ec:81:f6:fd:08:39:31:75:63:27:58:25:90:68:ad:12:5e:45:
d6:52:4b:0f:0d:80:41:32:43:90:89:17:4f:de:65:9b:37:99:
77:f7:7a:5f:15:ce:72:ec:a6:d4:35:3e:84:d3:f0:c1:d3:a9:
f1:a7:92:12:d3:ec:de:b6:e3:9c:a1:ad:89:d5:a2:49:35:32:
d3:94:90:1b:38:40:4b:ef:d7:2f:ca:a5:c8:9f:5e:bc:16:b1:
07:c6:3e:72:00:78:fe:2e:28:ae:7f:c6:8a:58:32:d3:43:08:
65:66:f5:29:89:9e:5c:52:b1:6d:64:8c:70:c2:8e:ba:4b:3f:
3c:10:b3:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:14 2025 by rpki-client on console.sobornost.net