Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/8a8b4c-8f12-4c8d-8be4-69b8d6b53e8c/1/FxHUQG3qdwh_Io72-qooMYusypM.roa
File: FxHUQG3qdwh_Io72-qooMYusypM.roa (raw, json)
Hash identifier: 6TiBJA+vFO4OcdT2PwhLRo55PhguPodqdNqueOVwTtM=
Subject key identifier: 17:11:D4:40:6D:EA:77:08:7F:22:8E:F6:FA:AA:28:31:8B:AC:CA:93
Certificate issuer: /CN=d367d1635b46b3c2274b287505bbbd7d915dcaf5
Certificate serial: 0195710EA44247AC0663AB219E03246BECA7
Authority key identifier: D3:67:D1:63:5B:46:B3:C2:27:4B:28:75:05:BB:BD:7D:91:5D:CA:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/02fRY1tGs8InSyh1Bbu9fZFdyvU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/8a8b4c-8f12-4c8d-8be4-69b8d6b53e8c/1/FxHUQG3qdwh_Io72-qooMYusypM.roa
Signing time: Fri 07 Mar 2025 14:42:19 +0000
ROA not before: Fri 07 Mar 2025 14:42:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 35838
IP address blocks: 178.255.80.0/21 maxlen: 21
2a02:1788::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:71:0e:a4:42:47:ac:06:63:ab:21:9e:03:24:6b:ec:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d367d1635b46b3c2274b287505bbbd7d915dcaf5
Validity
Not Before: Mar 7 14:42:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1711d4406dea77087f228ef6faaa28318bacca93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:85:f8:d9:ea:69:8c:f6:f7:1b:b6:99:8f:62:
57:0b:ed:47:91:68:9f:0e:42:8b:5d:64:7a:bd:f4:
b1:6f:d8:ae:3f:fb:f8:e0:17:46:48:1c:d1:48:e4:
bc:bc:1d:81:82:3b:18:57:52:43:36:8e:c3:ca:49:
80:11:be:96:e9:69:29:69:84:7b:ce:1f:d6:f6:e0:
ff:60:99:ca:d3:d0:b4:b2:cf:f8:6a:f3:ba:57:a7:
40:73:fc:09:34:5c:1e:d5:14:dd:3a:dc:b6:66:a4:
52:ab:53:72:e3:83:79:d8:2d:f3:ee:fa:dc:4d:b8:
71:ce:ac:ce:15:ee:c9:0c:8f:03:57:00:ec:01:d4:
71:f8:0f:45:42:42:53:5b:f6:d0:de:12:6b:d7:1b:
e8:14:dc:4e:34:3d:65:22:5c:ed:9c:6a:c9:05:86:
71:37:79:e1:34:e9:c6:20:2a:bd:19:86:f6:ff:a0:
0d:6f:df:3f:fa:56:a0:93:5d:4f:80:3d:fc:2d:28:
11:e9:e3:bb:d2:db:cf:31:16:e8:32:8b:25:db:1a:
c2:1b:15:fa:da:de:68:9b:d7:99:92:24:26:1e:78:
44:ec:c8:3a:fd:2e:75:f6:97:c5:1c:6e:ea:12:65:
b0:ac:de:76:41:83:9e:3c:ae:86:81:fa:04:50:35:
91:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:11:D4:40:6D:EA:77:08:7F:22:8E:F6:FA:AA:28:31:8B:AC:CA:93
X509v3 Authority Key Identifier:
keyid:D3:67:D1:63:5B:46:B3:C2:27:4B:28:75:05:BB:BD:7D:91:5D:CA:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/02fRY1tGs8InSyh1Bbu9fZFdyvU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/8a8b4c-8f12-4c8d-8be4-69b8d6b53e8c/1/FxHUQG3qdwh_Io72-qooMYusypM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/8a8b4c-8f12-4c8d-8be4-69b8d6b53e8c/1/02fRY1tGs8InSyh1Bbu9fZFdyvU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.255.80.0/21
IPv6:
2a02:1788::/32
Signature Algorithm: sha256WithRSAEncryption
46:b2:d8:0a:93:f0:76:ec:e4:a9:5c:70:07:1c:db:25:ec:c8:
ac:50:1c:a5:22:dc:be:59:4c:f9:8e:55:fb:3e:2a:5a:06:29:
bc:f3:c2:b0:f4:e0:d3:71:e0:78:1b:95:ce:ce:a3:3d:90:ae:
ea:ff:a1:a7:d9:ba:0e:09:51:48:4e:a1:96:18:bb:fd:5b:69:
0e:c5:f5:cd:a6:d5:bb:79:e1:e5:32:32:7a:73:ef:63:bd:9b:
7f:a4:51:d4:3f:4a:10:06:24:a0:2f:03:d0:4b:19:96:88:a6:
75:19:c6:47:48:48:96:80:55:47:c4:eb:13:1f:23:cc:32:45:
e8:31:fe:d6:ff:c4:97:eb:f7:d5:f9:66:0e:f1:25:6b:a7:ea:
04:a4:2c:e9:cb:96:46:ce:dc:66:a5:63:9d:3a:5a:4d:5d:80:
ed:6b:be:38:b4:c0:b1:e4:9e:e8:a3:e5:b6:15:2b:88:be:41:
b0:db:c3:54:92:3c:27:43:48:21:6e:05:7c:0b:38:ba:c4:fc:
64:fe:9b:11:67:4a:7a:a1:aa:35:de:07:b5:ae:f4:03:52:1a:
29:7b:1f:b6:d2:4f:cb:4e:52:ba:b3:ea:94:28:14:9b:93:20:
63:09:36:c7:2a:a8:92:97:f5:4e:ff:b6:78:05:73:99:aa:a2:
a4:59:60:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:48 2025 by rpki-client on console.sobornost.net