Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/a2QST08vhAuM6YzseDeOjRqXeXk.roa
File: a2QST08vhAuM6YzseDeOjRqXeXk.roa (raw, json)
Hash identifier: lMOk2f76mI5XqI13RnVVzTMO4e/gWq+iR4UTwWxTKW4=
Subject key identifier: 6B:64:12:4F:4F:2F:84:0B:8C:E9:8C:EC:78:37:8E:8D:1A:97:79:79
Certificate issuer: /CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Certificate serial: 01942143B93987C9CE82D58FCD520E526F1E
Authority key identifier: 30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/a2QST08vhAuM6YzseDeOjRqXeXk.roa
Signing time: Wed 01 Jan 2025 09:47:53 +0000
ROA not before: Wed 01 Jan 2025 09:47:53 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 199794
IP address blocks: 195.187.159.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:43:b9:39:87:c9:ce:82:d5:8f:cd:52:0e:52:6f:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Validity
Not Before: Jan 1 09:47:53 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6b64124f4f2f840b8ce98cec78378e8d1a977979
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:c1:e8:40:07:54:e1:62:7b:67:b6:1c:88:3f:
05:c4:55:eb:d2:a1:31:58:bb:44:7b:bc:63:d6:72:
dd:1e:ee:a9:74:fc:bb:bc:01:73:fb:18:3e:8a:a5:
04:f2:30:9f:ba:87:85:4a:ff:d3:2e:22:ad:cd:b6:
b3:74:e8:62:9d:33:0f:56:1c:c3:ee:21:b0:46:39:
21:90:02:00:ec:a1:88:d5:0d:68:af:c0:07:b0:bc:
54:f7:31:be:2a:5d:cf:f5:4e:84:ad:90:eb:0c:82:
7c:57:8c:02:46:03:08:76:34:a0:87:32:51:c0:a9:
c8:ec:ce:31:c2:8c:26:69:6d:41:89:e9:79:1a:4c:
ef:49:ec:5f:ef:4e:38:05:d5:44:0a:2a:5d:00:b7:
28:f4:ec:3d:b8:30:aa:c4:7d:5d:29:d0:70:24:8a:
cf:6d:a9:d1:bb:42:ce:5b:0d:af:0a:02:00:d4:67:
e0:f3:ae:24:86:96:92:57:43:8b:25:81:a1:06:12:
6d:d1:97:60:48:87:59:80:77:4d:2a:1c:e3:24:9e:
39:f7:9b:b2:75:d1:6e:bf:1b:7a:b4:ad:9f:ca:5c:
e6:e9:66:56:f8:a5:f5:95:7f:5f:1d:09:8b:ab:59:
09:e0:d3:b1:b9:1f:bf:08:c8:e0:f0:6f:93:35:89:
d8:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:64:12:4F:4F:2F:84:0B:8C:E9:8C:EC:78:37:8E:8D:1A:97:79:79
X509v3 Authority Key Identifier:
keyid:30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/a2QST08vhAuM6YzseDeOjRqXeXk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.187.159.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:b5:f0:9e:a2:d8:c5:24:b0:8a:19:36:2a:7a:73:95:29:a7:
79:fc:a6:8c:57:f1:90:1e:6e:03:73:98:6d:99:3d:0d:83:c7:
85:4a:29:65:86:18:0f:df:0d:0c:42:7d:a2:be:6d:69:bb:6f:
7a:c4:ee:da:46:ea:8a:cc:4f:06:84:d5:9b:9c:11:1f:fd:6d:
eb:84:c9:a0:6d:ab:c8:d3:9c:8e:65:7f:b3:90:37:3d:64:74:
03:a4:90:10:e6:0c:c4:65:38:59:9f:af:be:4e:0c:0e:95:2c:
1a:9c:17:6d:a3:2d:e8:c3:94:59:03:88:4b:0b:dd:a6:75:e7:
f7:f9:2e:97:75:b9:f4:59:c2:29:cc:ca:be:d7:35:4a:82:46:
76:d9:90:2a:6f:74:8d:28:76:00:d8:ae:cc:51:33:6a:08:7e:
14:88:f4:81:67:0d:86:fb:ae:31:67:d1:8e:ca:d7:3a:d3:be:
63:34:a3:68:cc:17:f3:7c:3a:e2:e5:26:a6:a5:14:89:34:7e:
53:dc:e9:f8:4f:15:3a:40:a3:6a:32:84:56:7d:0d:2b:2d:f3:
b8:3c:17:3f:ea:35:65:52:d1:25:c3:38:cb:5e:67:67:2e:06:
db:0d:90:25:4f:b6:00:2d:99:1e:33:13:38:c5:75:52:14:e6:
49:30:3c:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:02 2025 by rpki-client on console.sobornost.net