Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/0ad414-3df1-4b38-869e-c621e8df95ff/1/Co2reX9WjBlmenpbYdQoA_FU6Yg.roa
File: Co2reX9WjBlmenpbYdQoA_FU6Yg.roa (raw, json)
Hash identifier: q2QsExP+FdyReITqdolcGkEpneACU1Mny9QFEjumzVA=
Subject key identifier: 0A:8D:AB:79:7F:56:8C:19:66:7A:7A:5B:61:D4:28:03:F1:54:E9:88
Certificate issuer: /CN=1f61aa5d1befd7a0fe3e4dfe3aa8da73efcfba34
Certificate serial: 0196103A7947DB8B263130BBDEFC1FC4779F
Authority key identifier: 1F:61:AA:5D:1B:EF:D7:A0:FE:3E:4D:FE:3A:A8:DA:73:EF:CF:BA:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H2GqXRvv16D-Pk3-Oqjac-_PujQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/0ad414-3df1-4b38-869e-c621e8df95ff/1/Co2reX9WjBlmenpbYdQoA_FU6Yg.roa
Signing time: Mon 07 Apr 2025 12:29:49 +0000
ROA not before: Mon 07 Apr 2025 12:29:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 45.95.207.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:10:3a:79:47:db:8b:26:31:30:bb:de:fc:1f:c4:77:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f61aa5d1befd7a0fe3e4dfe3aa8da73efcfba34
Validity
Not Before: Apr 7 12:29:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0a8dab797f568c19667a7a5b61d42803f154e988
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:2d:29:0f:15:8e:a0:8f:f9:71:c3:1d:6c:1c:
83:1b:af:3d:68:08:e4:45:31:f7:4b:cb:45:82:fa:
f9:6f:fb:b2:be:f1:3a:0a:6a:36:dd:16:2f:e1:cb:
e2:8f:6d:02:40:dd:6f:ad:f5:19:c2:3d:86:eb:10:
0a:8e:74:76:59:7e:7e:40:28:91:60:d5:79:13:f8:
32:02:29:53:fd:0c:0e:fb:e7:0a:ab:c0:4f:ae:a9:
6c:bd:a3:09:61:6a:1a:f1:3e:df:41:0f:90:e0:06:
2d:b4:0d:99:40:5d:30:41:0c:a8:3b:ef:c9:18:54:
52:2d:6b:08:df:bf:3b:0e:3d:67:86:1d:13:fd:05:
7c:a1:8e:ea:89:80:5d:d2:af:92:f9:14:2e:e2:0d:
e4:dd:00:33:f2:7f:8d:6a:ad:11:7b:d6:d8:39:93:
c1:d7:99:f9:d5:6e:93:1d:ee:25:87:6b:b7:32:30:
2a:9f:9c:14:95:74:4b:1e:e7:e4:85:7c:aa:e9:4d:
34:08:b0:a8:9e:bb:2c:9b:87:9d:73:b7:ba:cd:db:
0c:96:2c:d3:d9:6c:a6:48:a9:e0:72:39:f9:8a:5c:
f3:d8:be:ec:ec:db:58:20:ab:fc:30:68:80:77:d9:
56:5d:3e:2b:42:c6:47:6c:b9:88:cc:52:7c:3f:60:
b0:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:8D:AB:79:7F:56:8C:19:66:7A:7A:5B:61:D4:28:03:F1:54:E9:88
X509v3 Authority Key Identifier:
keyid:1F:61:AA:5D:1B:EF:D7:A0:FE:3E:4D:FE:3A:A8:DA:73:EF:CF:BA:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H2GqXRvv16D-Pk3-Oqjac-_PujQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/0ad414-3df1-4b38-869e-c621e8df95ff/1/Co2reX9WjBlmenpbYdQoA_FU6Yg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/0ad414-3df1-4b38-869e-c621e8df95ff/1/H2GqXRvv16D-Pk3-Oqjac-_PujQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.207.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:fb:6b:87:e0:78:83:e1:60:c5:10:84:23:a8:4a:3a:53:19:
38:ca:4c:63:c1:9c:2a:f2:cb:1f:72:f4:a2:89:9c:f5:8c:4c:
22:26:f6:cf:1b:f8:78:35:8d:93:84:02:c7:77:35:4c:ea:29:
0f:5d:9a:8d:93:d6:f5:ab:36:14:f2:27:35:f4:b3:8b:ac:51:
02:8d:39:eb:0b:33:34:e3:9c:cb:7a:88:83:40:55:34:9f:78:
6d:e1:31:05:b6:0c:b3:db:6a:2e:18:5e:a0:d0:99:7f:7c:91:
5e:8e:17:3f:c0:57:86:75:7f:06:dd:97:ee:b9:07:9f:fc:15:
fd:b8:dc:13:67:da:0a:45:39:7e:7e:4d:b9:05:76:7d:06:5d:
3c:51:d8:6b:58:11:4b:7a:5b:f6:ae:fe:8f:ad:65:00:ae:aa:
03:d1:8b:98:e4:45:bc:24:97:88:70:7b:25:ca:8f:75:33:cf:
72:7c:11:47:a0:87:49:85:60:19:3f:61:d4:9b:7d:a7:45:03:
f6:f6:c4:96:ce:80:b8:d1:b3:bd:59:ae:4d:47:c5:1f:a6:a3:
8a:e4:e9:4b:d3:fa:0e:cf:b8:56:63:a5:14:34:ab:83:7b:c7:
f8:8c:cc:f7:21:1e:3a:5c:c1:c4:f1:aa:72:ff:e9:41:79:c5:
d4:ce:cb:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:46 2025 by rpki-client on console.sobornost.net