Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/09bf98-590d-4ad5-9eb3-9b86bffc833c/1/9X3FI4L695l4368WuOp3A3UHD40.roa
File: 9X3FI4L695l4368WuOp3A3UHD40.roa (raw, json)
Hash identifier: HIizMsJnSDQ1/gBW9hYSnkrc5b30cffpDYF6qKaSMIc=
Subject key identifier: F5:7D:C5:23:82:FA:F7:99:78:DF:AF:16:B8:EA:77:03:75:07:0F:8D
Certificate issuer: /CN=56cc7f4ac700bb5ad7f4b21c11111493ff6977a4
Certificate serial: 01942369DEE6FDE852005FA7330E79DE9BE1
Authority key identifier: 56:CC:7F:4A:C7:00:BB:5A:D7:F4:B2:1C:11:11:14:93:FF:69:77:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vsx_SscAu1rX9LIcEREUk_9pd6Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/09bf98-590d-4ad5-9eb3-9b86bffc833c/1/9X3FI4L695l4368WuOp3A3UHD40.roa
Signing time: Wed 01 Jan 2025 19:48:48 +0000
ROA not before: Wed 01 Jan 2025 19:48:48 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 199403
IP address blocks: 185.17.208.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:69:de:e6:fd:e8:52:00:5f:a7:33:0e:79:de:9b:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56cc7f4ac700bb5ad7f4b21c11111493ff6977a4
Validity
Not Before: Jan 1 19:48:48 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f57dc52382faf79978dfaf16b8ea770375070f8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:c6:0c:78:ac:5a:93:6b:b7:d7:fa:61:24:e1:
46:a3:24:55:84:38:81:f0:30:fa:50:3d:ba:ba:e2:
0d:3f:82:4e:d4:bd:dd:88:63:e2:86:e2:36:99:5f:
0e:69:c2:cd:08:48:0a:c4:2a:b0:53:36:26:78:c7:
a0:96:78:a0:58:d0:8b:c6:38:04:97:38:28:4d:f8:
22:f7:99:8f:91:99:56:3c:88:0b:64:39:3b:53:44:
ec:e9:25:5e:b9:45:fb:ec:96:df:ca:da:e8:e9:a9:
1f:3f:a5:fe:50:be:19:c9:0d:d9:2f:a1:ce:59:3e:
9e:b4:8d:7c:14:ae:cd:07:90:49:94:6e:07:76:41:
23:67:66:10:0b:99:78:59:47:81:84:c1:36:dd:c4:
60:e6:34:a8:89:db:4f:31:b6:1b:c5:44:d8:c2:a0:
76:f0:24:ce:d1:a6:b9:f7:e8:29:f9:f9:7d:3b:52:
6b:31:8c:15:f8:74:a5:02:7d:f8:d5:96:98:aa:42:
e0:63:94:e4:08:18:d1:5c:f6:74:06:84:e7:0d:65:
82:76:85:c4:d4:e7:ad:76:11:74:3d:30:27:46:f0:
23:fb:72:83:68:ef:1c:aa:7e:5a:bd:01:54:72:c2:
02:3f:d1:59:49:ea:73:92:38:e1:5e:28:be:c3:7e:
cb:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:7D:C5:23:82:FA:F7:99:78:DF:AF:16:B8:EA:77:03:75:07:0F:8D
X509v3 Authority Key Identifier:
keyid:56:CC:7F:4A:C7:00:BB:5A:D7:F4:B2:1C:11:11:14:93:FF:69:77:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vsx_SscAu1rX9LIcEREUk_9pd6Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/09bf98-590d-4ad5-9eb3-9b86bffc833c/1/9X3FI4L695l4368WuOp3A3UHD40.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/09bf98-590d-4ad5-9eb3-9b86bffc833c/1/Vsx_SscAu1rX9LIcEREUk_9pd6Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.17.208.0/22
Signature Algorithm: sha256WithRSAEncryption
36:13:37:6e:5c:d0:97:2e:21:95:c7:08:b6:67:b7:2d:5a:fd:
75:48:59:08:23:26:b8:a2:f2:b9:53:24:86:89:e5:de:38:72:
80:75:54:dc:e2:c4:77:04:c1:7a:9c:3f:69:b0:f3:f3:c0:c5:
20:41:f8:9e:62:75:38:ea:31:f1:87:71:70:84:b4:5b:75:cc:
64:5f:57:a7:3d:d9:79:f1:aa:f7:01:15:57:73:67:c6:5e:ef:
d5:7a:8b:97:dd:42:eb:60:73:ad:f5:a5:64:aa:b8:72:42:ce:
70:2d:7d:f4:f2:db:11:c5:22:f2:8b:8e:c7:ef:04:5c:93:d1:
64:cc:e7:f7:c1:57:ce:24:f4:d7:d4:7f:e4:c3:22:5d:18:86:
c3:d0:57:6e:b0:d3:8e:c9:f5:fb:7a:0b:ab:f5:0b:2e:1b:16:
93:02:70:1e:92:d7:0a:2e:f5:d0:66:b5:c0:25:e7:d4:0e:dc:
e8:f5:45:71:34:38:5c:ce:ec:a0:76:ef:e2:11:53:dc:9f:ba:
3c:85:72:a8:b6:41:af:1a:00:7e:7c:6c:59:05:ba:69:c8:8d:
74:b3:b7:85:01:b7:b1:e4:91:9d:2f:af:82:db:ef:f5:e2:fc:
e5:dc:81:31:c4:c7:6d:1d:f0:21:3a:5c:a5:77:af:21:fe:bf:
8f:b6:06:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jan 22 17:25:51 2025 by rpki-client on console.sobornost.net