Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/eaf2e2-1817-40a8-9be8-2507db32c1c4/1/11w9K2dCR0A6XsEVx-Vg9m7G5bM.roa
File: 11w9K2dCR0A6XsEVx-Vg9m7G5bM.roa (raw, json)
Hash identifier: hj3QFv3Y2FaAu9Oijuk6KKEMBTD9UQTUqjejPr1gs7c=
Subject key identifier: D7:5C:3D:2B:67:42:47:40:3A:5E:C1:15:C7:E5:60:F6:6E:C6:E5:B3
Certificate issuer: /CN=88ff4ee623d8fab73c901d0cbdc93a321e9ccfb7
Certificate serial: 0194266BAA26159FFD3B06900429EC129A78
Authority key identifier: 88:FF:4E:E6:23:D8:FA:B7:3C:90:1D:0C:BD:C9:3A:32:1E:9C:CF:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iP9O5iPY-rc8kB0Mvck6Mh6cz7c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/eaf2e2-1817-40a8-9be8-2507db32c1c4/1/11w9K2dCR0A6XsEVx-Vg9m7G5bM.roa
Signing time: Thu 02 Jan 2025 09:49:37 +0000
ROA not before: Thu 02 Jan 2025 09:49:37 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 41509
IP address blocks: 194.145.156.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:aa:26:15:9f:fd:3b:06:90:04:29:ec:12:9a:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88ff4ee623d8fab73c901d0cbdc93a321e9ccfb7
Validity
Not Before: Jan 2 09:49:37 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d75c3d2b674247403a5ec115c7e560f66ec6e5b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:d5:89:25:49:29:a7:7c:2b:64:bc:f5:47:a4:
70:fb:fc:dc:cf:a7:70:99:84:a0:7e:cc:9d:b1:11:
7e:21:69:90:e5:1d:59:9f:31:b3:ba:b7:55:cf:1d:
16:4f:79:1b:c3:b2:53:b5:9e:52:4f:3a:08:c6:92:
50:77:98:df:2a:30:fa:95:33:d2:89:eb:d4:44:a3:
2a:a1:b4:61:b3:85:ee:15:5b:fc:27:42:4a:ff:e0:
5d:8d:a1:11:72:5b:ec:6e:af:3c:f1:b3:6c:38:c8:
07:11:4f:9a:b4:37:bd:d2:b6:82:d5:04:a2:d7:16:
0d:59:b2:58:c0:52:da:f0:d0:b2:65:96:04:fa:ee:
df:76:f8:5e:d3:98:df:80:f0:f4:c8:5c:98:6e:ec:
fe:f1:42:1d:e4:46:7c:49:9c:5c:79:cb:c8:ab:96:
0c:b4:32:7e:95:15:ba:65:d3:52:11:9a:3f:77:7a:
76:38:a1:1a:11:bd:fa:0e:f7:74:b9:bc:95:00:51:
41:64:80:cd:01:d1:d9:9a:31:5d:d7:8b:98:d9:d3:
65:b0:2e:75:d3:ed:aa:f7:1a:25:45:66:f7:c9:08:
62:03:37:35:69:c7:97:cb:34:78:b0:4f:c5:68:88:
df:ff:e2:d5:50:61:00:6f:95:6f:84:bf:d6:09:ae:
31:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:5C:3D:2B:67:42:47:40:3A:5E:C1:15:C7:E5:60:F6:6E:C6:E5:B3
X509v3 Authority Key Identifier:
keyid:88:FF:4E:E6:23:D8:FA:B7:3C:90:1D:0C:BD:C9:3A:32:1E:9C:CF:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iP9O5iPY-rc8kB0Mvck6Mh6cz7c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/eaf2e2-1817-40a8-9be8-2507db32c1c4/1/11w9K2dCR0A6XsEVx-Vg9m7G5bM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/eaf2e2-1817-40a8-9be8-2507db32c1c4/1/iP9O5iPY-rc8kB0Mvck6Mh6cz7c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.145.156.0/24
Signature Algorithm: sha256WithRSAEncryption
54:28:d3:3c:30:28:d9:55:24:3b:5a:d4:a6:8d:b9:91:5d:13:
4d:d1:57:36:63:a8:65:f3:75:65:11:68:88:aa:63:39:84:ab:
da:5f:82:fe:a4:2e:53:11:c2:88:4a:f7:f3:c8:00:07:a3:4d:
15:63:5f:ed:41:86:d9:4a:6b:78:c9:23:ae:a5:11:c3:c8:cd:
c0:65:09:af:a7:7a:e6:4b:46:0a:ff:1c:27:da:f2:e0:a1:74:
c1:a0:5d:86:da:43:34:fc:44:eb:13:0a:55:18:b3:21:56:e7:
8b:43:2e:99:15:79:94:3a:06:98:bd:e8:f7:65:5a:cc:45:36:
47:ca:80:cc:b0:ea:74:ba:42:54:7f:a3:e0:cb:47:5b:ec:c4:
28:ca:d4:65:24:0b:35:7b:99:7c:72:ae:02:d9:5f:73:e4:cd:
d1:80:d3:c2:31:60:6a:ae:d6:e6:c9:f0:46:af:a3:d8:af:47:
d5:d5:f7:bd:51:2b:ab:32:a3:6f:45:bd:76:78:19:af:72:ca:
83:b7:73:62:d4:d9:6e:88:15:fa:51:e9:ab:e3:c4:67:6a:70:
50:69:bf:67:41:71:0c:83:1e:76:ea:50:45:94:86:d0:f0:8b:
fe:51:5f:13:75:fd:25:fa:22:4b:cf:29:3d:49:1d:56:e5:5e:
ea:ff:bf:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:26 2025 by rpki-client on console.sobornost.net