Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/589eca-3f19-4e23-a3fb-3303f71622f9/1/iktdBTw9X8o6AOOEkLAyuZNK_gg.roa
File: iktdBTw9X8o6AOOEkLAyuZNK_gg.roa (raw, json)
Hash identifier: 2nzjnmBtk5vklJiWyvmO30xEFTmYF5gvtQ11fyrTZUE=
Subject key identifier: 8A:4B:5D:05:3C:3D:5F:CA:3A:00:E3:84:90:B0:32:B9:93:4A:FE:08
Certificate issuer: /CN=6e4067d77bfea99df25ce5e08a9213d1128014cf
Certificate serial: 019426D991D911ABDAF3E3FB48E7619CF3A8
Authority key identifier: 6E:40:67:D7:7B:FE:A9:9D:F2:5C:E5:E0:8A:92:13:D1:12:80:14:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bkBn13v-qZ3yXOXgipIT0RKAFM8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/589eca-3f19-4e23-a3fb-3303f71622f9/1/iktdBTw9X8o6AOOEkLAyuZNK_gg.roa
Signing time: Thu 02 Jan 2025 11:49:40 +0000
ROA not before: Thu 02 Jan 2025 11:49:40 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 49026
IP address blocks: 95.131.80.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:91:d9:11:ab:da:f3:e3:fb:48:e7:61:9c:f3:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e4067d77bfea99df25ce5e08a9213d1128014cf
Validity
Not Before: Jan 2 11:49:40 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8a4b5d053c3d5fca3a00e38490b032b9934afe08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:32:6d:76:7b:af:b5:94:ce:04:73:4c:d4:f6:
77:fe:22:e6:e8:bc:15:a7:bd:34:e8:51:d3:b0:5a:
d1:84:c2:c5:b1:2b:a8:8c:21:e5:4b:53:79:1c:f4:
8f:1b:63:d6:76:68:10:fc:67:59:21:6d:40:3e:47:
32:40:18:e7:d4:73:d1:cf:11:47:68:d9:ae:d4:a9:
29:71:ec:11:b5:85:b3:1d:a4:42:90:aa:5a:4c:97:
bd:bd:72:87:a2:de:72:ce:2d:b4:ed:0d:f2:f5:bd:
30:50:58:80:99:d5:1d:87:a4:d5:56:d6:3e:6c:12:
71:9a:f2:b7:48:6e:a2:89:f8:0b:bc:aa:94:41:7f:
fa:a2:f5:53:38:a7:6d:ca:99:08:f9:90:2d:ef:32:
51:ba:57:01:81:ef:9a:93:de:24:ce:a0:7a:c2:d6:
af:96:78:0e:5a:bb:29:1a:d7:90:0d:f0:76:b3:fd:
68:1a:81:39:ae:a3:d2:6e:bc:52:06:07:2b:4d:6b:
92:d4:59:4f:16:49:ce:05:1b:1a:74:15:24:8f:3e:
84:7f:f5:4e:45:01:8f:76:55:59:6a:3f:6a:1f:fa:
d9:4b:58:cf:39:eb:37:9f:cf:3c:34:97:36:2b:ed:
b9:0e:8b:d9:4a:e7:2d:d1:32:66:92:e2:92:29:e7:
35:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:4B:5D:05:3C:3D:5F:CA:3A:00:E3:84:90:B0:32:B9:93:4A:FE:08
X509v3 Authority Key Identifier:
keyid:6E:40:67:D7:7B:FE:A9:9D:F2:5C:E5:E0:8A:92:13:D1:12:80:14:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bkBn13v-qZ3yXOXgipIT0RKAFM8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/589eca-3f19-4e23-a3fb-3303f71622f9/1/iktdBTw9X8o6AOOEkLAyuZNK_gg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/589eca-3f19-4e23-a3fb-3303f71622f9/1/bkBn13v-qZ3yXOXgipIT0RKAFM8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.131.80.0/24
Signature Algorithm: sha256WithRSAEncryption
51:b8:9f:2c:71:8d:85:f5:ed:3a:dc:34:29:0f:a5:eb:1d:ff:
66:08:a4:32:e1:22:33:53:5d:d7:44:ac:4b:ef:e2:a3:a6:87:
4f:70:3e:f7:1d:dc:5c:8c:3f:f1:2a:71:e2:f1:bb:eb:8a:02:
3e:8c:91:f4:44:78:76:5e:22:0c:0b:d9:40:7b:61:e2:20:21:
ac:aa:58:40:d0:35:a3:7a:b2:9d:78:3c:fb:d5:bf:53:66:34:
b6:4d:f7:aa:1a:e1:bc:52:d4:1d:53:9a:11:38:07:41:5a:3e:
e9:4e:9e:98:c9:c9:4f:df:9d:12:4a:e9:eb:ce:7b:ee:8d:1e:
7a:ff:59:79:1e:99:51:e3:73:80:0a:7e:cb:0d:d4:86:0a:2c:
ba:8e:b2:b8:02:49:87:41:c6:ce:1c:c7:a4:0a:99:1a:42:b3:
de:1b:e6:d4:53:f8:a8:86:9a:0c:15:2b:a4:13:0f:ff:e6:e6:
72:82:15:31:5c:7f:2c:c0:15:e1:35:96:85:d1:e2:c7:49:31:
c1:b7:00:b7:90:5e:46:22:24:5b:88:01:e9:33:6d:47:f3:e9:
74:cf:85:2c:53:3d:b0:44:6f:8d:fb:c8:aa:98:b1:0c:f0:fb:
7b:c1:b8:0f:ab:0a:97:ea:d3:2a:f4:6e:26:66:95:77:e7:ac:
96:e7:eb:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:50 2025 by rpki-client on console.sobornost.net