Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/28d600-a869-4ab1-9b2e-446019966a19/1/iOtyAgFkq9KjDryYtxSf-6c3wlc.roa
File: iOtyAgFkq9KjDryYtxSf-6c3wlc.roa (raw, json)
Hash identifier: Kj30r5ul8bTH9OFgdr0KBvhjQH9UprffsicG1Hxoghk=
Subject key identifier: 88:EB:72:02:01:64:AB:D2:A3:0E:BC:98:B7:14:9F:FB:A7:37:C2:57
Certificate issuer: /CN=e0574c2878d6b536139b895f08c9c6db18e12a9b
Certificate serial: 019423D710B72B73B91CF68932BF0C0E9E4F
Authority key identifier: E0:57:4C:28:78:D6:B5:36:13:9B:89:5F:08:C9:C6:DB:18:E1:2A:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4FdMKHjWtTYTm4lfCMnG2xjhKps.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/28d600-a869-4ab1-9b2e-446019966a19/1/iOtyAgFkq9KjDryYtxSf-6c3wlc.roa
Signing time: Wed 01 Jan 2025 21:48:04 +0000
ROA not before: Wed 01 Jan 2025 21:48:04 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 56465
IP address blocks: 94.124.165.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:10:b7:2b:73:b9:1c:f6:89:32:bf:0c:0e:9e:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0574c2878d6b536139b895f08c9c6db18e12a9b
Validity
Not Before: Jan 1 21:48:04 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=88eb72020164abd2a30ebc98b7149ffba737c257
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:f3:6d:67:21:5f:e2:8c:04:d2:76:1a:e2:23:
10:e9:a9:b9:15:e3:03:ca:30:40:c2:ce:07:ae:f5:
03:33:fd:9a:c5:e4:8a:6d:7c:84:13:a8:c7:0b:f6:
ab:38:59:d6:20:7f:54:15:46:e4:56:63:71:43:e8:
cb:e7:15:73:3e:93:50:84:ac:5f:2d:9d:01:56:36:
00:83:e2:38:bb:7d:f3:4d:77:39:27:fd:41:cd:25:
0e:9f:f1:ac:9b:0a:53:7e:87:d1:91:72:18:dc:39:
90:f3:5a:11:22:ea:1b:d2:d7:1a:28:ef:85:e1:90:
64:b1:13:46:58:3b:36:b2:6d:0d:91:e0:9b:b6:5b:
96:c9:de:5a:c4:7a:8f:31:6c:ab:18:a2:7e:de:90:
f0:25:ba:cf:0c:04:0e:ff:04:37:2f:53:ee:19:75:
3d:f2:74:0f:6e:ea:2a:3f:4d:d3:37:ee:32:5d:b5:
cb:43:47:2f:4c:20:26:11:35:fd:55:3f:0b:41:da:
1f:3c:d0:17:e3:05:85:94:8d:76:10:63:b1:f6:d9:
2d:e3:7a:29:0f:6c:bc:35:ed:53:9d:22:11:7a:e7:
4b:f8:94:78:9b:b2:df:ef:c1:70:0d:8b:39:bd:30:
5b:e7:0b:33:20:54:ce:ce:f2:94:6a:e0:a4:22:d2:
42:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:EB:72:02:01:64:AB:D2:A3:0E:BC:98:B7:14:9F:FB:A7:37:C2:57
X509v3 Authority Key Identifier:
keyid:E0:57:4C:28:78:D6:B5:36:13:9B:89:5F:08:C9:C6:DB:18:E1:2A:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4FdMKHjWtTYTm4lfCMnG2xjhKps.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/28d600-a869-4ab1-9b2e-446019966a19/1/iOtyAgFkq9KjDryYtxSf-6c3wlc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/28d600-a869-4ab1-9b2e-446019966a19/1/4FdMKHjWtTYTm4lfCMnG2xjhKps.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.124.165.0/24
Signature Algorithm: sha256WithRSAEncryption
86:f9:20:3a:71:d1:24:b4:45:fb:8d:bd:db:78:39:36:ef:36:
f1:57:c6:19:08:d5:4e:b0:c9:22:96:7d:2b:6d:bd:96:8c:c2:
78:95:6d:c6:2c:e4:66:5e:45:2f:13:fc:f9:96:90:09:64:fa:
3c:d9:39:92:1b:9b:74:7d:9c:6b:26:ca:06:ac:86:45:96:6b:
3f:a7:09:d3:5d:b5:c2:2a:67:38:73:72:70:0e:1e:99:8f:be:
5e:6b:cc:5c:e6:b6:34:bb:0c:dc:2f:71:93:9d:0d:e0:30:cf:
62:fb:0e:15:2b:23:d3:88:dc:4f:22:8a:f5:7c:8a:45:81:8a:
86:db:c5:d6:82:b9:97:cb:c7:f1:2f:cc:1d:ed:23:07:72:07:
7a:57:50:c0:86:91:65:6b:cc:d0:45:1b:64:a8:ce:45:6e:fa:
df:ca:e5:7a:61:b0:33:39:33:91:7c:cd:8e:f8:48:52:5e:73:
5a:19:d8:04:62:e7:ce:2c:c8:5c:dc:e7:40:b2:e5:5b:7f:7d:
51:fb:da:88:e9:b2:72:73:c4:50:ab:80:39:c6:d5:54:a5:86:
eb:fc:ae:62:c8:cc:33:11:61:45:21:40:48:6e:71:77:99:10:
d1:99:fb:78:1e:32:8e:84:8e:42:02:4b:c4:ad:75:48:f6:64:
23:4c:f6:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:31 2025 by rpki-client on console.sobornost.net