Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/b8vdOmpolmwnMi7asOpMYmI4_jA.roa
File: b8vdOmpolmwnMi7asOpMYmI4_jA.roa (raw, json)
Hash identifier: 9A3fwbUf06Rc6Df5WmKqMxfDfFV1g3qJ0g03eRw6WqE=
Subject key identifier: 6F:CB:DD:3A:6A:68:96:6C:27:32:2E:DA:B0:EA:4C:62:62:38:FE:30
Certificate issuer: /CN=04248504b54555a9443b02a33d351a902863bb99
Certificate serial: 0194266C1909992119AEC9969CBEF1499870
Authority key identifier: 04:24:85:04:B5:45:55:A9:44:3B:02:A3:3D:35:1A:90:28:63:BB:99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BCSFBLVFValEOwKjPTUakChju5k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/b8vdOmpolmwnMi7asOpMYmI4_jA.roa
Signing time: Thu 02 Jan 2025 09:50:06 +0000
ROA not before: Thu 02 Jan 2025 09:50:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 198063
IP address blocks: 194.116.167.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6c:19:09:99:21:19:ae:c9:96:9c:be:f1:49:98:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04248504b54555a9443b02a33d351a902863bb99
Validity
Not Before: Jan 2 09:50:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6fcbdd3a6a68966c27322edab0ea4c626238fe30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:29:45:22:15:e9:37:6b:fd:9a:7b:88:56:8f:
ee:3a:a7:01:1b:18:a1:10:7c:1c:eb:06:91:f3:d5:
a6:10:40:d1:6c:a9:96:36:2c:3a:93:fd:6e:c0:3b:
73:3d:2a:fd:76:da:93:bc:73:91:77:c4:e5:2b:81:
87:97:2f:43:91:bf:77:e6:ca:87:c2:98:51:04:57:
6e:35:af:23:dc:dd:f8:40:e2:0c:5e:e1:06:0d:94:
b0:ab:c4:ce:fd:cb:6e:10:ab:cb:c1:a7:8e:d4:e1:
53:ab:88:af:dd:37:15:55:24:5d:fe:aa:8d:9a:c6:
db:95:6e:bc:92:52:b7:e3:7c:f1:24:1d:ff:1e:95:
a2:3d:5d:32:80:48:99:af:84:07:62:1d:4b:38:0f:
93:17:33:63:89:4d:65:66:82:53:d8:df:40:43:0d:
69:5c:63:50:f3:37:26:c3:aa:7a:f0:7f:db:cc:fb:
4c:06:2b:04:27:4a:0b:d0:b7:2d:88:16:33:07:6c:
3f:b3:8e:87:ca:1b:22:eb:85:ff:72:3c:b5:ad:70:
0b:2d:4d:c1:27:d2:24:10:2a:46:96:7b:af:25:f0:
2e:b9:ea:28:7f:56:6e:bf:ee:8c:84:76:04:cc:47:
df:36:b2:8f:85:5d:0e:e1:a1:8f:d7:ba:76:0f:47:
43:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:CB:DD:3A:6A:68:96:6C:27:32:2E:DA:B0:EA:4C:62:62:38:FE:30
X509v3 Authority Key Identifier:
keyid:04:24:85:04:B5:45:55:A9:44:3B:02:A3:3D:35:1A:90:28:63:BB:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BCSFBLVFValEOwKjPTUakChju5k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/b8vdOmpolmwnMi7asOpMYmI4_jA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/BCSFBLVFValEOwKjPTUakChju5k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.116.167.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:0f:68:aa:e4:a2:67:89:e6:1d:f4:39:18:68:10:f4:42:06:
0b:b5:aa:81:6e:99:98:e7:e4:a2:5b:54:5c:99:77:57:f7:93:
25:13:c6:59:f8:07:34:32:53:61:d7:28:8a:60:63:94:f2:4e:
e6:42:8a:80:a9:ba:12:0f:04:03:5d:31:e3:56:6d:e1:c6:40:
0b:bc:d8:cd:41:ee:e0:e4:8d:b4:98:59:53:c6:85:a0:6d:c4:
9b:6f:ac:71:f0:f6:02:d9:36:28:e8:f8:f3:39:49:94:53:72:
81:26:57:a3:69:22:57:f4:df:44:68:d8:0e:56:fd:d8:24:57:
60:77:cb:2c:75:1b:95:a9:de:fd:1d:55:ee:84:c1:c5:be:47:
f8:56:7c:7e:2c:05:b5:08:56:b7:49:f3:f2:4a:57:00:73:8e:
38:bf:5d:cd:e2:64:47:79:ba:90:d7:fb:19:80:d7:9d:21:8f:
64:82:36:31:45:88:18:7c:eb:49:07:35:89:a0:d0:9e:56:2f:
78:0f:c1:a3:47:51:be:68:cc:10:44:2b:ea:0c:49:7c:21:41:
10:c0:fa:f7:5a:d9:46:fe:46:cd:27:3e:4a:46:5d:3a:8f:84:
4f:6f:87:55:00:2e:ac:78:aa:24:ee:97:28:d9:95:e7:da:a3:
20:91:6f:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:48 2025 by rpki-client on console.sobornost.net