Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/acb956-e1b5-4682-80b8-e7232f8448b0/1/NwkZh_DNuB_iBInY9wDbpyHdLgE.roa
File: NwkZh_DNuB_iBInY9wDbpyHdLgE.roa (raw, json)
Hash identifier: 5w+s5Rk1602R4y1zX8F10ZF0iAVWkGEzyROrjF/5dqE=
Subject key identifier: 37:09:19:87:F0:CD:B8:1F:E2:04:89:D8:F7:00:DB:A7:21:DD:2E:01
Certificate issuer: /CN=877c20737116bc6d5e5b224931cf13dd7f79f95b
Certificate serial: 0194222026AAEF724B208B93B44919E2E3BF
Authority key identifier: 87:7C:20:73:71:16:BC:6D:5E:5B:22:49:31:CF:13:DD:7F:79:F9:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h3wgc3EWvG1eWyJJMc8T3X95-Vs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/acb956-e1b5-4682-80b8-e7232f8448b0/1/NwkZh_DNuB_iBInY9wDbpyHdLgE.roa
Signing time: Wed 01 Jan 2025 13:48:39 +0000
ROA not before: Wed 01 Jan 2025 13:48:39 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 25540
IP address blocks: 185.13.214.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:20:26:aa:ef:72:4b:20:8b:93:b4:49:19:e2:e3:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=877c20737116bc6d5e5b224931cf13dd7f79f95b
Validity
Not Before: Jan 1 13:48:39 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=37091987f0cdb81fe20489d8f700dba721dd2e01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:b9:55:e9:bc:33:96:3c:a8:a5:d2:08:1c:48:
68:6b:3b:e2:ae:94:36:7b:a0:1e:42:86:21:62:c7:
06:c8:a9:13:1e:b9:4f:f0:cc:21:02:13:38:4c:c9:
9b:72:a2:5a:02:7b:02:f8:47:37:43:e0:44:8f:3c:
d9:6f:fa:37:13:55:7a:57:41:2d:29:de:91:0d:0e:
b0:cd:1c:13:f0:bd:bc:88:3f:be:a7:a9:45:2b:f2:
a0:e3:35:55:49:9d:ef:4d:1a:c0:f7:ab:61:8a:ee:
88:91:21:68:49:e7:53:9a:9f:96:89:d0:fa:6f:77:
b5:73:03:ea:63:8a:98:aa:b1:c0:62:1d:bc:dd:e2:
51:0f:59:8f:1b:d1:22:b0:0e:1f:6e:99:90:6b:fc:
cc:07:eb:7c:d9:9a:b9:0f:d5:0d:31:3d:d5:52:06:
ed:53:86:67:98:ef:80:da:13:8d:21:02:e8:d9:4f:
34:16:37:ee:82:94:1a:f3:be:13:6b:ff:60:83:1e:
17:ac:b8:c6:c8:66:d9:d9:8e:03:4d:74:b6:e8:9b:
2f:3d:98:16:0c:03:8f:67:43:0d:64:44:89:44:c5:
c7:b5:50:fe:ff:ab:0b:07:e0:4f:e9:12:bc:b4:00:
d8:f6:a7:10:db:3b:ae:35:9c:e2:69:37:ed:96:cf:
8c:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:09:19:87:F0:CD:B8:1F:E2:04:89:D8:F7:00:DB:A7:21:DD:2E:01
X509v3 Authority Key Identifier:
keyid:87:7C:20:73:71:16:BC:6D:5E:5B:22:49:31:CF:13:DD:7F:79:F9:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h3wgc3EWvG1eWyJJMc8T3X95-Vs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/acb956-e1b5-4682-80b8-e7232f8448b0/1/NwkZh_DNuB_iBInY9wDbpyHdLgE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/acb956-e1b5-4682-80b8-e7232f8448b0/1/h3wgc3EWvG1eWyJJMc8T3X95-Vs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.13.214.0/23
Signature Algorithm: sha256WithRSAEncryption
ae:b1:bf:ef:eb:8e:ad:53:19:8e:67:12:f1:38:c5:a5:88:46:
12:ad:09:bc:14:be:0d:9c:ed:48:96:53:b2:ee:47:13:6a:dc:
9d:62:ec:5a:5e:ad:e8:c3:c1:82:76:e5:5f:2e:c4:38:57:3e:
fa:d7:c0:23:f5:1e:f2:4b:6d:e9:56:d3:37:7d:7b:20:a9:93:
a6:8f:1b:17:ad:cb:64:64:8c:56:1a:dd:65:c6:b6:e2:0f:3d:
1a:63:f0:d8:3e:f0:36:c1:7e:ec:80:c4:65:0b:5f:02:8b:d6:
9a:cf:9d:e1:42:e3:a3:fa:1f:98:37:af:3b:19:9c:48:23:e9:
0e:02:77:3d:32:24:74:fd:0d:e3:a1:52:b9:1b:2d:07:bd:e6:
6c:02:0c:8b:46:4b:50:04:03:97:39:77:62:37:a5:3c:0d:2f:
33:2b:4d:c8:58:2c:c6:58:ae:00:5d:79:09:27:02:7f:89:e9:
c9:c1:72:92:5e:09:46:95:59:e9:56:e9:49:9f:89:4f:66:3f:
74:60:ec:55:86:67:5b:6f:85:eb:1d:3f:e5:c7:de:77:ab:0a:
52:ab:be:d5:7c:90:76:b0:25:64:4d:d7:fe:ed:3a:d2:49:68:
4a:83:8e:37:7b:70:c8:7e:66:42:49:56:47:36:02:ce:8c:11:
50:57:de:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:28 2025 by rpki-client on console.sobornost.net