Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/168509-2cf3-483d-bcd8-02129533a33d/1/IGFAJ7tvsxoewBIz-CIaT5Rb9KA.roa
File: IGFAJ7tvsxoewBIz-CIaT5Rb9KA.roa (raw, json)
Hash identifier: b9kbJBvM0NpcufGFz0NyZFZ9HPycn+QMvqEDUNgTAzI=
Subject key identifier: 20:61:40:27:BB:6F:B3:1A:1E:C0:12:33:F8:22:1A:4F:94:5B:F4:A0
Certificate issuer: /CN=8c77013e488a09c709b632246d9405da458c5538
Certificate serial: 019426D993DF390F051FE92DD1CF821CC738
Authority key identifier: 8C:77:01:3E:48:8A:09:C7:09:B6:32:24:6D:94:05:DA:45:8C:55:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jHcBPkiKCccJtjIkbZQF2kWMVTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/168509-2cf3-483d-bcd8-02129533a33d/1/IGFAJ7tvsxoewBIz-CIaT5Rb9KA.roa
Signing time: Thu 02 Jan 2025 11:49:40 +0000
ROA not before: Thu 02 Jan 2025 11:49:40 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 39564
IP address blocks: 194.11.27.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:93:df:39:0f:05:1f:e9:2d:d1:cf:82:1c:c7:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c77013e488a09c709b632246d9405da458c5538
Validity
Not Before: Jan 2 11:49:40 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=20614027bb6fb31a1ec01233f8221a4f945bf4a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:2b:d6:e2:68:12:ba:e8:a4:46:63:26:ba:e0:
72:05:05:f3:d2:bd:43:9c:8d:e9:c7:d8:80:ac:5b:
98:0b:8a:0c:90:77:e4:51:a7:30:bc:e8:3d:9c:58:
2d:0e:bd:74:02:ea:39:26:67:f2:05:c2:4d:49:92:
5d:db:03:2d:5e:1f:cd:86:a8:4b:6f:bb:2a:f1:37:
60:12:b6:ac:1b:02:d1:d6:eb:45:6a:b5:f3:c4:8f:
75:f6:d4:3b:15:19:9e:cb:51:8f:44:37:93:c1:c5:
89:83:11:88:b1:b7:dd:4d:5f:96:2c:9c:8e:84:52:
00:8f:9a:34:00:a0:97:f3:b8:5b:1c:1f:7a:9f:3f:
34:c3:32:65:79:a7:cd:8a:37:a8:ae:00:95:2c:7c:
3e:23:3b:d1:04:34:4e:3d:2e:a5:7d:5f:48:54:58:
d3:18:16:a4:07:63:d7:7b:71:fa:11:2e:f0:8f:bb:
4d:83:b9:66:74:15:9c:e5:dd:f3:92:c6:0d:68:9b:
9e:d8:8d:0c:07:33:60:7a:1a:4b:2d:6c:b4:ce:39:
b6:b6:d6:32:77:f1:06:05:42:f4:97:72:50:2e:f8:
36:ca:7b:ab:83:28:1e:71:46:3a:2f:6d:86:50:dc:
b4:d4:98:32:5c:9f:03:90:04:97:ef:30:43:fe:ff:
00:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:61:40:27:BB:6F:B3:1A:1E:C0:12:33:F8:22:1A:4F:94:5B:F4:A0
X509v3 Authority Key Identifier:
keyid:8C:77:01:3E:48:8A:09:C7:09:B6:32:24:6D:94:05:DA:45:8C:55:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jHcBPkiKCccJtjIkbZQF2kWMVTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/168509-2cf3-483d-bcd8-02129533a33d/1/IGFAJ7tvsxoewBIz-CIaT5Rb9KA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/168509-2cf3-483d-bcd8-02129533a33d/1/jHcBPkiKCccJtjIkbZQF2kWMVTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.11.27.0/24
Signature Algorithm: sha256WithRSAEncryption
c7:da:da:01:79:d5:c0:6f:10:05:55:28:8a:a7:c9:4d:1d:b3:
f6:f6:38:ee:d8:ae:cd:9d:ca:52:d0:4b:aa:09:69:ba:01:9b:
33:3e:c3:f8:11:cb:2b:89:95:e6:29:dc:c8:99:e4:5f:eb:ed:
d8:9f:94:44:f2:47:af:c7:a5:a6:7b:f9:aa:69:c2:8e:fd:a9:
3a:81:78:65:30:8c:fd:1f:68:17:b9:59:dd:10:5c:7f:45:cb:
53:3b:a7:33:08:a1:46:d4:2d:4d:ac:85:2f:35:b4:0b:cf:0d:
12:32:fb:15:6a:53:a7:83:99:5c:84:b1:f5:54:ca:69:5e:0f:
c3:d3:0c:84:9b:52:58:42:3c:5b:31:e0:94:59:9e:be:f2:6c:
25:e6:b9:06:6c:b5:a7:da:8a:79:53:18:f0:5d:93:60:51:65:
3e:b7:5d:58:a9:4c:b3:ac:20:df:e1:a1:0e:24:0a:04:a9:76:
4c:6c:ae:a2:e6:74:db:07:53:43:2e:ed:bc:52:79:31:f4:32:
7b:5a:24:63:3f:45:5b:b0:cb:59:8e:cf:fa:0f:e5:43:56:63:
8f:c6:b9:bb:82:41:30:46:e0:c2:86:f2:b9:f3:69:ab:4f:71:
0c:cf:3f:b5:13:1e:33:04:e0:35:31:f0:82:60:31:76:9f:0d:
e0:a4:1e:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:01 2025 by rpki-client on console.sobornost.net