Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/ae3a3e-2c0c-405e-bcd7-9e0a513deef2/1/u2-0tvDgg8eVJnAOs90X9XNfCOc.roa
File: u2-0tvDgg8eVJnAOs90X9XNfCOc.roa (raw, json)
Hash identifier: Lh1UJKyv7Uk+NWFQ028f3zdCFyRMJpVrWEOLEM4v+8s=
Subject key identifier: BB:6F:B4:B6:F0:E0:83:C7:95:26:70:0E:B3:DD:17:F5:73:5F:08:E7
Certificate issuer: /CN=060c9ec5d40586ed3255f0fc4fcb3157714dda15
Certificate serial: 019426D8DCF5C070658FAF051A8E6930A792
Authority key identifier: 06:0C:9E:C5:D4:05:86:ED:32:55:F0:FC:4F:CB:31:57:71:4D:DA:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BgyexdQFhu0yVfD8T8sxV3FN2hU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/ae3a3e-2c0c-405e-bcd7-9e0a513deef2/1/u2-0tvDgg8eVJnAOs90X9XNfCOc.roa
Signing time: Thu 02 Jan 2025 11:48:53 +0000
ROA not before: Thu 02 Jan 2025 11:48:53 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 19905
IP address blocks: 195.69.230.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d8:dc:f5:c0:70:65:8f:af:05:1a:8e:69:30:a7:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=060c9ec5d40586ed3255f0fc4fcb3157714dda15
Validity
Not Before: Jan 2 11:48:53 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=bb6fb4b6f0e083c79526700eb3dd17f5735f08e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:9f:71:27:44:65:85:bd:32:7e:fa:47:1b:11:
3e:ef:23:40:6b:82:24:ad:ce:a6:b0:9e:d4:be:61:
af:f1:1c:87:da:74:f0:d0:0d:f9:76:40:b3:67:48:
ae:a1:d0:45:87:dc:12:b6:5b:fa:70:8b:f8:ad:b7:
74:24:9a:78:af:32:cc:29:c9:9f:67:89:47:31:0b:
fd:0f:a1:5f:0b:d9:75:73:a4:dd:48:b0:ca:88:00:
93:c5:f4:83:ae:82:04:6b:1c:6a:a2:19:0f:e5:41:
68:b9:c6:32:97:67:b1:dc:dc:dc:e7:a7:ac:3a:8c:
89:d2:08:72:c5:83:3e:5c:f7:7c:85:30:e6:23:c0:
57:d3:43:d1:1a:72:68:47:a6:a2:f3:4d:1f:9c:ca:
7a:18:1f:66:7a:eb:0a:2d:b4:21:d7:30:06:38:bb:
a2:cc:fe:25:9f:8f:6c:04:34:70:38:9b:95:c8:59:
f0:7d:62:fe:bb:17:c0:aa:da:6a:e4:e0:94:6b:b9:
76:be:94:4d:56:f8:a1:45:28:30:54:bf:71:23:a9:
13:34:64:60:78:7d:38:db:62:bc:79:be:0e:b3:fd:
60:7d:44:ec:26:bd:af:36:e7:4d:f0:7b:ef:69:1a:
0c:b4:30:18:4d:31:38:ce:d6:4a:e9:0f:e4:75:8d:
39:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:6F:B4:B6:F0:E0:83:C7:95:26:70:0E:B3:DD:17:F5:73:5F:08:E7
X509v3 Authority Key Identifier:
keyid:06:0C:9E:C5:D4:05:86:ED:32:55:F0:FC:4F:CB:31:57:71:4D:DA:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BgyexdQFhu0yVfD8T8sxV3FN2hU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/ae3a3e-2c0c-405e-bcd7-9e0a513deef2/1/u2-0tvDgg8eVJnAOs90X9XNfCOc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/ae3a3e-2c0c-405e-bcd7-9e0a513deef2/1/BgyexdQFhu0yVfD8T8sxV3FN2hU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.69.230.0/24
Signature Algorithm: sha256WithRSAEncryption
36:3b:52:23:7a:78:2c:4a:0f:0c:eb:1f:26:24:19:be:c3:19:
84:77:41:0c:a9:58:71:68:b3:9f:74:5d:dd:58:30:d0:e8:be:
8e:7c:e1:9e:d5:ee:f0:ec:17:d6:1f:21:41:a2:89:2c:cc:ed:
f7:63:2f:0c:67:b2:6a:59:0a:2f:f6:5f:19:0f:b3:5f:5d:d6:
37:ed:7b:4a:04:61:78:cc:2e:38:5e:d1:d0:c7:d1:31:62:bc:
1a:f2:2a:1f:8d:8f:07:a6:0a:b5:3e:0a:e2:16:c1:08:48:4a:
e9:13:ea:22:b5:f1:66:44:5b:be:6c:09:e6:c1:d8:25:f6:bf:
e9:22:07:a7:ab:38:e5:61:a4:79:b7:03:4f:b3:38:7f:da:66:
39:4f:f5:28:cb:d1:b8:ec:2d:fc:1b:e8:8b:2a:01:82:e1:d0:
45:7d:71:20:3f:11:6b:07:f8:cf:c9:c3:6d:4f:5b:ef:94:a4:
d4:60:2b:c9:59:9c:d0:03:42:f7:b3:82:cd:26:d1:8b:a1:61:
93:44:d7:56:c0:2e:ec:5c:4d:c6:93:6b:26:cf:75:30:9c:85:
ec:06:68:de:19:3b:b1:3a:f3:b8:c2:99:95:05:c8:16:33:11:
a4:be:e9:f4:8c:23:e7:6c:b3:e9:a4:36:9c:af:31:d0:84:65:
a0:e9:78:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 23 19:12:06 2025 by rpki-client on console.sobornost.net