Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/9871ff-3f26-4b94-a464-6cc1d3ea832e/1/gz-wWIVS2Cz_L1AGWWUUNYNpulg.roa
File: gz-wWIVS2Cz_L1AGWWUUNYNpulg.roa (raw, json)
Hash identifier: 85WQbKRe7RSNUw+Vxkm9wdAqfKZR8ED5rSHwiXmN2ss=
Subject key identifier: 83:3F:B0:58:85:52:D8:2C:FF:2F:50:06:59:65:14:35:83:69:BA:58
Certificate issuer: /CN=dee623e2aff7b03afeb94260348c1633b54d9056
Certificate serial: 0194266B70B30CE6EF2A1BB4555ECDD42BB6
Authority key identifier: DE:E6:23:E2:AF:F7:B0:3A:FE:B9:42:60:34:8C:16:33:B5:4D:90:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3uYj4q_3sDr-uUJgNIwWM7VNkFY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/9871ff-3f26-4b94-a464-6cc1d3ea832e/1/gz-wWIVS2Cz_L1AGWWUUNYNpulg.roa
Signing time: Thu 02 Jan 2025 09:49:22 +0000
ROA not before: Thu 02 Jan 2025 09:49:22 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 210021
IP address blocks: 194.127.111.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:70:b3:0c:e6:ef:2a:1b:b4:55:5e:cd:d4:2b:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dee623e2aff7b03afeb94260348c1633b54d9056
Validity
Not Before: Jan 2 09:49:22 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=833fb0588552d82cff2f5006596514358369ba58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:e8:79:d3:95:27:48:d5:5a:f1:38:c8:d6:74:
bd:1f:4f:fd:e5:52:94:6d:6a:e7:46:f2:dd:5b:ea:
b2:3e:d2:b0:f1:84:60:95:ad:e4:3d:1f:bf:1d:00:
9c:14:1c:40:9c:56:3a:b7:93:f2:cb:b1:d4:17:87:
7f:ac:48:f8:17:a9:2d:fe:5c:b6:a3:73:3e:f9:9d:
6e:8f:78:3b:5b:07:5d:85:b5:62:61:06:6c:c6:cd:
8f:11:d5:66:80:e6:93:c3:eb:63:e9:05:b9:91:95:
6e:34:dd:58:ce:37:b8:de:1b:e1:29:9a:b6:40:10:
dc:dc:38:8c:15:2f:27:a6:92:a6:57:25:7b:68:01:
6f:97:b5:c4:76:bc:10:6f:9d:b6:c5:d0:b6:87:17:
82:c3:dc:95:28:4f:de:14:64:09:f9:6f:0f:d7:fd:
5c:57:62:89:c4:e3:51:2e:71:df:1b:3c:63:48:30:
02:d3:9c:76:0a:cf:fe:fb:dc:d7:50:4a:39:21:20:
80:2b:4f:19:70:37:bb:c0:60:7f:d6:72:50:49:b9:
03:58:0a:bc:5f:93:d9:e3:8d:a7:d7:c2:dd:df:0e:
d4:9e:b4:d1:a4:d6:85:66:6d:ac:5e:17:09:00:cb:
ee:37:3d:a2:7f:b1:2f:54:5c:7e:d3:8f:42:a9:16:
53:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:3F:B0:58:85:52:D8:2C:FF:2F:50:06:59:65:14:35:83:69:BA:58
X509v3 Authority Key Identifier:
keyid:DE:E6:23:E2:AF:F7:B0:3A:FE:B9:42:60:34:8C:16:33:B5:4D:90:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3uYj4q_3sDr-uUJgNIwWM7VNkFY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/9871ff-3f26-4b94-a464-6cc1d3ea832e/1/gz-wWIVS2Cz_L1AGWWUUNYNpulg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/9871ff-3f26-4b94-a464-6cc1d3ea832e/1/3uYj4q_3sDr-uUJgNIwWM7VNkFY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.127.111.0/24
Signature Algorithm: sha256WithRSAEncryption
50:c7:d9:e6:10:d9:45:2a:b3:9c:2a:5f:46:5f:05:8d:bd:44:
91:04:13:be:b1:28:e2:b2:9e:28:72:42:fe:9a:cc:f2:82:92:
82:60:14:8c:de:56:00:2b:30:82:10:c2:60:46:da:0c:e1:0f:
04:58:62:df:17:a8:03:84:40:c6:01:cd:09:0b:a1:85:9a:90:
99:c5:1c:40:ba:27:4a:d9:dc:9e:7d:c8:37:24:48:f5:68:08:
81:96:08:ab:d1:e6:72:42:f6:96:60:aa:bd:22:ab:64:19:35:
da:99:46:6e:b9:74:d8:a2:3c:be:68:93:7c:c3:35:d0:d5:be:
6d:35:1b:cc:d6:62:47:26:48:c5:3c:40:29:a7:44:71:bc:bd:
38:81:30:a2:c3:82:fc:ed:65:1b:be:13:9d:d7:a4:67:32:03:
61:6d:1d:5c:ce:3e:cc:27:e7:4c:f1:14:7a:f2:95:b3:45:ee:
5f:71:c1:ae:fa:5e:37:56:e5:de:b9:c0:7c:cf:e8:d7:8d:27:
4c:4c:90:78:2e:01:04:36:22:6b:64:22:27:63:5b:d6:62:8c:
6b:a9:27:43:cb:35:e8:52:c1:c4:aa:da:5a:5c:6c:c7:3f:db:
fa:2b:32:ce:60:f1:58:48:98:6d:0d:17:8e:4d:41:7e:f1:35:
46:29:f8:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 25 22:17:26 2025 by rpki-client on console.sobornost.net