Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/550c39-44a2-431b-933d-ccbf0e5b2add/1/lakVHG3W0xwUWB-wySLMgQJ_pvo.roa
File: lakVHG3W0xwUWB-wySLMgQJ_pvo.roa (raw, json)
Hash identifier: vGuvZzEzVEJozeZlKkwAw1MUHsR6k7X2w8QfYCIWc2E=
Subject key identifier: 95:A9:15:1C:6D:D6:D3:1C:14:58:1F:B0:C9:22:CC:81:02:7F:A6:FA
Certificate issuer: /CN=bb26ccfa0717db9f56aa38b8692ce5dcfa2825e7
Certificate serial: 0194D56447A535AE9E8A06978958E859FB24
Authority key identifier: BB:26:CC:FA:07:17:DB:9F:56:AA:38:B8:69:2C:E5:DC:FA:28:25:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uybM-gcX259Wqji4aSzl3PooJec.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/550c39-44a2-431b-933d-ccbf0e5b2add/1/lakVHG3W0xwUWB-wySLMgQJ_pvo.roa
Signing time: Wed 05 Feb 2025 09:15:06 +0000
ROA not before: Wed 05 Feb 2025 09:15:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 8508
IP address blocks: 155.158.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:d5:64:47:a5:35:ae:9e:8a:06:97:89:58:e8:59:fb:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb26ccfa0717db9f56aa38b8692ce5dcfa2825e7
Validity
Not Before: Feb 5 09:15:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=95a9151c6dd6d31c14581fb0c922cc81027fa6fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:5b:f9:a3:ee:8f:23:37:e0:09:97:67:b1:13:
80:bb:f1:3e:fb:c8:46:bc:71:98:fd:91:d9:06:4c:
19:fc:a9:76:7b:ac:14:7b:f7:66:c7:b8:d5:a5:a8:
38:ec:38:37:6b:7e:14:9b:da:e8:18:a5:42:3d:b0:
88:23:4a:18:dc:b8:af:3e:76:cf:1f:f8:9f:d8:d9:
d7:3f:94:16:48:8d:73:2e:24:67:43:67:45:08:c9:
6f:fb:19:52:30:5d:b9:33:3e:bb:db:11:f1:94:da:
5c:b0:bf:65:61:4b:8e:8d:2f:5a:0f:ce:c3:a7:dc:
f2:6e:9b:cf:77:b4:c8:78:10:95:4e:c6:db:18:b4:
45:f5:68:10:d7:4a:63:00:3b:12:33:a4:63:c5:5f:
84:a2:bb:f9:8b:a1:2b:d8:8c:22:b2:b5:8f:79:77:
95:02:3b:e8:58:a1:50:1f:ff:d8:6c:e2:5d:da:4f:
b7:28:80:aa:11:dd:0b:bc:ec:0a:01:05:29:4b:f1:
c8:64:c8:f7:22:ff:33:3d:83:da:9a:83:a5:9b:b7:
ee:6c:28:18:17:2c:25:6f:50:6f:42:c0:54:27:e8:
84:a4:44:17:9a:92:72:ca:d1:52:d3:2e:f0:8a:14:
00:bd:26:51:a3:4f:82:fc:7a:81:41:20:99:43:cc:
3d:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:A9:15:1C:6D:D6:D3:1C:14:58:1F:B0:C9:22:CC:81:02:7F:A6:FA
X509v3 Authority Key Identifier:
keyid:BB:26:CC:FA:07:17:DB:9F:56:AA:38:B8:69:2C:E5:DC:FA:28:25:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uybM-gcX259Wqji4aSzl3PooJec.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/550c39-44a2-431b-933d-ccbf0e5b2add/1/lakVHG3W0xwUWB-wySLMgQJ_pvo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/550c39-44a2-431b-933d-ccbf0e5b2add/1/uybM-gcX259Wqji4aSzl3PooJec.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
155.158.0.0/16
Signature Algorithm: sha256WithRSAEncryption
a2:02:37:fa:61:f2:fa:4a:22:db:16:54:4a:b5:b3:b1:a7:dd:
d0:97:90:5a:ac:4b:33:6c:a0:4d:ae:7c:6c:e7:73:2b:79:05:
59:ab:59:01:b0:8c:2b:46:b1:70:b0:62:d5:58:1d:d8:69:2d:
fb:ce:03:12:a0:b9:e5:9e:7d:c8:bb:b9:d4:34:47:61:4a:b5:
92:34:91:eb:6f:54:40:08:78:1c:5e:d6:7a:95:7b:1f:1b:fd:
12:9f:5d:0d:0e:f7:66:86:74:ec:6b:71:e3:e5:fb:67:13:ee:
0f:14:73:93:e2:cb:d2:6e:37:52:0b:b8:cb:11:52:5a:1b:6b:
71:1f:ba:dc:28:cc:34:ae:47:f6:f0:b0:63:26:5c:6c:d8:d8:
1a:05:cf:a9:63:f4:23:82:f1:d7:f0:1f:b7:ca:94:25:42:d8:
4c:5f:99:e8:73:20:a2:03:0d:8f:16:0c:e7:7f:bb:2e:b6:4d:
86:82:97:f9:19:6b:af:ff:9b:55:04:0d:63:3b:4f:ab:ed:01:
f6:07:51:37:75:61:4f:7e:2e:52:7a:cf:37:2f:a2:ad:d3:f2:
21:02:a7:d8:63:f1:4b:9a:b5:03:b9:a4:60:02:1a:0b:24:92:
05:24:b9:54:f8:40:b7:dd:c6:62:b5:79:6e:26:16:a2:26:79:
c8:d2:97:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:26 2025 by rpki-client on console.sobornost.net