Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/e01a29-c597-4974-86e1-092e7a16b74e/1/Kk5ihchNeskFCXCUlES4TL8h7AA.roa
File: Kk5ihchNeskFCXCUlES4TL8h7AA.roa (raw, json)
Hash identifier: rTX+zm5JxSO5etuxfkqUkcqlRI0XlBcLpmGUj1NxYmc=
Subject key identifier: 2A:4E:62:85:C8:4D:7A:C9:05:09:70:94:94:44:B8:4C:BF:21:EC:00
Certificate issuer: /CN=076851104a9218eff173f434f55bdd2420aaae2e
Certificate serial: 01942143F6955D58377B4E365E135CD74F1F
Authority key identifier: 07:68:51:10:4A:92:18:EF:F1:73:F4:34:F5:5B:DD:24:20:AA:AE:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B2hREEqSGO_xc_Q09VvdJCCqri4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/e01a29-c597-4974-86e1-092e7a16b74e/1/Kk5ihchNeskFCXCUlES4TL8h7AA.roa
Signing time: Wed 01 Jan 2025 09:48:09 +0000
ROA not before: Wed 01 Jan 2025 09:48:09 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 39637
IP address blocks: 195.130.199.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:43:f6:95:5d:58:37:7b:4e:36:5e:13:5c:d7:4f:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=076851104a9218eff173f434f55bdd2420aaae2e
Validity
Not Before: Jan 1 09:48:09 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2a4e6285c84d7ac9050970949444b84cbf21ec00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:14:fa:49:1a:07:17:c4:29:94:17:eb:6c:55:
c8:e3:c7:d2:37:54:e1:19:a5:f0:0f:15:be:b6:74:
60:b2:88:09:b7:41:99:ea:d6:de:36:ce:b0:cc:4a:
ab:6b:e6:c0:46:03:00:4f:9b:0e:ab:c2:77:73:4d:
5e:d8:c3:6b:0d:56:58:00:c4:b3:aa:d2:46:f2:52:
70:27:b7:4b:56:64:64:a3:5c:38:1f:45:a3:ab:58:
04:ad:92:c9:4b:e1:7e:68:ab:70:46:b3:af:cd:b7:
45:cd:6e:c1:a8:9f:0d:ba:e6:df:8a:31:0f:ec:27:
50:5c:3a:50:b2:14:61:7f:9c:89:b8:b6:96:a9:ad:
c6:18:0e:6b:a5:25:dc:dd:56:73:86:60:25:28:af:
24:1b:75:cb:02:e4:1f:05:ae:48:c3:c9:18:96:9b:
a4:22:44:02:f6:ae:55:5f:05:91:b6:c7:7c:30:0a:
e7:44:b5:a3:a2:b9:93:d9:64:d9:ed:e7:da:7d:ae:
77:11:d2:65:0e:93:0b:74:3a:45:26:fb:ad:ce:6e:
56:36:63:1e:7a:ec:29:55:52:dd:c9:af:2f:35:02:
d4:94:51:db:2a:6a:b0:a1:6d:99:83:1d:7e:58:c6:
79:13:25:1f:10:50:da:34:1a:1b:aa:f0:25:c2:7e:
6a:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:4E:62:85:C8:4D:7A:C9:05:09:70:94:94:44:B8:4C:BF:21:EC:00
X509v3 Authority Key Identifier:
keyid:07:68:51:10:4A:92:18:EF:F1:73:F4:34:F5:5B:DD:24:20:AA:AE:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B2hREEqSGO_xc_Q09VvdJCCqri4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/e01a29-c597-4974-86e1-092e7a16b74e/1/Kk5ihchNeskFCXCUlES4TL8h7AA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/e01a29-c597-4974-86e1-092e7a16b74e/1/B2hREEqSGO_xc_Q09VvdJCCqri4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.130.199.0/24
Signature Algorithm: sha256WithRSAEncryption
77:22:c1:6e:e6:f9:e7:83:b7:fc:80:90:48:be:c0:f3:cb:64:
ce:b7:77:c7:0c:70:bb:83:35:b1:e5:2e:09:67:2a:37:ed:7e:
c2:2d:02:83:ba:34:db:92:5a:53:d4:12:5f:b8:3e:ae:58:dd:
3b:e1:e8:4e:42:6f:58:a9:c0:a8:3e:2f:28:2c:cd:57:3e:e0:
18:ec:1d:7b:f3:f6:93:10:6e:2b:c9:47:08:22:60:1e:7e:14:
37:f9:c0:0b:d6:0d:74:3a:00:21:1d:61:74:8c:a2:a9:a6:d8:
c0:e1:87:f1:af:f2:da:2c:9d:22:ba:5e:6e:c0:95:7e:d4:07:
5b:af:08:d6:9d:2a:28:c9:17:9a:a0:ba:14:5c:04:6f:cf:fa:
cc:28:6e:c6:61:69:84:c0:77:69:a3:3b:bb:3c:52:af:b4:a2:
64:01:41:eb:41:0d:39:c1:37:38:5a:58:7c:d6:3c:a5:f5:02:
66:f5:00:ae:db:1b:08:e2:7b:8a:03:f8:c2:8c:b4:c8:d9:bf:
de:f6:d6:89:68:24:c6:44:19:00:4b:6f:f9:96:d3:a6:58:ac:
d3:58:8f:0d:25:24:32:70:16:cb:b4:e4:d6:ec:44:d6:03:f0:
f1:20:eb:b2:4c:e6:b2:ef:1a:d9:4c:e4:84:4c:a0:a1:78:8c:
77:07:32:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:46 2025 by rpki-client on console.sobornost.net