Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/79ab76-9bf9-47cd-b544-5ee09fead561/1/G3bPtDx0TvVdf4ayVJDtbWUroio.roa
File: G3bPtDx0TvVdf4ayVJDtbWUroio.roa (raw, json)
Hash identifier: 0QDqlFsV7bJD4enXREu7nHOgEbbLdZBSnVYjPXImw60=
Subject key identifier: 1B:76:CF:B4:3C:74:4E:F5:5D:7F:86:B2:54:90:ED:6D:65:2B:A2:2A
Certificate issuer: /CN=9912d945ac2a49f3b4da2221c27b829aafccb2f2
Certificate serial: 019427466752714D2704B58043B3AE6C003E
Authority key identifier: 99:12:D9:45:AC:2A:49:F3:B4:DA:22:21:C2:7B:82:9A:AF:CC:B2:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mRLZRawqSfO02iIhwnuCmq_MsvI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/79ab76-9bf9-47cd-b544-5ee09fead561/1/G3bPtDx0TvVdf4ayVJDtbWUroio.roa
Signing time: Thu 02 Jan 2025 13:48:32 +0000
ROA not before: Thu 02 Jan 2025 13:48:32 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 24929
IP address blocks: 195.177.100.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:46:67:52:71:4d:27:04:b5:80:43:b3:ae:6c:00:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9912d945ac2a49f3b4da2221c27b829aafccb2f2
Validity
Not Before: Jan 2 13:48:32 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1b76cfb43c744ef55d7f86b25490ed6d652ba22a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:fd:cf:77:13:73:6e:6e:a5:94:b2:99:84:82:
df:99:70:c7:86:b6:8a:c1:29:a3:1e:11:c4:41:88:
11:10:8b:33:fe:63:e4:68:82:55:00:77:b9:35:77:
ad:de:39:c9:68:ae:19:d1:df:60:c3:f8:6a:28:1d:
b8:a4:2b:23:45:10:7d:1c:c9:34:be:c2:b0:e7:9f:
26:b2:49:4a:37:cd:72:34:28:a6:96:93:38:6e:70:
23:8e:af:f2:62:b1:f4:5b:fe:51:b0:59:a1:f0:71:
e3:8b:a1:2b:61:4b:47:c6:19:0f:b7:30:72:e1:c8:
90:02:83:31:4b:22:d7:59:b1:a1:13:b7:b2:83:a3:
80:7d:f9:48:05:eb:5b:3f:c9:51:4c:a5:0b:88:1b:
52:b6:70:d2:3b:f4:f7:a5:41:7a:cf:dc:f3:44:64:
69:83:5e:b2:3c:82:bc:1b:87:f8:af:af:62:2d:12:
9e:5e:92:46:89:d7:bc:65:d1:de:6d:78:d8:37:57:
39:aa:6c:8d:a8:33:28:bc:f7:ea:bd:1c:ff:29:24:
8b:d7:4f:27:3e:8d:29:d7:ce:75:45:90:34:7a:98:
ce:87:f9:be:61:fd:65:1a:ec:3b:dc:bc:5f:26:d1:
9f:62:06:c1:f0:fb:28:86:f8:d1:f4:8b:56:c2:f6:
12:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:76:CF:B4:3C:74:4E:F5:5D:7F:86:B2:54:90:ED:6D:65:2B:A2:2A
X509v3 Authority Key Identifier:
keyid:99:12:D9:45:AC:2A:49:F3:B4:DA:22:21:C2:7B:82:9A:AF:CC:B2:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mRLZRawqSfO02iIhwnuCmq_MsvI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/79ab76-9bf9-47cd-b544-5ee09fead561/1/G3bPtDx0TvVdf4ayVJDtbWUroio.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/79ab76-9bf9-47cd-b544-5ee09fead561/1/mRLZRawqSfO02iIhwnuCmq_MsvI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.177.100.0/22
Signature Algorithm: sha256WithRSAEncryption
53:c8:07:0c:6b:ec:fa:a1:88:2e:e2:99:88:6b:5a:bf:bf:04:
cf:b9:38:d6:78:69:0b:e6:06:34:ab:c2:70:52:16:1b:ec:63:
e8:b5:4c:de:5e:f1:eb:4d:6b:42:1a:36:d4:a8:22:47:7c:b5:
60:c4:3c:86:5d:32:41:9d:b1:59:c1:a2:bf:e5:ac:0c:f8:12:
a1:f4:e8:9e:cc:2a:92:da:40:4c:ee:29:9b:9a:80:36:91:30:
45:76:9a:34:f5:af:dc:a3:ea:1c:ce:85:28:c7:51:57:0f:fc:
10:4b:fb:c8:1e:e6:e5:7c:81:90:99:d8:c5:59:4f:14:0d:0c:
cd:8b:42:13:a6:62:33:6d:88:89:83:68:8c:a3:20:4e:0b:7a:
8f:ac:85:ea:1f:d2:52:93:15:38:19:ba:0f:5c:f3:3e:16:64:
3b:5f:4c:33:34:56:69:fc:15:3b:0a:43:fc:d1:31:37:03:ee:
35:82:4a:db:dc:62:a5:c5:a5:60:a9:cd:8f:de:5d:74:34:09:
bc:d9:4d:49:5e:30:49:ad:70:a9:71:0c:91:d6:7e:70:07:4e:
7c:0f:11:3a:c7:d9:6a:14:00:ec:33:2c:bf:a6:43:d0:58:de:
81:15:f1:6a:c9:f8:cb:1c:34:07:2b:75:58:d3:d0:66:77:e1:
67:3b:ab:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:51 2025 by rpki-client on console.sobornost.net