Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/d4175d-192c-418c-972f-8ee21b74dd56/1/gUCCgwue9BLXmRHudbp_CT-S1E4.roa
File: gUCCgwue9BLXmRHudbp_CT-S1E4.roa (raw, json)
Hash identifier: HsckQx2i+NylNWZ1QsK+KRtdnqDAtIiyfL8hjBwN8/M=
Subject key identifier: 81:40:82:83:0B:9E:F4:12:D7:99:11:EE:75:BA:7F:09:3F:92:D4:4E
Certificate issuer: /CN=58015cc8da1f1bbf343e26ab208df8bb26fd53ae
Certificate serial: 0195ADD4A7E3AECF609CA471028710C899E3
Authority key identifier: 58:01:5C:C8:DA:1F:1B:BF:34:3E:26:AB:20:8D:F8:BB:26:FD:53:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WAFcyNofG780PiarII34uyb9U64.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/d4175d-192c-418c-972f-8ee21b74dd56/1/gUCCgwue9BLXmRHudbp_CT-S1E4.roa
Signing time: Wed 19 Mar 2025 09:55:49 +0000
ROA not before: Wed 19 Mar 2025 09:55:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 39040
IP address blocks: 194.187.88.0/22 maxlen: 22
2a02:388::/32 maxlen: 32
2a02:388:ffff::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:ad:d4:a7:e3:ae:cf:60:9c:a4:71:02:87:10:c8:99:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58015cc8da1f1bbf343e26ab208df8bb26fd53ae
Validity
Not Before: Mar 19 09:55:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=814082830b9ef412d79911ee75ba7f093f92d44e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:0b:e6:70:ec:4e:2c:91:92:23:02:a8:66:57:
76:91:0d:e4:24:c3:cc:b0:f2:1c:1e:bf:65:42:54:
fc:4b:77:31:b8:5e:d9:48:00:9e:04:76:5b:94:50:
c1:39:d8:13:1d:dd:72:fb:8b:03:66:c3:f1:08:a1:
fe:b3:73:74:e9:9c:ea:db:35:82:b0:7f:68:57:3d:
c6:5e:b9:b4:4f:18:03:d4:6d:a6:12:e8:53:4e:49:
88:01:7e:f2:60:a8:3f:cc:c0:63:e9:4b:dc:ae:d3:
8e:c4:5d:6e:77:32:e2:18:79:a0:33:0c:71:92:ba:
81:c6:67:61:71:e2:88:60:7c:61:22:ea:d8:68:34:
d4:84:74:97:87:53:17:1e:29:ae:9b:27:a6:3e:a0:
99:92:fc:54:ce:ce:12:7c:54:6b:a9:47:1d:79:8f:
ff:46:c3:6f:d6:02:a0:90:bd:4c:ef:e5:57:06:df:
5a:b4:27:df:8d:09:d4:34:81:af:36:e9:3b:c3:e9:
5a:08:7e:47:22:e4:19:13:71:27:c9:8e:ff:6d:74:
a7:ef:5e:b6:8d:33:74:b4:49:24:61:0b:0f:5a:f2:
e0:d5:a6:cf:b0:ab:dd:2f:1d:09:07:cd:bd:cb:58:
35:3e:26:d8:84:d4:09:e2:a8:7b:af:02:e0:8c:98:
d5:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:40:82:83:0B:9E:F4:12:D7:99:11:EE:75:BA:7F:09:3F:92:D4:4E
X509v3 Authority Key Identifier:
keyid:58:01:5C:C8:DA:1F:1B:BF:34:3E:26:AB:20:8D:F8:BB:26:FD:53:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WAFcyNofG780PiarII34uyb9U64.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/d4175d-192c-418c-972f-8ee21b74dd56/1/gUCCgwue9BLXmRHudbp_CT-S1E4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/d4175d-192c-418c-972f-8ee21b74dd56/1/WAFcyNofG780PiarII34uyb9U64.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.187.88.0/22
IPv6:
2a02:388::/32
Signature Algorithm: sha256WithRSAEncryption
73:74:28:33:2c:3a:8e:d1:fc:39:e1:f8:82:6a:d8:c3:48:41:
3f:d3:80:e9:59:9c:33:85:5e:7a:d2:7c:2b:28:57:d9:33:7c:
8d:23:e7:1e:9e:55:7b:66:87:76:e9:4f:1c:b7:0d:e0:f2:eb:
78:bd:2d:9c:4f:c0:70:53:d1:11:4f:2d:96:e5:c1:ed:e9:7b:
7f:54:73:76:e1:b1:3c:0e:1a:1e:26:ef:bc:6f:3d:46:95:f2:
7a:cc:a7:bc:48:b1:43:7d:22:fc:a4:d4:01:40:ac:14:6f:c0:
5b:fc:1c:33:54:40:75:7a:10:cb:35:f7:6b:5c:cb:aa:ba:b8:
ce:c8:72:d1:6c:58:4b:c4:90:10:99:e2:84:d4:a5:c1:0e:58:
40:92:fa:8d:06:ee:0e:dd:e4:93:c8:d4:ca:38:a7:28:27:46:
d5:e7:d1:61:9c:91:a4:b6:c7:54:1e:df:c4:ed:19:37:a7:0b:
50:05:9b:ae:0b:f9:13:a0:75:de:a9:1d:a0:24:9d:a2:79:f7:
56:f8:d4:7a:c3:34:50:a9:b4:98:e7:f8:4a:41:62:3d:28:b4:
11:eb:12:6e:e1:88:83:07:bf:21:f0:7e:f5:df:63:97:b2:e3:
9e:4a:73:ff:14:2d:df:f4:18:90:2c:eb:e2:50:72:ad:8f:7d:
2b:c3:c8:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 00:24:04 2025 by rpki-client on console.sobornost.net