Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/3b7485-8b74-4d50-974a-1b501520532b/1/zX5SsCvbtwgH75QXuBUCbtdy6Ww.roa
File: zX5SsCvbtwgH75QXuBUCbtdy6Ww.roa (raw, json)
Hash identifier: wvJG3iztzAVZHUfCx2K+W5TdCzTlwS3eoby1xR0ldnI=
Subject key identifier: CD:7E:52:B0:2B:DB:B7:08:07:EF:94:17:B8:15:02:6E:D7:72:E9:6C
Certificate issuer: /CN=cccdf6516237d425e9ae3817ecb141f481773c12
Certificate serial: 01942067D1D357C43B0CE5D21BA1B8F97DFC
Authority key identifier: CC:CD:F6:51:62:37:D4:25:E9:AE:38:17:EC:B1:41:F4:81:77:3C:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zM32UWI31CXprjgX7LFB9IF3PBI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/3b7485-8b74-4d50-974a-1b501520532b/1/zX5SsCvbtwgH75QXuBUCbtdy6Ww.roa
Signing time: Wed 01 Jan 2025 05:47:42 +0000
ROA not before: Wed 01 Jan 2025 05:47:42 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 210649
IP address blocks: 37.140.249.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:67:d1:d3:57:c4:3b:0c:e5:d2:1b:a1:b8:f9:7d:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cccdf6516237d425e9ae3817ecb141f481773c12
Validity
Not Before: Jan 1 05:47:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=cd7e52b02bdbb70807ef9417b815026ed772e96c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:ba:6a:78:31:ef:ea:2c:12:03:93:59:8a:7a:
f8:c9:86:16:dc:9c:8e:21:c5:7d:95:ec:1c:ea:84:
7d:ee:8b:30:4f:90:1a:7b:b5:4d:96:44:ab:f6:c1:
67:97:49:9d:3f:e2:f8:22:d0:66:9a:a4:92:63:58:
83:8b:2c:7e:b4:72:a0:5c:c1:e9:62:63:4a:be:8a:
1a:30:c4:a7:f1:3e:48:7a:8b:ac:da:91:a6:40:d6:
94:4f:dc:dc:52:70:1c:44:4d:08:40:1e:63:e3:55:
fa:fc:16:ea:e5:b5:b1:25:11:e3:de:56:d8:8d:ee:
af:13:2d:6c:64:99:0e:e9:28:85:15:0c:ce:0f:06:
a7:0e:e4:d0:0f:13:ab:e9:06:31:5a:7e:ad:57:18:
a1:b8:fd:9b:4a:28:3e:e2:da:0d:45:2b:fc:86:51:
4e:5b:df:35:49:43:6f:74:1e:01:f2:54:0c:d5:3e:
1c:70:13:db:95:8b:dd:9f:5f:be:18:b6:ee:08:a6:
2e:43:61:c2:02:96:ff:e9:25:4e:c0:2a:f7:1a:a1:
33:ca:d3:24:7f:50:32:1a:fe:b4:c3:e9:c0:ce:2a:
8a:69:dd:21:20:03:e9:30:19:5c:8a:5e:a6:28:cc:
1f:6d:34:ed:b6:19:93:90:4a:d1:98:83:1a:0d:e3:
5a:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:7E:52:B0:2B:DB:B7:08:07:EF:94:17:B8:15:02:6E:D7:72:E9:6C
X509v3 Authority Key Identifier:
keyid:CC:CD:F6:51:62:37:D4:25:E9:AE:38:17:EC:B1:41:F4:81:77:3C:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zM32UWI31CXprjgX7LFB9IF3PBI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/3b7485-8b74-4d50-974a-1b501520532b/1/zX5SsCvbtwgH75QXuBUCbtdy6Ww.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/3b7485-8b74-4d50-974a-1b501520532b/1/zM32UWI31CXprjgX7LFB9IF3PBI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.140.249.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:58:e8:bd:ed:e2:f5:58:c9:59:48:c9:f5:e4:31:ee:84:7a:
49:07:da:b8:6d:a9:4b:51:bc:2d:bd:1b:54:9d:f1:1d:1a:35:
57:93:19:75:1f:fd:ce:93:73:58:9e:3d:0e:f0:66:af:cb:fa:
9a:43:5f:fc:59:f8:f4:f0:f0:84:ab:98:44:3a:ba:93:99:6e:
4c:d2:c1:37:0d:0a:00:d5:60:e0:a8:9b:ad:3e:58:70:a0:9c:
83:d3:5d:a7:e6:1c:4a:7e:ce:2e:e3:7f:71:1f:f2:6c:b0:e9:
f9:2d:d7:c3:12:4e:e7:a0:e0:b4:68:25:3f:6b:41:b7:95:aa:
8a:a4:33:25:f6:63:9e:8b:d5:44:ca:f8:65:2d:40:8d:5a:7b:
3a:f0:46:84:5c:89:69:04:8e:95:99:1b:d2:7c:b7:f0:55:b8:
d4:be:f2:64:22:1e:c6:77:8a:55:d8:cb:ee:f6:93:da:18:ee:
74:4b:76:94:07:46:ef:a4:35:64:aa:2c:48:23:87:81:e5:95:
00:d3:ff:6b:ea:90:27:51:85:06:5d:06:98:c3:96:13:f5:0c:
ad:8b:b9:cb:dc:c1:7f:95:00:f7:44:6a:5e:67:f4:4b:9d:5e:
5b:1f:73:7e:3a:fa:b8:61:f1:02:5b:ca:5f:84:20:38:62:84:
f0:fd:76:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:48 2025 by rpki-client on console.sobornost.net