Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/b19bd8-e1d8-4388-a3b6-12255e3612ec/1/iu0Q7TLsh_YHXWJT0VGbOd2zsZU.roa
File: iu0Q7TLsh_YHXWJT0VGbOd2zsZU.roa (raw, json)
Hash identifier: 3TFPxppeoBP4LYAjJUoNSHVfrsnVo7BRtfkHBrHECp4=
Subject key identifier: 8A:ED:10:ED:32:EC:87:F6:07:5D:62:53:D1:51:9B:39:DD:B3:B1:95
Certificate issuer: /CN=bde2db8498ee8f7b3ab5caae83829596620702c1
Certificate serial: 019422FB8FBE517A4E489E25DEE540738E3B
Authority key identifier: BD:E2:DB:84:98:EE:8F:7B:3A:B5:CA:AE:83:82:95:96:62:07:02:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/veLbhJjuj3s6tcqug4KVlmIHAsE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/b19bd8-e1d8-4388-a3b6-12255e3612ec/1/iu0Q7TLsh_YHXWJT0VGbOd2zsZU.roa
Signing time: Wed 01 Jan 2025 17:48:19 +0000
ROA not before: Wed 01 Jan 2025 17:48:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 41325
IP address blocks: 84.38.48.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fb:8f:be:51:7a:4e:48:9e:25:de:e5:40:73:8e:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bde2db8498ee8f7b3ab5caae83829596620702c1
Validity
Not Before: Jan 1 17:48:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8aed10ed32ec87f6075d6253d1519b39ddb3b195
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:95:f3:3d:65:5c:ad:b5:15:c0:ee:91:c7:37:
c4:35:34:84:56:c8:94:c0:d2:1a:3d:d4:71:01:ac:
45:c2:98:b7:dd:d3:d9:96:b2:1e:50:e7:d3:74:2b:
ab:a4:e6:f9:f4:86:2e:d5:4b:67:71:06:9d:cd:59:
42:26:b4:bf:7a:41:11:bb:6c:95:d2:bc:07:9d:52:
3f:02:4f:59:dd:b9:c2:68:86:9a:3e:3a:24:6c:0b:
c5:e9:80:63:8c:af:3b:e9:ff:c6:97:48:4f:90:65:
74:00:97:0e:ec:73:fb:c7:cd:61:96:39:4f:ec:e9:
bd:df:c9:ac:1d:a1:1a:c6:64:f8:f4:37:68:c8:7d:
b9:b5:40:a4:4d:57:32:f1:03:49:d0:6d:67:d9:2f:
21:dd:f1:67:be:dd:ee:20:b8:c9:05:5c:aa:11:e7:
33:9d:81:1f:21:f1:fe:d0:83:b0:8b:f7:0e:0d:45:
a0:97:84:9c:cc:05:4b:6a:95:b8:94:cb:fd:bc:76:
2b:0b:1a:8f:de:fc:d4:3c:ff:bb:6b:99:1e:89:b4:
ac:e8:7b:49:52:c1:29:6e:7a:8c:dd:bf:d1:50:0b:
30:c9:76:c9:b6:73:46:5c:45:43:4a:4b:57:4b:a3:
77:af:cf:b1:ef:7e:19:c6:45:f1:63:0a:7b:87:0a:
08:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:ED:10:ED:32:EC:87:F6:07:5D:62:53:D1:51:9B:39:DD:B3:B1:95
X509v3 Authority Key Identifier:
keyid:BD:E2:DB:84:98:EE:8F:7B:3A:B5:CA:AE:83:82:95:96:62:07:02:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/veLbhJjuj3s6tcqug4KVlmIHAsE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/b19bd8-e1d8-4388-a3b6-12255e3612ec/1/iu0Q7TLsh_YHXWJT0VGbOd2zsZU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/b19bd8-e1d8-4388-a3b6-12255e3612ec/1/veLbhJjuj3s6tcqug4KVlmIHAsE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.38.48.0/20
Signature Algorithm: sha256WithRSAEncryption
ab:02:ef:84:19:86:fd:ae:5b:a0:a2:e5:0f:84:d7:74:dd:c0:
91:20:f1:54:5c:18:c6:0f:09:ba:a6:57:18:3f:13:3b:d7:b9:
28:b2:84:03:53:05:77:5e:77:3d:0d:0b:20:a6:87:53:5b:bf:
00:5f:b0:ec:1c:68:95:54:3b:b8:8c:4b:9d:c0:19:da:f6:75:
4a:ef:c7:38:ea:01:cc:c8:a5:eb:61:06:8d:98:22:37:2f:39:
25:73:b4:ed:b1:45:0d:5c:25:1e:ac:71:fd:6c:00:0b:ce:b9:
3a:eb:0e:c4:23:37:54:8a:06:8d:37:42:f3:3e:f8:c4:14:74:
89:08:fd:6a:84:ab:62:e5:5c:3a:85:02:ec:de:e2:d1:84:9d:
13:22:c9:19:6f:e0:2a:74:6e:a1:db:e5:fa:37:9b:a5:f9:95:
d8:17:a7:94:02:27:9c:55:b2:72:6b:23:7c:bc:73:1d:a2:5a:
19:cb:ed:70:15:ca:1b:a6:c8:10:26:01:f7:39:d6:1e:4d:ae:
dc:d8:6c:80:a4:5a:8e:08:f7:8e:3e:0a:48:b1:04:59:20:3f:
a3:65:9f:34:34:71:c1:00:03:d4:65:ef:01:5a:38:3b:5a:8d:
c7:a7:ba:50:61:7e:3b:e5:99:34:c8:26:dc:67:1e:26:bd:ef:
4f:0f:d6:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:52 2025 by rpki-client on console.sobornost.net