Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/9d8b82-47ae-4e12-9a4d-782fe7092010/1/J83vR5DpFwQeOzZ3QWcMbb8635o.roa
File: J83vR5DpFwQeOzZ3QWcMbb8635o.roa (raw, json)
Hash identifier: iKjeQjYNy9qFyGrhW5tTdYxo05LYCK/XsNtUNF1Tfbg=
Subject key identifier: 27:CD:EF:47:90:E9:17:04:1E:3B:36:77:41:67:0C:6D:BF:3A:DF:9A
Certificate issuer: /CN=abf587571c0c698458c385b15d60c7f08c70b6fe
Certificate serial: 0194228E28D37C2E8224B6AACE871CCDAC91
Authority key identifier: AB:F5:87:57:1C:0C:69:84:58:C3:85:B1:5D:60:C7:F0:8C:70:B6:FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q_WHVxwMaYRYw4WxXWDH8Ixwtv4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/9d8b82-47ae-4e12-9a4d-782fe7092010/1/J83vR5DpFwQeOzZ3QWcMbb8635o.roa
Signing time: Wed 01 Jan 2025 15:48:49 +0000
ROA not before: Wed 01 Jan 2025 15:48:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 200984
IP address blocks: 2.58.184.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8e:28:d3:7c:2e:82:24:b6:aa:ce:87:1c:cd:ac:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=abf587571c0c698458c385b15d60c7f08c70b6fe
Validity
Not Before: Jan 1 15:48:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=27cdef4790e917041e3b367741670c6dbf3adf9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:10:78:a1:16:04:8e:04:6b:08:8d:fd:13:08:
ff:3f:d7:26:d8:76:cf:76:4b:0c:76:87:67:d9:43:
9f:76:82:b2:f0:28:1b:e2:17:f0:90:66:ef:65:31:
2f:5d:7d:06:9b:e1:a7:3a:17:b1:11:b1:34:56:53:
11:90:08:07:80:d5:5a:aa:35:77:a0:50:d3:f4:9e:
2c:1b:cf:01:e7:fd:ea:e3:94:df:ff:d8:ab:71:5b:
e9:e6:6d:bc:f0:f6:d2:2c:8d:8e:e2:4e:8d:7e:30:
98:85:2a:1e:72:5a:8a:6c:1d:e2:05:02:83:69:6b:
d4:24:9c:fe:9b:64:57:12:c0:7c:54:c7:75:9a:1f:
56:38:c4:ce:72:cc:35:c1:44:82:00:30:42:63:2c:
5e:7e:b1:ea:b1:10:35:d1:1a:2f:f5:8c:e7:05:93:
f6:09:25:65:9e:0c:a8:a0:56:7d:82:03:d3:ed:b3:
df:74:34:d5:f5:10:ce:c5:74:7a:98:2c:32:ca:4e:
31:ca:2f:fd:e9:7e:e8:c6:bf:a9:ca:2e:5a:09:e7:
81:87:6b:55:57:39:d8:ee:20:f9:bd:da:79:7c:ee:
81:74:d4:b2:73:a6:a5:c0:c4:fc:3a:03:b5:11:86:
a1:16:72:27:e9:d4:04:dc:26:7b:fc:b4:56:65:7d:
18:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:CD:EF:47:90:E9:17:04:1E:3B:36:77:41:67:0C:6D:BF:3A:DF:9A
X509v3 Authority Key Identifier:
keyid:AB:F5:87:57:1C:0C:69:84:58:C3:85:B1:5D:60:C7:F0:8C:70:B6:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q_WHVxwMaYRYw4WxXWDH8Ixwtv4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/9d8b82-47ae-4e12-9a4d-782fe7092010/1/J83vR5DpFwQeOzZ3QWcMbb8635o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/9d8b82-47ae-4e12-9a4d-782fe7092010/1/q_WHVxwMaYRYw4WxXWDH8Ixwtv4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.184.0/22
Signature Algorithm: sha256WithRSAEncryption
c3:ed:a3:3c:d8:83:1d:8c:79:62:63:c3:d0:56:1e:1a:05:31:
1c:83:50:38:2e:66:b5:34:1d:30:54:cc:70:bc:1f:a5:30:f5:
a8:79:ac:c5:8a:b9:e6:27:03:f3:27:6b:3a:d0:7a:56:c1:3c:
31:24:66:0f:98:b7:f8:2e:ae:f9:d4:ed:08:91:1d:bb:e2:2a:
00:b4:25:10:51:37:1e:cf:89:5c:75:14:48:fe:62:d9:7d:cb:
d3:4e:22:d5:bd:69:da:2f:3d:46:fd:67:2d:a0:1d:43:63:5b:
1b:9f:30:3a:cc:6e:69:18:41:1b:a5:e7:3a:b3:1d:a6:d9:69:
93:b2:2e:fb:14:cd:47:08:d9:80:ed:96:dc:b2:f6:b2:4f:34:
7a:21:61:5c:08:2b:7d:c9:a7:c6:5a:83:b6:23:3f:a7:6d:fb:
2f:4a:1b:be:7c:19:3d:b1:2e:7a:fe:c5:dd:b7:47:72:26:c6:
c5:60:87:bb:d5:e8:00:50:48:4a:8d:bd:0c:ca:34:a0:ea:c5:
86:c9:e3:d8:4f:1f:30:f1:0c:85:3f:7b:8e:0f:ef:5d:ad:89:
71:f0:97:41:97:a5:96:7e:c8:ba:23:2d:51:d2:cf:54:db:3c:
53:36:47:05:c3:55:d9:93:3e:f6:f7:69:ee:c0:86:d9:c9:af:
f5:aa:3d:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:43 2025 by rpki-client on console.sobornost.net