Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/92f56e-a6a9-492f-9828-1205fe4ce361/1/XR5EtNSJMICq3YbRtKFluRtEWv4.roa
File: XR5EtNSJMICq3YbRtKFluRtEWv4.roa (raw, json)
Hash identifier: zdpy5fa6FzFGRXkI56ldRGEVpTT7+e5p/QUx0x6zPj4=
Subject key identifier: 5D:1E:44:B4:D4:89:30:80:AA:DD:86:D1:B4:A1:65:B9:1B:44:5A:FE
Certificate issuer: /CN=965e0880b3c7bd0b90a64c244e2fa1cf0d37d072
Certificate serial: 0194228E41EB282F15CF3154801B21E456C1
Authority key identifier: 96:5E:08:80:B3:C7:BD:0B:90:A6:4C:24:4E:2F:A1:CF:0D:37:D0:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ll4IgLPHvQuQpkwkTi-hzw030HI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/92f56e-a6a9-492f-9828-1205fe4ce361/1/XR5EtNSJMICq3YbRtKFluRtEWv4.roa
Signing time: Wed 01 Jan 2025 15:48:55 +0000
ROA not before: Wed 01 Jan 2025 15:48:55 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 202345
IP address blocks: 185.201.176.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8e:41:eb:28:2f:15:cf:31:54:80:1b:21:e4:56:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=965e0880b3c7bd0b90a64c244e2fa1cf0d37d072
Validity
Not Before: Jan 1 15:48:55 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5d1e44b4d4893080aadd86d1b4a165b91b445afe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:6c:ea:89:02:8e:be:95:20:9e:c1:e5:ab:27:
b6:af:c1:9a:e1:17:8a:9d:fb:fc:f2:bf:fc:45:19:
07:fc:10:26:48:e9:97:7c:73:0c:b5:99:27:8f:48:
0a:a1:4a:74:be:3e:e5:c2:49:e4:fb:4e:39:9d:87:
f5:73:c2:68:a9:8b:bf:ad:dd:cf:d8:73:ff:a0:61:
4d:fb:ec:91:37:92:2e:81:e6:79:15:b6:84:91:f3:
fd:bc:09:f3:3e:a7:59:c2:bb:a4:ae:bc:2d:27:5e:
e6:7f:e1:b8:aa:a1:d7:4e:db:11:20:22:77:1c:9e:
f3:f5:37:de:17:c0:52:a2:e5:a9:75:4f:e7:d5:db:
fc:03:80:bd:85:e4:7b:88:d0:26:03:ed:12:f2:59:
49:93:6d:c8:9f:45:2b:ce:9e:32:95:74:f2:b9:0a:
bd:6c:38:17:12:6d:25:1d:f4:2c:2e:05:1d:09:c3:
ba:5b:3e:bb:bf:e1:75:81:86:b5:a6:47:ea:3c:b5:
1c:1d:de:31:0d:9a:93:2b:20:1e:dd:3d:82:96:76:
c6:bc:1e:b7:80:b4:21:26:dc:a6:48:fa:df:06:9d:
b8:bd:10:3d:0c:79:79:d1:a4:65:a4:3c:40:b4:23:
82:38:ae:e2:d2:eb:a6:9e:30:e4:ea:80:1f:8f:43:
5d:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:1E:44:B4:D4:89:30:80:AA:DD:86:D1:B4:A1:65:B9:1B:44:5A:FE
X509v3 Authority Key Identifier:
keyid:96:5E:08:80:B3:C7:BD:0B:90:A6:4C:24:4E:2F:A1:CF:0D:37:D0:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ll4IgLPHvQuQpkwkTi-hzw030HI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/92f56e-a6a9-492f-9828-1205fe4ce361/1/XR5EtNSJMICq3YbRtKFluRtEWv4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/92f56e-a6a9-492f-9828-1205fe4ce361/1/ll4IgLPHvQuQpkwkTi-hzw030HI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.201.176.0/22
Signature Algorithm: sha256WithRSAEncryption
74:20:42:87:cb:0a:ee:83:71:32:8c:2e:26:b8:ef:14:5e:bf:
11:fd:2d:e4:8a:1c:8e:26:b9:c3:4d:1a:60:df:df:c6:a7:79:
82:86:39:96:3d:e6:7a:51:de:1b:f9:e4:37:71:c2:e3:f4:1f:
c6:e3:af:fe:ba:d5:1d:db:7d:f9:9f:6e:3f:8c:79:d5:a5:71:
29:76:7a:a1:9d:6e:2e:bd:19:54:95:e6:f1:83:f7:2c:59:75:
cd:09:9e:e8:f7:f5:c7:c6:66:8c:37:e6:bb:3b:d7:a7:85:90:
df:f5:57:e1:3d:0d:26:17:0b:c6:8f:b6:33:3c:6f:eb:97:3f:
cf:bd:b2:09:85:d2:7f:f4:bd:b7:69:5d:48:49:51:52:4c:2e:
77:3a:70:89:21:99:62:65:be:47:b2:7c:85:f5:7f:0a:1f:aa:
ab:17:f8:58:0e:ad:2a:a0:c2:0f:fb:5e:5a:19:dd:a2:ff:54:
a1:11:57:b9:dd:4c:36:d1:d2:f5:06:ff:11:66:02:d5:a9:bd:
f3:ac:6a:3b:2b:f9:2b:9d:30:2a:29:55:ef:8b:eb:6b:11:7d:
03:6a:f0:5f:27:a8:f5:45:43:87:10:13:08:2c:e2:e3:ef:e8:
a3:a1:65:cd:d2:aa:db:d3:8f:47:cd:44:36:22:eb:c6:34:f8:
5c:f4:75:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 8 04:56:02 2025 by rpki-client on console.sobornost.net