Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/33eccf-0ae3-4c7e-a441-08e8f0cbb840/1/5hN1_iD-LZxHAhEyBgtlC238G_I.roa
File: 5hN1_iD-LZxHAhEyBgtlC238G_I.roa (raw, json)
Hash identifier: l8+npfa+10nPLJ6F7ekx7l+emy/4/lpiXsSvRC05Yys=
Subject key identifier: E6:13:75:FE:20:FE:2D:9C:47:02:11:32:06:0B:65:0B:6D:FC:1B:F2
Certificate issuer: /CN=8a6024b2c27a67dff5b654efa06bf7bfc1222625
Certificate serial: 0195B8416BCE0CF8403829291928C83C6FC3
Authority key identifier: 8A:60:24:B2:C2:7A:67:DF:F5:B6:54:EF:A0:6B:F7:BF:C1:22:26:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/imAkssJ6Z9_1tlTvoGv3v8EiJiU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/33eccf-0ae3-4c7e-a441-08e8f0cbb840/1/5hN1_iD-LZxHAhEyBgtlC238G_I.roa
Signing time: Fri 21 Mar 2025 10:30:49 +0000
ROA not before: Fri 21 Mar 2025 10:30:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 40994
IP address blocks: 194.150.74.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:b8:41:6b:ce:0c:f8:40:38:29:29:19:28:c8:3c:6f:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a6024b2c27a67dff5b654efa06bf7bfc1222625
Validity
Not Before: Mar 21 10:30:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e61375fe20fe2d9c47021132060b650b6dfc1bf2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:58:e8:9f:21:15:8b:51:1a:2d:ed:51:77:bb:
86:6c:31:8e:de:8e:e7:08:26:a7:f1:a7:29:1d:1c:
36:3a:d4:3c:73:59:8b:43:e8:d3:48:91:4b:18:aa:
1c:18:be:a4:02:21:a0:62:df:8d:4e:7f:1a:d6:5f:
a8:74:dc:bc:78:e9:b6:73:45:35:d7:65:e1:59:7d:
8a:e1:22:31:5d:c1:3d:85:76:cf:b5:e3:15:2c:b8:
bc:24:78:0c:47:28:ab:18:62:d1:88:81:e6:a9:1c:
fa:65:1f:e1:5b:9b:61:8c:12:9b:27:35:01:54:6c:
c2:26:67:94:8e:e5:b5:e5:98:eb:3d:38:88:e4:78:
5a:0c:cf:1a:cb:13:32:50:d8:9e:e9:eb:de:e2:ca:
db:a8:27:a0:e3:c4:a4:ba:11:95:ba:2f:ff:c9:6f:
1e:2e:36:d1:88:43:be:60:a4:12:d5:8d:06:fe:45:
9c:0a:ef:a9:18:5e:dd:f7:db:d3:18:ca:7d:cd:97:
f0:8b:91:ca:c5:6a:69:f9:33:52:5a:a7:56:69:f1:
e0:42:dc:bd:f2:45:08:71:d0:a6:84:fe:9a:f5:83:
8c:54:60:83:a2:1d:75:26:9c:37:5f:f2:7a:04:4f:
89:58:60:54:b5:91:53:09:f7:45:a3:f5:44:bb:58:
e2:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:13:75:FE:20:FE:2D:9C:47:02:11:32:06:0B:65:0B:6D:FC:1B:F2
X509v3 Authority Key Identifier:
keyid:8A:60:24:B2:C2:7A:67:DF:F5:B6:54:EF:A0:6B:F7:BF:C1:22:26:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/imAkssJ6Z9_1tlTvoGv3v8EiJiU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/33eccf-0ae3-4c7e-a441-08e8f0cbb840/1/5hN1_iD-LZxHAhEyBgtlC238G_I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/33eccf-0ae3-4c7e-a441-08e8f0cbb840/1/imAkssJ6Z9_1tlTvoGv3v8EiJiU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.150.74.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:48:b5:3b:6b:ca:ee:22:e6:cd:f1:28:4d:ab:55:e3:67:1c:
a1:ef:fa:a4:9b:a2:83:6b:9c:bc:70:ce:19:37:3a:b4:70:cf:
18:18:85:67:cb:be:b5:2e:14:6b:ad:be:4e:04:9e:8a:41:6a:
1e:b5:11:f3:fd:6d:91:e4:1a:83:81:ec:1e:f5:dd:88:cd:2d:
16:64:2f:27:ff:d6:81:00:dd:47:c6:15:33:0a:1c:5e:3b:f5:
4c:83:54:7f:42:95:46:01:d0:86:be:03:e5:ed:6f:ea:7d:14:
a4:24:f7:94:b0:19:97:c4:39:d9:fa:11:18:31:81:6e:a4:b3:
24:09:55:90:59:92:f8:0c:59:93:cb:de:76:b2:06:b8:9c:f4:
7d:f8:6e:ce:2c:65:b5:3b:c2:7c:86:5d:46:6e:77:cb:7f:bc:
3d:49:43:0e:14:a8:8c:31:45:48:f8:20:bf:ef:47:a2:dd:92:
c6:5e:99:6e:f5:52:95:ec:05:15:34:ad:08:64:95:07:10:d2:
d9:0b:26:1b:c4:0a:95:bd:d3:71:3b:bb:bf:f2:96:a1:a6:5c:
e6:47:77:cf:7e:20:7e:85:2d:71:28:5a:92:ec:6f:a7:df:bf:
20:87:78:33:8e:11:dd:bf:21:85:31:12:70:a0:a1:a9:2d:d9:
b9:93:0a:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:00 2025 by rpki-client on console.sobornost.net