Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/PW87IxcR8NO4WUeOitQNh5EtNhc.roa
File: PW87IxcR8NO4WUeOitQNh5EtNhc.roa (raw, json)
Hash identifier: abtoslPQuSyoMS7yrHdnRO9jo2QkBlO9JvhCml8oipM=
Subject key identifier: 3D:6F:3B:23:17:11:F0:D3:B8:59:47:8E:8A:D4:0D:87:91:2D:36:17
Certificate issuer: /CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Certificate serial: 01942143BC1E43AD532B9527AFE38EC7B58D
Authority key identifier: 30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/PW87IxcR8NO4WUeOitQNh5EtNhc.roa
Signing time: Wed 01 Jan 2025 09:47:54 +0000
ROA not before: Wed 01 Jan 2025 09:47:54 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 201143
IP address blocks: 193.59.96.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:43:bc:1e:43:ad:53:2b:95:27:af:e3:8e:c7:b5:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Validity
Not Before: Jan 1 09:47:54 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3d6f3b231711f0d3b859478e8ad40d87912d3617
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:33:7a:20:80:3a:74:0b:d6:0f:85:eb:7f:bb:
77:d7:44:18:d3:de:99:0f:f9:d0:42:14:61:d5:01:
e6:94:2b:96:53:11:bc:e2:ea:4d:98:9d:1f:81:fb:
f1:ba:7a:1f:f0:04:99:fc:75:18:ef:78:0a:b7:23:
82:9a:92:c7:88:70:5a:96:28:ae:10:98:29:d3:3a:
96:2d:d8:9a:1e:e7:7a:e2:c2:ca:51:eb:d0:79:a1:
03:3a:28:fb:46:19:45:b3:16:6f:f7:a8:aa:cd:32:
70:ea:8b:95:b4:9c:e4:a1:c3:38:02:ca:f4:e2:95:
13:31:61:53:82:06:48:9a:b8:bc:3f:15:5e:ca:cc:
fe:c9:79:b0:35:78:94:8e:30:63:79:3a:13:9e:9f:
a2:9d:35:09:e9:99:11:af:17:5b:6f:22:d2:67:66:
1d:79:f1:eb:7d:1b:4a:77:59:f5:18:12:6a:2c:9c:
52:5f:2d:26:2a:41:84:eb:23:96:78:b8:8a:d0:ef:
78:fa:e0:4e:29:46:16:b8:a5:c4:c0:78:cf:24:69:
f1:4c:17:69:53:87:41:06:c6:cb:b7:89:2f:28:76:
2a:6c:11:f1:de:69:c1:b7:f8:6f:e5:9f:08:68:78:
58:ef:66:b9:94:0d:9f:90:ce:5c:60:a0:8d:9c:c9:
e2:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:6F:3B:23:17:11:F0:D3:B8:59:47:8E:8A:D4:0D:87:91:2D:36:17
X509v3 Authority Key Identifier:
keyid:30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/PW87IxcR8NO4WUeOitQNh5EtNhc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.59.96.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:e1:e8:12:1d:63:31:5d:0f:e8:ac:c4:32:27:e9:59:80:ac:
bf:d3:d0:57:f8:ed:31:be:16:45:70:04:1a:85:96:06:e1:6c:
5e:6f:3a:74:77:c8:cf:52:a3:80:88:65:70:9d:ee:f9:18:85:
ef:67:92:36:89:19:cd:33:89:64:12:83:1a:7a:9f:69:48:3e:
9b:01:b5:99:5f:20:40:b3:4c:32:69:f3:34:81:d2:01:67:79:
cc:92:73:61:ab:e9:ec:be:60:0f:4c:89:75:ae:24:76:8a:17:
6a:b7:76:8a:22:f9:89:69:24:c9:04:36:db:35:5a:fa:f6:1f:
a1:e2:c1:9e:66:f9:f8:b2:f9:a8:1e:86:2c:09:53:ac:81:a9:
d7:6c:90:50:af:a3:98:7c:c3:3e:90:b5:4e:69:31:bf:10:d1:
c2:15:38:74:00:f9:9b:f3:07:7f:d6:86:d7:47:8a:d0:ed:ea:
ae:43:ce:84:89:fb:03:06:f4:ea:90:b9:a8:20:50:7e:23:bf:
7b:a1:48:dc:86:17:76:2b:ae:6d:b8:c0:ee:03:e1:dd:0c:ef:
ee:b7:43:09:90:19:12:90:ca:90:91:cb:8a:4f:e5:55:75:73:
ba:78:a9:a5:28:83:11:93:f8:ad:68:d6:ba:b7:d0:8f:e3:e6:
b7:af:15:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:01 2025 by rpki-client on console.sobornost.net