Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/c55fdf-a68a-4aa0-b8c5-7f2333604997/1/7usS4n2wTmwQKN_FfLFrT2gzTes.roa
File: 7usS4n2wTmwQKN_FfLFrT2gzTes.roa (raw, json)
Hash identifier: rmvLzeLSfvnfViQvQG0evozZFVJcIY19+X8a4fI9x4Q=
Subject key identifier: EE:EB:12:E2:7D:B0:4E:6C:10:28:DF:C5:7C:B1:6B:4F:68:33:4D:EB
Certificate issuer: /CN=33c342c06aacc359d39439ff58defa8ea1875748
Certificate serial: 019422FAF39619E80EC1762F96F5D28F4474
Authority key identifier: 33:C3:42:C0:6A:AC:C3:59:D3:94:39:FF:58:DE:FA:8E:A1:87:57:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M8NCwGqsw1nTlDn_WN76jqGHV0g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/c55fdf-a68a-4aa0-b8c5-7f2333604997/1/7usS4n2wTmwQKN_FfLFrT2gzTes.roa
Signing time: Wed 01 Jan 2025 17:47:39 +0000
ROA not before: Wed 01 Jan 2025 17:47:39 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 198960
IP address blocks: 109.236.246.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fa:f3:96:19:e8:0e:c1:76:2f:96:f5:d2:8f:44:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33c342c06aacc359d39439ff58defa8ea1875748
Validity
Not Before: Jan 1 17:47:39 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=eeeb12e27db04e6c1028dfc57cb16b4f68334deb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:e5:78:37:d2:64:46:a1:a0:fe:ce:75:f4:0e:
c4:ee:5b:09:9d:54:0a:7c:82:2f:a0:e7:e3:36:9a:
27:a9:d1:cf:cd:63:b4:a4:24:71:07:67:6d:6a:01:
f5:e7:ed:38:f2:b5:c6:6e:2c:c6:dc:7f:27:45:a4:
5f:f2:72:02:e8:39:99:46:c5:39:a3:f5:ae:f9:0c:
78:c4:39:f8:fd:41:88:c4:8d:b1:c0:1d:e5:01:10:
28:47:93:f6:a6:79:ca:39:36:57:13:2e:ed:18:29:
51:d5:d8:db:35:f6:70:04:34:31:fd:62:a7:89:49:
52:e1:3c:e9:7a:a5:e3:b6:ae:fe:7f:ed:b1:a5:d5:
e2:23:ec:75:fc:06:1e:91:b3:a1:8b:a2:83:f2:b5:
a0:f1:b8:1a:4b:4f:13:8a:0f:e9:7f:f3:6e:8a:ce:
9b:c5:da:35:24:33:49:50:fc:05:8e:36:29:fa:67:
45:38:38:68:0f:f2:17:99:30:38:de:15:4b:5b:8d:
87:93:e7:b4:93:ee:06:66:97:f4:47:42:41:3c:4c:
31:f5:0b:16:c9:0d:f4:17:a0:cb:3c:a7:78:85:cc:
12:97:fb:78:0a:d4:da:3a:6c:9c:ac:b6:6f:7c:08:
e8:02:e6:3c:1b:9f:cc:fc:52:53:58:ae:03:83:86:
1a:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:EB:12:E2:7D:B0:4E:6C:10:28:DF:C5:7C:B1:6B:4F:68:33:4D:EB
X509v3 Authority Key Identifier:
keyid:33:C3:42:C0:6A:AC:C3:59:D3:94:39:FF:58:DE:FA:8E:A1:87:57:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M8NCwGqsw1nTlDn_WN76jqGHV0g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/c55fdf-a68a-4aa0-b8c5-7f2333604997/1/7usS4n2wTmwQKN_FfLFrT2gzTes.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/c55fdf-a68a-4aa0-b8c5-7f2333604997/1/M8NCwGqsw1nTlDn_WN76jqGHV0g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.236.246.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:f7:c7:71:0b:00:27:3a:51:35:d2:c0:62:70:fb:34:26:66:
90:37:20:5e:c2:09:b8:54:a5:4a:83:8e:fe:75:b6:52:52:f7:
0f:be:3a:bd:41:3a:36:c5:15:17:78:23:c8:7e:6d:b9:f6:4d:
a4:20:6e:aa:43:37:6d:9f:21:10:d4:1c:b3:77:32:c0:14:6e:
b3:aa:22:87:d8:ba:5c:89:dc:7f:75:e2:47:32:f4:19:ea:5d:
04:2c:8a:e7:0b:55:f6:08:40:77:3a:6d:76:57:c3:8c:d9:cb:
1f:bb:07:ee:d6:fe:c3:97:21:10:5d:63:c4:a1:f9:f5:17:79:
39:8f:3c:22:54:d8:fb:16:b9:52:87:30:5f:fc:fc:3e:4e:8d:
c6:a1:3a:61:27:8d:f7:29:64:6f:53:72:d5:37:1b:1c:aa:e8:
50:dc:8f:35:3b:6d:3c:86:c9:9b:4b:a8:a4:95:6d:e8:48:a8:
ee:f7:be:8c:87:be:fe:f2:3d:bf:13:a8:0a:ed:4c:a3:98:70:
3d:03:34:06:bd:46:a4:c2:a3:11:6d:d8:d0:03:dc:bd:ca:d6:
5e:d8:d1:6d:e4:4c:7d:71:f2:3c:ed:ea:42:06:5e:61:b4:cb:
2f:06:96:0c:ca:58:88:09:08:10:02:3f:6f:d7:df:dc:e8:1f:
52:7d:19:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:43 2025 by rpki-client on console.sobornost.net