Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/3b7485-8b74-4d50-974a-1b501520532b/1/pDhGAUUYTY1UyjFCug_VA9YXDfc.roa
File: pDhGAUUYTY1UyjFCug_VA9YXDfc.roa (raw, json)
Hash identifier: 6QASzR15fgb6kzzjuyGG0IHeby7n6I+Zv7YlWcP1xhM=
Subject key identifier: A4:38:46:01:45:18:4D:8D:54:CA:31:42:BA:0F:D5:03:D6:17:0D:F7
Certificate issuer: /CN=cccdf6516237d425e9ae3817ecb141f481773c12
Certificate serial: 01942067D21C2FBF36DD7A63E89A4DA0A328
Authority key identifier: CC:CD:F6:51:62:37:D4:25:E9:AE:38:17:EC:B1:41:F4:81:77:3C:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zM32UWI31CXprjgX7LFB9IF3PBI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/3b7485-8b74-4d50-974a-1b501520532b/1/pDhGAUUYTY1UyjFCug_VA9YXDfc.roa
Signing time: Wed 01 Jan 2025 05:47:42 +0000
ROA not before: Wed 01 Jan 2025 05:47:42 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211031
IP address blocks: 37.140.249.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:67:d2:1c:2f:bf:36:dd:7a:63:e8:9a:4d:a0:a3:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cccdf6516237d425e9ae3817ecb141f481773c12
Validity
Not Before: Jan 1 05:47:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a438460145184d8d54ca3142ba0fd503d6170df7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:d8:c4:fb:8a:05:af:83:1f:50:a2:1c:c1:a8:
75:0d:af:fe:d7:f6:d5:ff:0e:9e:7d:28:b4:1e:fe:
17:16:37:45:19:e1:7f:b9:41:df:68:cf:28:be:c7:
f0:82:08:f9:06:b3:46:d5:0a:3c:96:20:80:c9:23:
c2:07:36:a0:3e:6b:2d:1d:2a:c0:55:39:24:14:63:
03:58:2d:5b:95:9c:5c:28:0c:e4:0b:d5:b1:47:24:
b2:6b:01:51:a8:bd:05:1e:99:a7:50:71:92:24:26:
53:bf:ae:e8:8e:57:06:d5:a7:90:3e:bf:2f:44:09:
66:01:6f:be:81:54:dc:3e:05:64:65:bd:a4:6d:36:
9e:65:15:f9:ad:c7:2a:63:7e:fc:21:25:b2:54:5d:
36:44:02:62:ea:3c:58:b9:72:8d:83:3c:11:c9:d7:
da:aa:f7:d5:15:9f:22:73:20:93:8c:f8:cc:47:19:
64:46:7f:9f:a2:42:d6:3b:28:15:5e:b6:02:20:9a:
5e:83:37:86:5c:dc:74:91:2a:3a:bc:d6:c1:b4:b8:
41:5d:2a:50:e8:c2:66:6c:26:98:12:80:ce:34:8a:
85:88:85:2e:b8:9f:92:75:88:6a:fd:69:79:b5:c2:
2d:38:3a:23:f9:a9:8c:56:33:fb:d4:3b:63:4b:f7:
2d:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:38:46:01:45:18:4D:8D:54:CA:31:42:BA:0F:D5:03:D6:17:0D:F7
X509v3 Authority Key Identifier:
keyid:CC:CD:F6:51:62:37:D4:25:E9:AE:38:17:EC:B1:41:F4:81:77:3C:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zM32UWI31CXprjgX7LFB9IF3PBI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/3b7485-8b74-4d50-974a-1b501520532b/1/pDhGAUUYTY1UyjFCug_VA9YXDfc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/3b7485-8b74-4d50-974a-1b501520532b/1/zM32UWI31CXprjgX7LFB9IF3PBI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.140.249.0/24
Signature Algorithm: sha256WithRSAEncryption
29:5a:37:07:38:8f:29:dc:59:66:90:bf:27:3a:8d:0f:f2:d6:
b2:88:13:05:52:26:fc:b4:c6:1b:ee:9b:6a:03:0d:c6:38:b9:
ec:9e:5a:81:19:16:26:46:2d:3c:bd:86:89:bd:cb:22:9f:51:
a7:48:1e:43:95:a6:8a:65:6f:32:a4:0c:90:96:25:29:42:34:
9a:ea:0c:5b:c5:15:3b:e4:48:44:b2:65:b0:18:6b:65:50:e8:
03:8a:8c:45:fd:b4:c2:57:77:6b:e7:12:2a:48:cb:94:f0:7d:
1e:75:b1:db:1e:73:46:cc:a6:43:b3:31:7f:c1:ef:84:f0:ee:
08:12:5d:c4:6f:a5:13:fd:d3:40:2c:93:51:44:53:d7:35:f6:
cf:10:67:b3:5a:e5:7d:27:40:e1:a0:af:df:6a:b7:4f:f4:6d:
0a:80:f0:22:24:42:8c:ca:31:79:27:ee:50:78:31:cd:57:18:
3a:56:f3:97:b1:03:27:3c:72:7c:3a:64:98:70:74:fc:d8:7b:
ed:5a:b4:84:87:66:e0:7c:0b:c5:7e:05:36:f3:8a:d7:43:96:
a0:e3:0a:1c:d8:3f:eb:24:1e:07:2f:4e:13:61:59:ab:ad:48:
b3:62:a0:e3:2b:67:27:86:95:44:48:5c:b0:84:e0:e7:94:0f:
6d:21:d1:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:48 2025 by rpki-client on console.sobornost.net