Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/U2iNflEHT3HIL-S9ukQcbf1cEE4.roa
File: U2iNflEHT3HIL-S9ukQcbf1cEE4.roa (raw, json)
Hash identifier: CmjocmnsbLnvfp3fpATzHwZwgEQxqvdIsJxJ7LRGUnw=
Subject key identifier: 53:68:8D:7E:51:07:4F:71:C8:2F:E4:BD:BA:44:1C:6D:FD:5C:10:4E
Certificate issuer: /CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Certificate serial: 01942143B27845E3E01033C10F193CA2E2C5
Authority key identifier: 30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/U2iNflEHT3HIL-S9ukQcbf1cEE4.roa
Signing time: Wed 01 Jan 2025 09:47:52 +0000
ROA not before: Wed 01 Jan 2025 09:47:52 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 34826
IP address blocks: 195.187.130.0/24 maxlen: 24
195.187.142.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:43:b2:78:45:e3:e0:10:33:c1:0f:19:3c:a2:e2:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Validity
Not Before: Jan 1 09:47:52 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=53688d7e51074f71c82fe4bdba441c6dfd5c104e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:e8:ed:75:24:56:75:ed:dc:66:c4:88:a9:48:
36:54:b5:30:60:ef:65:c0:56:b4:b9:e9:66:a4:6a:
13:fa:48:ab:7d:8d:23:d4:0e:da:a3:3a:31:cb:07:
e1:01:bd:3e:99:81:c0:3c:58:27:fd:fb:8b:22:c2:
4d:c6:85:b1:8c:c8:bf:2a:ae:59:1a:67:ef:3f:3a:
33:08:50:46:02:34:06:28:d1:8c:e0:8f:b3:9d:2c:
35:37:5c:50:10:03:cb:dc:99:22:e1:3b:89:19:f0:
0a:73:49:50:ee:de:fe:3c:65:4c:3f:e3:70:7c:25:
fe:24:84:51:ca:b3:68:b2:e8:25:d0:4b:78:df:9d:
2b:9d:ca:37:b0:33:28:14:a9:a4:29:f7:ff:10:8e:
ae:b5:b0:16:e6:c9:30:15:9c:31:0e:74:d5:99:d2:
60:7e:10:ee:0d:5d:5e:03:78:86:44:f3:f7:f3:24:
2c:dc:ea:63:74:65:83:c4:e0:fc:a9:65:70:d4:b0:
ee:3d:09:07:4c:f3:cd:f3:74:8c:4f:08:d7:79:39:
7d:75:1a:c6:17:2d:ea:58:fd:d4:35:72:95:6f:41:
a1:da:64:69:46:d9:39:56:e7:00:02:d4:69:97:53:
3a:72:12:73:8a:b3:36:8b:87:ce:54:a2:99:5f:27:
b3:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:68:8D:7E:51:07:4F:71:C8:2F:E4:BD:BA:44:1C:6D:FD:5C:10:4E
X509v3 Authority Key Identifier:
keyid:30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/U2iNflEHT3HIL-S9ukQcbf1cEE4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.187.130.0/24
195.187.142.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:e3:66:42:71:67:b4:33:f9:62:d3:79:91:5c:55:85:f1:65:
a2:07:c3:00:99:72:3b:c9:21:b2:92:f3:df:b7:4a:b4:29:72:
f4:e7:03:2e:0b:4b:32:40:48:05:5b:82:f8:2c:33:e9:0f:ee:
2e:22:64:7c:41:10:a2:d7:e0:64:45:ae:b9:6a:de:79:db:2e:
9d:48:7d:4b:48:0c:5a:32:09:b6:48:3a:75:87:b1:99:69:8e:
ca:49:6c:a2:50:0b:70:12:70:22:40:47:e9:61:20:45:c9:af:
42:5a:98:ba:29:83:d3:de:62:4d:86:b8:05:c4:5f:fb:39:45:
c3:69:e6:cd:41:40:ae:88:b7:33:27:26:81:06:97:7c:3b:41:
4f:52:0b:7c:d3:24:2f:ae:56:7d:3f:76:0b:ea:17:cf:c4:2a:
43:9b:53:6b:41:9f:3c:3e:29:11:86:c1:b6:ac:96:1e:54:0d:
7a:ac:00:e6:03:40:12:c5:fc:d9:1f:d9:67:40:da:76:b6:35:
20:96:21:25:df:4e:c7:a1:87:7d:25:e7:3f:bb:85:85:bc:f6:
9d:f1:3f:af:3a:31:1c:84:0f:9b:5d:48:ce:33:a8:21:87:59:
e5:38:24:aa:7f:ca:d9:1e:ce:de:77:9f:d8:8f:f0:17:5d:e6:
63:d4:52:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:01 2025 by rpki-client on console.sobornost.net