Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/9098fd-7dc3-4e12-b893-fd22df3b57f6/1/WFk1Sbl9ffKO0_c5-wWqDgx_UdY.roa
File: WFk1Sbl9ffKO0_c5-wWqDgx_UdY.roa (raw, json)
Hash identifier: 17TQJSkjsNV4kLocHOeLmKp8frraMCHjxrwGJ2DZ/TA=
Subject key identifier: 58:59:35:49:B9:7D:7D:F2:8E:D3:F7:39:FB:05:AA:0E:0C:7F:51:D6
Certificate issuer: /CN=cb952f9c339cabd14234d00c84a252d7ec71a2a2
Certificate serial: 0194221F895FB9EA0A0E548768BC79CBD6F4
Authority key identifier: CB:95:2F:9C:33:9C:AB:D1:42:34:D0:0C:84:A2:52:D7:EC:71:A2:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y5UvnDOcq9FCNNAMhKJS1-xxoqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/9098fd-7dc3-4e12-b893-fd22df3b57f6/1/WFk1Sbl9ffKO0_c5-wWqDgx_UdY.roa
Signing time: Wed 01 Jan 2025 13:47:59 +0000
ROA not before: Wed 01 Jan 2025 13:47:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 202634
IP address blocks: 212.5.51.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:89:5f:b9:ea:0a:0e:54:87:68:bc:79:cb:d6:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb952f9c339cabd14234d00c84a252d7ec71a2a2
Validity
Not Before: Jan 1 13:47:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=58593549b97d7df28ed3f739fb05aa0e0c7f51d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:f5:2b:f2:89:d7:10:bc:57:6c:a7:a5:02:a9:
29:28:17:ca:14:5b:05:69:b5:ac:79:ff:45:ed:a7:
55:86:82:4f:04:93:38:b6:7f:9c:8a:a0:a6:6b:f0:
c5:72:7d:df:3d:4f:42:c6:9c:85:b3:05:de:80:69:
a4:13:92:1b:f8:c2:00:1e:f5:9c:70:1b:a9:10:7c:
f7:22:57:d8:92:36:d2:62:f5:81:f5:5c:e3:5b:d8:
be:78:03:ea:89:36:59:98:9b:5f:f9:d3:67:0f:28:
34:88:bb:85:6f:79:07:74:bb:67:3d:04:d5:df:45:
3a:3a:2e:6a:89:01:58:9d:d9:75:7a:10:83:a2:be:
5c:00:c0:4b:e4:5f:a5:e7:d6:8f:76:07:53:29:3d:
66:e1:0a:af:00:ae:5d:2b:8f:45:51:c0:07:91:4f:
e7:f2:8d:e6:ac:5d:d4:b4:29:01:56:9e:1b:2b:51:
cf:0c:20:21:37:92:5e:68:3e:48:e6:75:3e:93:63:
7f:6c:f2:a9:2e:da:6d:ac:ae:9f:48:09:43:b1:35:
47:f8:d5:7f:d7:05:b3:0c:02:f8:03:17:7c:7f:78:
4d:d2:48:9c:fe:43:6f:4b:2a:63:48:5f:f6:ff:97:
7d:3b:cb:78:3c:23:8c:bf:35:2d:f3:ff:3f:85:01:
10:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:59:35:49:B9:7D:7D:F2:8E:D3:F7:39:FB:05:AA:0E:0C:7F:51:D6
X509v3 Authority Key Identifier:
keyid:CB:95:2F:9C:33:9C:AB:D1:42:34:D0:0C:84:A2:52:D7:EC:71:A2:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y5UvnDOcq9FCNNAMhKJS1-xxoqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/9098fd-7dc3-4e12-b893-fd22df3b57f6/1/WFk1Sbl9ffKO0_c5-wWqDgx_UdY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/9098fd-7dc3-4e12-b893-fd22df3b57f6/1/y5UvnDOcq9FCNNAMhKJS1-xxoqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.5.51.0/24
Signature Algorithm: sha256WithRSAEncryption
11:15:fd:31:bf:96:9f:7b:25:06:77:c2:26:be:cf:0c:bc:14:
b5:b6:79:da:09:c2:66:b0:24:1b:69:1c:51:d6:9a:a1:7a:14:
4d:b3:a6:22:70:5b:0d:0d:c4:d0:ce:59:e1:f1:9c:ee:14:7a:
9b:31:3c:25:2b:0d:cd:dd:9b:6d:15:b6:1e:90:50:97:90:a0:
bc:b1:f1:c3:1d:43:e3:aa:62:48:67:36:fd:ea:39:39:d0:32:
ea:0f:7c:d7:9a:f5:d7:6e:e9:04:d6:82:40:fb:6d:79:45:bf:
30:5b:4a:87:c2:85:72:bb:3f:29:ac:b4:e9:25:bf:b1:ec:ca:
20:6f:a4:a9:38:e0:a2:00:03:1f:f5:3b:f3:05:97:59:9e:72:
2e:73:f3:9f:05:a6:57:e2:4c:3f:3c:26:a7:84:5d:b2:31:af:
16:a3:b5:57:81:ad:a1:4b:b2:24:11:f3:85:41:d4:b5:f8:91:
e9:34:53:bc:32:52:37:2b:72:61:7d:36:af:28:f7:00:12:e5:
c5:5d:f1:57:6b:92:8a:99:a3:0b:c7:42:ea:34:16:ed:a7:2f:
14:25:a0:eb:7f:a8:6f:4b:61:1c:f2:0e:59:3e:00:18:80:8a:
4e:98:fe:06:92:1a:70:ac:50:56:27:f9:89:86:33:ed:9c:03:
2b:32:a7:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:32 2025 by rpki-client on console.sobornost.net