Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/3f5154-63d8-4a4b-9a48-1c9c4a1bbd43/1/VL0JqwmqF16Z9vYeG0MjePH-HaI.roa
File: VL0JqwmqF16Z9vYeG0MjePH-HaI.roa (raw, json)
Hash identifier: pSsEMVRtkWy4MtHaQ+2yZDRrd+dgM8mCSpJI0iLDlbM=
Subject key identifier: 54:BD:09:AB:09:AA:17:5E:99:F6:F6:1E:1B:43:23:78:F1:FE:1D:A2
Certificate issuer: /CN=281a0bbf52d8d2d48594343a55409fc10bb7b71a
Certificate serial: 019421B19FC317EF8B08E126BC3BB25238D4
Authority key identifier: 28:1A:0B:BF:52:D8:D2:D4:85:94:34:3A:55:40:9F:C1:0B:B7:B7:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBoLv1LY0tSFlDQ6VUCfwQu3txo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/3f5154-63d8-4a4b-9a48-1c9c4a1bbd43/1/VL0JqwmqF16Z9vYeG0MjePH-HaI.roa
Signing time: Wed 01 Jan 2025 11:47:56 +0000
ROA not before: Wed 01 Jan 2025 11:47:56 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 42513
IP address blocks: 188.116.46.0/24 maxlen: 24
192.111.100.0/24 maxlen: 24
194.62.4.0/23 maxlen: 23
194.62.8.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b1:9f:c3:17:ef:8b:08:e1:26:bc:3b:b2:52:38:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=281a0bbf52d8d2d48594343a55409fc10bb7b71a
Validity
Not Before: Jan 1 11:47:56 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=54bd09ab09aa175e99f6f61e1b432378f1fe1da2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:6b:ad:62:cd:19:bf:b4:91:fa:7b:ec:95:96:
8d:6a:01:a6:4d:05:2d:ef:09:3e:e5:69:26:fd:78:
19:37:e5:07:20:a7:8a:34:70:b5:b5:e7:ab:5e:66:
a8:11:68:82:78:c8:a3:c4:5a:d8:a9:b6:7b:48:46:
bb:08:72:c4:e7:ff:7d:c6:a5:14:64:30:64:9d:cf:
bb:a0:1f:dd:f3:7d:5b:2a:0e:f8:26:27:3d:ac:7d:
ca:d3:4b:3a:8a:28:98:bd:db:f0:a2:73:d8:80:11:
d3:cd:f7:e6:0a:8d:fe:4f:3d:4f:2f:9b:d3:5a:54:
57:67:6c:1f:40:d0:ad:52:d8:ae:38:63:f3:b5:f0:
91:6a:73:08:e1:61:ce:5f:61:c4:d8:52:9b:42:e0:
6d:76:34:20:90:f3:7a:2c:32:6e:12:e5:bb:72:bb:
08:72:a4:7e:26:58:d8:41:69:31:76:87:87:4a:35:
3c:a3:2b:7a:b1:37:5e:ee:7e:4c:8a:ad:d5:de:f3:
d1:ab:6a:67:63:14:19:22:76:cc:14:cd:ae:c7:3c:
ad:ab:d8:e2:32:46:5e:55:e6:db:a0:91:b3:b3:01:
a9:3b:2b:1a:c6:7a:3a:2a:f3:fb:23:cc:da:82:a4:
28:4f:33:7f:fa:6e:03:0d:c3:e2:14:f7:16:3e:b5:
19:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:BD:09:AB:09:AA:17:5E:99:F6:F6:1E:1B:43:23:78:F1:FE:1D:A2
X509v3 Authority Key Identifier:
keyid:28:1A:0B:BF:52:D8:D2:D4:85:94:34:3A:55:40:9F:C1:0B:B7:B7:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBoLv1LY0tSFlDQ6VUCfwQu3txo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/3f5154-63d8-4a4b-9a48-1c9c4a1bbd43/1/VL0JqwmqF16Z9vYeG0MjePH-HaI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/3f5154-63d8-4a4b-9a48-1c9c4a1bbd43/1/KBoLv1LY0tSFlDQ6VUCfwQu3txo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.116.46.0/24
192.111.100.0/24
194.62.4.0/23
194.62.8.0/23
Signature Algorithm: sha256WithRSAEncryption
70:b0:32:54:85:38:a0:f4:2d:9d:9e:01:d3:6e:0d:d0:5d:79:
1e:90:09:56:a0:42:65:f0:f7:dd:da:fc:67:88:32:af:fc:6f:
e9:b8:bc:91:a0:bd:d5:43:e3:53:b9:cf:f6:46:01:a9:b7:7e:
fc:a2:8b:53:01:ee:a0:89:66:c2:52:09:94:bc:26:ee:0b:d3:
ad:c6:f0:a6:b3:6d:4d:4f:1e:c9:68:fd:6c:44:0c:45:60:24:
db:c7:27:10:f8:69:63:0e:78:b2:fd:49:a5:9c:bf:a9:93:b3:
73:41:a0:3c:47:b9:2a:4a:72:a1:eb:2b:7c:cd:72:d8:e5:72:
af:e9:dc:24:5f:ec:ec:ba:80:08:48:59:90:db:d1:cc:24:40:
e5:71:30:f8:f6:09:e4:ec:03:dc:eb:33:98:43:3b:9e:58:27:
93:71:80:a2:91:4f:1e:f4:33:db:a0:2e:8a:79:0d:fe:e3:7c:
2a:b4:4f:35:02:60:41:b5:c0:a9:14:e1:7a:86:c2:e1:24:2f:
d5:1c:41:04:3a:91:67:74:89:65:75:7b:c2:a1:cd:e8:e0:0f:
1b:42:61:89:6a:3e:df:25:d4:31:4a:ab:93:ca:ce:c2:f6:61:
d8:56:47:5a:70:33:5d:9a:7e:db:44:a1:6b:73:ac:cd:79:cb:
fc:c6:53:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:47 2025 by rpki-client on console.sobornost.net