Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/c55fdf-a68a-4aa0-b8c5-7f2333604997/1/8YSnvyCLvUiHNjAw1eWuFCNdk2c.roa
File: 8YSnvyCLvUiHNjAw1eWuFCNdk2c.roa (raw, json)
Hash identifier: PTMxJnzevVSgZNxZ+M3p3kXGLUbEbhxizVHAA+Gkp9w=
Subject key identifier: F1:84:A7:BF:20:8B:BD:48:87:36:30:30:D5:E5:AE:14:23:5D:93:67
Certificate issuer: /CN=33c342c06aacc359d39439ff58defa8ea1875748
Certificate serial: 019422FAF27B0D10123E52D32D795F5C18FE
Authority key identifier: 33:C3:42:C0:6A:AC:C3:59:D3:94:39:FF:58:DE:FA:8E:A1:87:57:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M8NCwGqsw1nTlDn_WN76jqGHV0g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/c55fdf-a68a-4aa0-b8c5-7f2333604997/1/8YSnvyCLvUiHNjAw1eWuFCNdk2c.roa
Signing time: Wed 01 Jan 2025 17:47:38 +0000
ROA not before: Wed 01 Jan 2025 17:47:38 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 60513
IP address blocks: 109.236.253.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fa:f2:7b:0d:10:12:3e:52:d3:2d:79:5f:5c:18:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33c342c06aacc359d39439ff58defa8ea1875748
Validity
Not Before: Jan 1 17:47:38 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f184a7bf208bbd4887363030d5e5ae14235d9367
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:6e:07:93:f0:9d:cd:a5:6e:a7:21:74:82:ba:
a9:9e:25:eb:4e:d3:4b:7b:a7:63:dc:6a:a7:bb:3c:
a2:4b:ba:9a:10:a6:9e:6d:3d:a9:b1:92:d4:27:47:
af:95:23:52:3b:3c:6d:9c:e7:36:d3:4a:5a:b9:01:
80:32:9e:41:09:25:ea:15:a2:76:3f:df:7e:08:78:
35:22:c6:f3:c8:ec:17:18:2e:c3:40:4b:bb:f1:1b:
11:c6:41:f2:13:52:5c:8f:f7:25:4e:42:12:91:50:
d9:58:72:61:6c:08:c3:23:53:4d:8b:27:48:42:5d:
41:c7:7b:da:9b:aa:bf:01:d5:94:a9:2e:a3:28:12:
7a:c8:7b:03:45:20:5f:91:f9:6d:c0:4d:73:d1:b8:
85:d4:e7:b0:72:0d:83:5c:ff:d1:a6:c6:d0:f6:2c:
0b:2c:64:cd:ec:84:00:76:24:45:fe:35:2f:fc:90:
a1:8a:98:d1:8a:50:64:d6:77:6a:8c:a6:4f:12:8c:
6e:4e:3f:10:44:b7:72:02:7c:3a:e7:60:0b:12:2b:
41:44:20:c4:b6:da:4c:6e:50:aa:87:64:9c:0c:80:
e1:84:ba:97:73:cc:84:45:a9:d6:b3:05:3d:25:59:
03:29:ce:b6:8f:85:dc:7c:e5:63:3e:d3:73:6e:e5:
93:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:84:A7:BF:20:8B:BD:48:87:36:30:30:D5:E5:AE:14:23:5D:93:67
X509v3 Authority Key Identifier:
keyid:33:C3:42:C0:6A:AC:C3:59:D3:94:39:FF:58:DE:FA:8E:A1:87:57:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M8NCwGqsw1nTlDn_WN76jqGHV0g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/c55fdf-a68a-4aa0-b8c5-7f2333604997/1/8YSnvyCLvUiHNjAw1eWuFCNdk2c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/c55fdf-a68a-4aa0-b8c5-7f2333604997/1/M8NCwGqsw1nTlDn_WN76jqGHV0g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.236.253.0/24
Signature Algorithm: sha256WithRSAEncryption
76:4b:94:ce:85:c2:2d:10:28:08:e8:8b:4b:1c:37:aa:d5:7c:
98:82:b9:84:4a:c5:26:d7:29:3e:e2:75:ed:c2:91:48:f0:cc:
05:85:30:0a:d8:4f:4c:99:ab:e2:0f:14:ee:6b:22:62:16:7e:
d2:5e:cc:26:7b:b4:08:3f:23:cc:0d:2d:5f:3f:01:29:0b:91:
93:5b:0d:8c:5e:3c:e5:fc:1a:3f:3e:b7:fc:0a:77:21:ad:33:
3e:44:9f:4c:71:e0:31:95:ea:4e:f8:ee:b4:23:7d:eb:58:91:
26:0a:a2:92:04:44:82:5b:b8:f8:bd:8a:72:1c:ef:1f:23:b9:
e8:a1:50:40:17:b9:93:23:71:30:b2:49:53:f3:79:24:f8:38:
20:24:48:5a:3d:61:da:ff:ae:30:4a:34:27:ff:aa:1c:4a:65:
59:23:62:87:d9:c6:8a:aa:5e:30:10:62:b0:eb:bb:83:c9:76:
66:e4:e1:a7:6e:9e:43:35:5f:63:2e:eb:61:77:9b:f2:aa:7e:
88:d3:ca:e5:8d:85:75:54:20:47:33:e5:a0:55:e6:a1:3e:5a:
76:6a:d2:fe:ac:47:ac:ab:f4:02:5e:9e:02:4c:8b:8a:44:e8:
fa:8d:88:b4:a8:c9:81:c2:ee:b1:24:72:99:0b:99:7c:1f:75:
1d:0f:70:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:43 2025 by rpki-client on console.sobornost.net