Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/07ae9e-3d04-45b6-9db0-46935fcc855e/1/dJXQbo6z-3ryGZc7-KlzntCNDPg.roa
File: dJXQbo6z-3ryGZc7-KlzntCNDPg.roa (raw, json)
Hash identifier: dZ1N3sX+9N9ZicyxN/2APG+qgevhxMcEIynl4tsXiwo=
Subject key identifier: 74:95:D0:6E:8E:B3:FB:7A:F2:19:97:3B:F8:A9:73:9E:D0:8D:0C:F8
Certificate issuer: /CN=96f71b2273ab34ed4a5481176ef70fad867ef166
Certificate serial: 0194266BFD220506ED5CD7BC1CC310A0D381
Authority key identifier: 96:F7:1B:22:73:AB:34:ED:4A:54:81:17:6E:F7:0F:AD:86:7E:F1:66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lvcbInOrNO1KVIEXbvcPrYZ-8WY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/07ae9e-3d04-45b6-9db0-46935fcc855e/1/dJXQbo6z-3ryGZc7-KlzntCNDPg.roa
Signing time: Thu 02 Jan 2025 09:49:58 +0000
ROA not before: Thu 02 Jan 2025 09:49:58 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 59885
IP address blocks: 185.152.111.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:fd:22:05:06:ed:5c:d7:bc:1c:c3:10:a0:d3:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96f71b2273ab34ed4a5481176ef70fad867ef166
Validity
Not Before: Jan 2 09:49:58 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7495d06e8eb3fb7af219973bf8a9739ed08d0cf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:0b:fb:c9:ad:4f:f7:5e:98:cb:8b:1f:97:21:
e9:17:74:35:97:c2:00:4e:d1:ef:41:c6:41:d5:38:
ef:ff:12:52:2e:3f:fb:fe:6f:78:11:a7:27:2f:03:
53:a5:d7:fe:20:57:57:7a:d0:ff:67:e2:fd:24:ca:
ab:d6:ba:d2:69:9f:8e:c1:eb:9b:82:42:f1:2e:ca:
31:6f:60:05:07:01:70:2d:9d:45:22:14:73:da:7b:
49:9c:cd:f1:52:f6:9f:dd:e5:3d:cc:be:e8:55:2a:
7a:f3:56:44:ef:05:31:bb:83:9f:8e:3e:95:64:9f:
b7:cd:dc:f0:5f:82:3b:e3:d0:3c:71:ab:ef:ff:2c:
11:9d:d7:e1:67:f3:f0:8d:ef:45:92:40:c1:eb:65:
68:68:37:3e:9d:44:3d:86:c9:95:2b:0f:e3:ec:5d:
46:17:44:18:4f:7d:e8:b1:b2:ba:13:1a:a4:72:ed:
dd:50:91:d8:74:6f:16:c4:4e:25:de:e8:af:bc:a3:
d8:de:57:1c:aa:a7:50:98:91:45:f0:b2:a4:e4:69:
04:57:41:cb:b0:93:a2:86:e1:ec:02:95:41:00:94:
d8:3b:a5:01:e9:e9:2e:3c:3c:ad:40:10:80:70:8e:
08:18:c1:e3:de:17:39:18:38:a1:a6:08:90:3e:6e:
34:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:95:D0:6E:8E:B3:FB:7A:F2:19:97:3B:F8:A9:73:9E:D0:8D:0C:F8
X509v3 Authority Key Identifier:
keyid:96:F7:1B:22:73:AB:34:ED:4A:54:81:17:6E:F7:0F:AD:86:7E:F1:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lvcbInOrNO1KVIEXbvcPrYZ-8WY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/07ae9e-3d04-45b6-9db0-46935fcc855e/1/dJXQbo6z-3ryGZc7-KlzntCNDPg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/07ae9e-3d04-45b6-9db0-46935fcc855e/1/lvcbInOrNO1KVIEXbvcPrYZ-8WY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.152.111.0/24
Signature Algorithm: sha256WithRSAEncryption
77:df:88:c4:74:a5:a4:e8:1e:b7:54:86:80:44:f8:29:ce:6d:
fc:86:ab:77:c7:40:d0:06:1a:55:8a:68:98:00:02:a5:27:7f:
0c:c3:d3:74:a0:ff:97:fc:9c:57:c9:29:05:bd:f8:a9:d7:97:
4f:dc:0c:23:28:f7:d3:50:95:39:78:7a:08:95:5d:1b:a7:41:
dd:e2:a4:3b:ac:8f:8e:b0:af:1a:5e:d9:66:0c:a8:39:2c:8e:
0d:29:91:d3:f6:4f:53:60:8b:8d:20:6e:3e:c8:1e:90:71:22:
fd:ff:f1:e5:66:08:e1:f6:10:27:a9:4b:45:32:cc:83:cc:4c:
84:2c:5d:20:99:79:7e:3e:ed:05:95:32:c5:3f:55:0d:d9:c7:
13:8d:d7:70:37:3a:7a:fd:6a:81:c1:d8:d5:ad:62:64:b6:51:
d9:3a:1e:72:f1:05:0b:08:80:37:1e:ce:2a:dd:70:86:10:65:
b9:7c:70:79:a1:66:e5:10:5e:14:16:e0:6c:ea:45:1e:3a:1c:
54:b7:ba:a5:03:1a:d2:07:1a:f3:2f:ef:32:92:d7:79:fc:4f:
f4:c1:53:42:26:84:6e:77:d9:a6:b0:e4:a8:c2:68:c8:be:a9:
e4:41:08:4c:25:16:06:89:ce:5e:d7:bc:dd:78:65:1f:84:d3:
f4:f8:f2:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:20 2025 by rpki-client on console.sobornost.net