Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/381ecc-9d75-41ba-85f6-17693e7ea67a/1/1-50fUTEZMsqAfXKRVrjaJClUTPo.roa
File: 1-50fUTEZMsqAfXKRVrjaJClUTPo.roa (raw, json)
Hash identifier: SmVCW5SnXSQgzJ45PrQg5gb9ODVy5PLQWa7gK9vYWEc=
Subject key identifier: FB:9D:1F:51:31:19:32:CA:80:7D:72:91:56:B8:DA:24:29:54:4C:FA
Certificate issuer: /CN=2c3963ba2aae5abd38a6eed09da985611f1b5021
Certificate serial: 0194274842014DFD19904964AA9D41CF17BC
Authority key identifier: 2C:39:63:BA:2A:AE:5A:BD:38:A6:EE:D0:9D:A9:85:61:1F:1B:50:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LDljuiquWr04pu7QnamFYR8bUCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/381ecc-9d75-41ba-85f6-17693e7ea67a/1/1-50fUTEZMsqAfXKRVrjaJClUTPo.roa
Signing time: Thu 02 Jan 2025 13:50:34 +0000
ROA not before: Thu 02 Jan 2025 13:50:34 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 204392
IP address blocks: 78.159.88.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:42:01:4d:fd:19:90:49:64:aa:9d:41:cf:17:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2c3963ba2aae5abd38a6eed09da985611f1b5021
Validity
Not Before: Jan 2 13:50:34 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=fb9d1f51311932ca807d729156b8da2429544cfa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:d3:f1:97:1b:e9:99:f0:8a:2c:87:ff:7c:c5:
61:eb:f4:22:e8:5f:fc:11:ec:6b:87:3e:c4:a7:44:
a0:59:d8:c4:3b:2f:9a:3d:a4:fd:ae:cb:2e:e0:64:
c0:6d:00:cc:ee:0f:5a:a0:62:15:7b:26:bf:c5:72:
f6:e6:d8:be:55:1a:47:25:89:d1:bf:53:5f:08:c7:
bd:08:ed:47:3d:2a:8a:f1:94:52:0b:49:91:68:e2:
5f:50:98:fb:fe:0f:29:a7:41:56:af:c0:40:35:0c:
08:4d:a0:bf:78:0a:5b:98:15:bd:ab:ce:0a:7f:3f:
fd:75:21:cd:65:1b:45:57:cc:9e:7f:20:3b:5c:3d:
11:61:e0:dc:47:10:48:b7:22:f8:ab:e5:ca:7e:4d:
93:5f:59:c2:1d:03:f7:b8:51:c5:40:0b:71:c5:be:
db:2e:38:ee:25:1e:c9:c0:e9:99:23:1c:bf:70:76:
a7:38:83:35:80:38:43:2e:af:95:8f:27:26:bd:4f:
a4:62:ad:ac:db:0e:aa:fc:05:f6:80:29:78:7d:ca:
cb:0d:82:89:f3:a5:59:bd:d9:f1:3f:c0:6a:69:18:
f9:bb:3d:31:1e:ca:b6:f2:85:43:76:ff:9c:b1:81:
ee:66:31:9f:2b:83:63:34:d3:b5:3e:5c:1f:41:25:
bf:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:9D:1F:51:31:19:32:CA:80:7D:72:91:56:B8:DA:24:29:54:4C:FA
X509v3 Authority Key Identifier:
keyid:2C:39:63:BA:2A:AE:5A:BD:38:A6:EE:D0:9D:A9:85:61:1F:1B:50:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LDljuiquWr04pu7QnamFYR8bUCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/381ecc-9d75-41ba-85f6-17693e7ea67a/1/1-50fUTEZMsqAfXKRVrjaJClUTPo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/381ecc-9d75-41ba-85f6-17693e7ea67a/1/LDljuiquWr04pu7QnamFYR8bUCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.159.88.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:cf:84:e1:78:65:b7:fe:4a:1f:98:f3:39:12:f3:ab:41:78:
b2:ad:5b:83:68:a1:03:62:e6:6e:f8:1d:e5:04:5c:7c:b0:2d:
c7:62:a7:e7:77:e9:f3:de:60:d5:5e:1c:57:61:3c:a2:2e:00:
5f:87:7b:27:66:9f:d8:1d:e0:c9:79:3b:b3:3d:ef:f7:49:2e:
5b:66:2b:4a:77:45:ab:b2:36:46:14:aa:2a:70:fa:9a:1b:3b:
a1:62:74:6c:3f:d0:6f:cb:a8:57:ed:9c:55:b7:84:10:17:8b:
1b:c0:fb:e2:b5:0c:21:23:71:f6:ee:85:58:7d:52:39:dc:5f:
99:e1:c9:05:0f:0c:8d:04:b8:91:76:94:8c:b1:45:d5:45:ab:
49:bb:0f:8d:26:b7:c6:49:c4:d4:77:21:10:4b:ca:03:41:d3:
27:98:63:83:e4:ea:d6:43:0f:70:b2:db:22:b7:21:87:ef:03:
78:62:7f:01:56:b8:d9:8e:23:00:c4:de:06:18:5a:70:2e:15:
17:42:dd:88:92:88:2a:29:63:8f:e7:ae:e8:03:bd:6e:cf:00:
ff:09:1b:70:48:30:a2:05:9a:9a:39:f5:91:5e:29:b2:7b:77:
9e:5b:f3:9e:31:ff:ed:78:b3:13:0e:6d:72:1f:ed:70:7f:de:
bb:fe:a8:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:26 2025 by rpki-client on console.sobornost.net