Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/_kwy9bDSccd3Rtu2SHd2nC9AWHs.roa
File: _kwy9bDSccd3Rtu2SHd2nC9AWHs.roa (raw, json)
Hash identifier: S0KPjYm8+CTV9bHwk2kn78YNa61JdUHm026b4f57gYU=
Subject key identifier: FE:4C:32:F5:B0:D2:71:C7:77:46:DB:B6:48:77:76:9C:2F:40:58:7B
Certificate issuer: /CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Certificate serial: 01942143C2A7BDA2FEE728084DCDB49541C7
Authority key identifier: 30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/_kwy9bDSccd3Rtu2SHd2nC9AWHs.roa
Signing time: Wed 01 Jan 2025 09:47:56 +0000
ROA not before: Wed 01 Jan 2025 09:47:56 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 209316
IP address blocks: 193.59.132.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:43:c2:a7:bd:a2:fe:e7:28:08:4d:cd:b4:95:41:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Validity
Not Before: Jan 1 09:47:56 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=fe4c32f5b0d271c77746dbb64877769c2f40587b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:5f:c7:53:5e:3c:79:b2:10:62:be:b7:01:c7:
fd:7d:eb:77:2e:0b:62:04:a7:6f:e8:ee:a3:a4:67:
e5:95:80:16:db:f0:cf:fc:c3:d7:76:2c:fa:0e:2e:
1c:35:e1:1a:22:13:b9:c8:e2:b5:af:32:a6:a4:54:
1b:09:52:25:5b:e3:b2:27:1d:0d:01:92:de:f7:37:
3b:2b:79:2b:c3:ca:60:1a:3c:42:f0:97:5c:02:41:
9f:e2:9d:b5:86:79:6e:87:4a:ca:3f:5a:11:73:8b:
8c:49:df:0a:c3:83:72:c4:89:cf:a0:68:c0:fb:58:
62:ea:6e:7d:84:14:ec:a7:dc:80:75:66:6d:98:68:
2a:bf:5a:46:4f:2d:eb:03:1f:e2:19:73:7c:b2:47:
cb:00:bb:5b:92:f4:d6:98:dc:90:e8:c3:85:dc:d0:
72:a6:9d:27:20:6b:bb:e1:c4:b9:0e:66:b6:22:d6:
34:5c:56:24:26:55:ed:f5:2f:b5:2c:3f:2c:69:0c:
1c:96:9a:7e:91:ae:d7:a5:fd:09:87:31:da:f7:2f:
7a:de:b1:6a:0f:b6:24:89:03:99:dc:39:e5:fe:22:
8d:ce:bf:21:f0:a9:8c:17:31:b2:63:a0:c8:fb:40:
38:fc:25:39:ec:44:4c:60:2c:02:9b:b4:95:23:8c:
15:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:4C:32:F5:B0:D2:71:C7:77:46:DB:B6:48:77:76:9C:2F:40:58:7B
X509v3 Authority Key Identifier:
keyid:30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/_kwy9bDSccd3Rtu2SHd2nC9AWHs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.59.132.0/22
Signature Algorithm: sha256WithRSAEncryption
13:41:b9:02:18:9a:1e:67:2b:37:8e:b8:30:6e:10:fe:39:84:
ec:4e:68:2a:5e:ed:d2:ca:cc:d4:7e:af:b4:4b:8f:62:f9:43:
15:51:be:df:bc:63:72:98:74:2c:cc:be:09:de:6b:04:64:3a:
92:fc:39:c0:8c:b5:36:97:80:db:85:d0:85:0c:09:e1:e3:58:
e9:6c:8f:2e:d1:00:a8:ff:04:00:55:bd:2a:8d:f7:34:53:b2:
08:04:d8:e8:2a:7f:e4:3e:e5:99:07:31:47:c6:27:f8:ee:5d:
b1:5c:95:25:a2:07:44:d8:30:1b:37:08:de:aa:51:c3:63:17:
cd:d8:a1:27:dd:49:7b:49:57:43:d2:ff:a0:15:53:4a:4a:3a:
c8:39:c4:3d:8b:52:73:f3:f0:94:db:22:9f:23:1d:fa:0d:51:
54:b7:c7:71:0d:3c:a1:c3:ac:86:da:28:99:19:23:48:38:76:
fd:24:ff:21:8c:26:13:82:f6:d7:0d:12:4c:23:a8:41:1c:5a:
97:b1:5c:a5:e4:8f:b5:ff:87:47:d2:11:d2:df:2e:db:d8:96:
62:17:b3:d1:b2:82:dd:a6:1f:eb:6a:4e:ea:96:5b:4a:b5:f7:
8a:61:c0:07:f1:be:ab:d5:aa:61:8d:22:8c:0e:17:2e:2c:d1:
13:8e:55:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:02 2025 by rpki-client on console.sobornost.net