Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/b7dbd0-fe04-4e50-8c41-ebc4588b14a7/1/YEqgt3H0jekaraXiLuW29od6J68.roa
File: YEqgt3H0jekaraXiLuW29od6J68.roa (raw, json)
Hash identifier: fhjiFYXnrZio/UQKgEWfS/D575KxnwSqzt+pGF0htc4=
Subject key identifier: 60:4A:A0:B7:71:F4:8D:E9:1A:AD:A5:E2:2E:E5:B6:F6:87:7A:27:AF
Certificate issuer: /CN=53102c301f9040296792a94e42057c162fbe30cc
Certificate serial: 019423D710A383CB60BBB6731C5186E88649
Authority key identifier: 53:10:2C:30:1F:90:40:29:67:92:A9:4E:42:05:7C:16:2F:BE:30:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UxAsMB-QQClnkqlOQgV8Fi--MMw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/b7dbd0-fe04-4e50-8c41-ebc4588b14a7/1/YEqgt3H0jekaraXiLuW29od6J68.roa
Signing time: Wed 01 Jan 2025 21:48:04 +0000
ROA not before: Wed 01 Jan 2025 21:48:04 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 25000
IP address blocks: 193.201.98.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:10:a3:83:cb:60:bb:b6:73:1c:51:86:e8:86:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53102c301f9040296792a94e42057c162fbe30cc
Validity
Not Before: Jan 1 21:48:04 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=604aa0b771f48de91aada5e22ee5b6f6877a27af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:a0:17:34:19:50:d0:7d:30:89:a9:6c:88:6f:
22:ed:cc:35:71:63:31:74:a2:6b:17:d1:21:8c:3e:
fd:d7:5a:31:04:d4:d1:da:b3:75:e3:90:d7:30:9e:
c3:fc:b1:85:fb:8e:10:a6:48:c9:5c:c0:50:ee:56:
31:a2:23:95:9c:b6:8a:b5:5c:05:e0:d9:65:37:ee:
0d:af:9a:dd:db:b7:11:63:9d:c7:b6:68:a3:4c:99:
75:4e:c3:8f:52:1f:e7:98:d2:0a:96:c5:96:4c:b0:
bd:e1:8b:8a:e0:39:d9:03:fa:e2:2b:72:a7:a1:84:
1a:b7:be:31:7e:61:5f:19:74:a4:a5:f9:06:c0:5c:
f8:69:6e:7b:44:6b:69:4f:c3:26:7c:eb:73:29:32:
11:9f:ff:a9:19:e0:1b:66:fa:c3:63:5b:64:35:ee:
c4:91:de:a1:bb:ef:38:ce:88:4e:20:48:42:6b:5c:
82:2e:ad:40:3b:aa:ed:ba:b4:7a:a9:05:1d:ca:1c:
ae:00:07:50:85:70:08:62:ac:4b:60:58:b8:aa:ce:
2e:06:10:94:67:72:c3:4a:2b:7c:dd:7a:ae:57:16:
5e:75:ff:ce:a1:be:10:86:51:d7:47:6c:d9:87:1c:
c2:10:a9:3f:88:d1:a5:36:f4:0d:d1:30:a9:4b:03:
01:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:4A:A0:B7:71:F4:8D:E9:1A:AD:A5:E2:2E:E5:B6:F6:87:7A:27:AF
X509v3 Authority Key Identifier:
keyid:53:10:2C:30:1F:90:40:29:67:92:A9:4E:42:05:7C:16:2F:BE:30:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UxAsMB-QQClnkqlOQgV8Fi--MMw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/b7dbd0-fe04-4e50-8c41-ebc4588b14a7/1/YEqgt3H0jekaraXiLuW29od6J68.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/b7dbd0-fe04-4e50-8c41-ebc4588b14a7/1/UxAsMB-QQClnkqlOQgV8Fi--MMw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.201.98.0/24
Signature Algorithm: sha256WithRSAEncryption
91:5d:cb:6a:a9:4a:62:85:77:b1:7b:ce:dd:c9:54:d0:d4:9a:
6e:0b:bf:49:51:43:d5:c3:59:3e:c8:3a:81:53:a3:89:68:7e:
20:f1:e9:5f:da:eb:a4:aa:ef:c2:08:c8:69:fc:ed:38:6d:ae:
0e:e3:3d:2c:95:61:ef:7c:ba:ca:d3:7b:53:da:8e:3a:29:d8:
47:88:67:b6:4a:88:d3:df:53:63:a0:09:26:4e:2c:9e:f4:48:
13:ec:ea:5a:b3:b9:73:33:6d:d1:50:fb:dd:29:e4:5a:c2:bf:
35:b2:1c:5f:ce:c8:b6:b1:40:25:d1:ce:5e:3a:c0:01:aa:fe:
41:aa:af:8a:27:b6:62:05:64:01:57:58:d5:83:58:92:a5:04:
82:fb:61:35:56:71:bd:d1:08:b3:6b:0f:11:b5:08:6f:63:a3:
71:f1:50:ab:0d:62:85:fe:df:bc:43:5d:63:57:9e:51:4a:96:
70:28:19:b6:05:c7:88:9a:19:a3:cb:e6:16:71:53:6c:55:55:
2b:eb:06:74:49:c0:96:2e:dd:70:c4:86:3c:f3:f3:50:5f:9a:
7e:e1:de:35:5b:08:0e:bd:0f:e8:01:e4:67:7c:28:64:7b:31:
0f:29:94:3e:d6:2f:c7:58:59:68:c0:2d:96:3a:1b:e7:36:c1:
47:7b:3d:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 23 15:44:22 2025 by rpki-client on console.sobornost.net