Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/d030ef-92cb-4cc5-86c8-decb92d1a523/1/DJNwK4d1O-0W4wKdXnOfs7vSo0I.roa
File: DJNwK4d1O-0W4wKdXnOfs7vSo0I.roa (raw, json)
Hash identifier: 4ioCgLyFFC/qkKUBjTLDnN9rjQ3ov2Q43NX+vQC3BfE=
Subject key identifier: 0C:93:70:2B:87:75:3B:ED:16:E3:02:9D:5E:73:9F:B3:BB:D2:A3:42
Certificate issuer: /CN=d634007414cff16cdcf3a3aa22a96677f8be2b68
Certificate serial: 0194206871253EE7DB5F7213D24D5C1F1D4E
Authority key identifier: D6:34:00:74:14:CF:F1:6C:DC:F3:A3:AA:22:A9:66:77:F8:BE:2B:68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1jQAdBTP8Wzc86OqIqlmd_i-K2g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/d030ef-92cb-4cc5-86c8-decb92d1a523/1/DJNwK4d1O-0W4wKdXnOfs7vSo0I.roa
Signing time: Wed 01 Jan 2025 05:48:23 +0000
ROA not before: Wed 01 Jan 2025 05:48:23 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 28731
IP address blocks: 217.14.144.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:68:71:25:3e:e7:db:5f:72:13:d2:4d:5c:1f:1d:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d634007414cff16cdcf3a3aa22a96677f8be2b68
Validity
Not Before: Jan 1 05:48:23 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0c93702b87753bed16e3029d5e739fb3bbd2a342
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:c5:ee:9a:ba:7e:64:1f:b3:ca:85:a8:e2:5b:
a4:49:9b:93:e8:42:74:34:94:f1:ec:d4:ae:1c:b8:
4f:00:1a:f5:9e:84:f4:cc:29:51:f8:3f:d1:44:0a:
e1:91:39:32:2a:e8:b9:fc:3b:85:1b:6d:75:b4:93:
30:55:ae:53:83:94:cf:49:88:82:6b:00:a8:a6:af:
eb:ca:d8:e8:aa:ea:c5:4e:97:5d:a8:fa:ef:05:10:
c6:83:16:57:98:50:5b:2c:ae:4c:2f:fc:08:7a:4c:
19:ab:c2:d6:75:92:22:e4:57:24:0b:e6:29:2f:ba:
98:57:be:b2:12:b0:ae:f0:12:9b:bc:8e:7d:ce:eb:
8d:d7:a5:20:54:73:15:d3:5d:03:31:68:34:30:3c:
3d:25:51:0d:1d:13:09:72:97:96:87:f1:fb:a9:2a:
24:d9:2b:b9:cb:21:83:61:50:d8:aa:17:44:a8:8e:
fe:7d:06:02:be:b3:df:dc:d9:23:d5:f8:6f:6c:9d:
27:6f:d6:12:7b:11:2e:5b:4b:bc:09:ba:fd:c4:60:
43:04:b7:d5:ed:ba:f4:fb:06:f8:b2:b3:13:89:1f:
0d:de:2f:e1:16:39:5a:07:e3:01:db:8f:d9:b8:e6:
51:2d:56:07:8d:23:64:4d:63:84:0f:db:3b:b0:87:
a5:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:93:70:2B:87:75:3B:ED:16:E3:02:9D:5E:73:9F:B3:BB:D2:A3:42
X509v3 Authority Key Identifier:
keyid:D6:34:00:74:14:CF:F1:6C:DC:F3:A3:AA:22:A9:66:77:F8:BE:2B:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1jQAdBTP8Wzc86OqIqlmd_i-K2g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/d030ef-92cb-4cc5-86c8-decb92d1a523/1/DJNwK4d1O-0W4wKdXnOfs7vSo0I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/d030ef-92cb-4cc5-86c8-decb92d1a523/1/1jQAdBTP8Wzc86OqIqlmd_i-K2g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.14.144.0/20
Signature Algorithm: sha256WithRSAEncryption
91:59:2c:cf:de:48:2f:a7:e2:2e:ee:72:43:f7:f3:7f:f5:30:
99:0d:9c:d9:7f:b4:dc:3e:10:86:c6:0b:cf:d7:c2:ca:07:fa:
15:a7:09:01:fe:c7:32:2c:5b:9f:65:fd:c1:24:3f:6e:f8:69:
08:b2:56:bd:88:e1:9c:3a:f9:5a:ef:51:22:66:f0:fc:f2:f1:
3a:08:4f:4f:13:54:76:09:2a:79:de:25:1e:92:e3:ff:d3:49:
92:c7:f3:ab:36:dd:c7:9b:7b:f8:63:3a:af:32:59:5d:fc:6d:
6f:c3:a1:10:78:1c:25:41:4a:a6:f3:3c:3a:56:f9:fd:f8:8f:
63:ac:84:2c:53:7c:ec:b6:5d:e0:44:dc:e6:41:f1:2c:5e:6c:
1b:81:9b:36:3a:18:bb:85:d4:58:b7:fb:11:ad:dc:fb:6b:26:
53:ec:a0:12:8a:ce:7d:ef:20:23:65:67:db:9e:e3:9c:9b:16:
f0:57:c4:b8:b5:00:01:9b:7f:73:ec:89:a2:4a:f5:c9:71:7e:
b3:bb:a3:1e:e9:0c:2a:f4:0c:63:dd:3f:74:74:eb:ad:46:16:
58:e9:7f:27:33:7b:eb:72:3e:43:14:0c:5b:0d:0e:d6:81:4a:
33:6f:a0:97:5e:52:46:d6:39:26:6b:ec:6f:51:07:c1:5d:0d:
60:eb:16:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:49 2025 by rpki-client on console.sobornost.net