Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/luhgkGvXoSBeo49IDDTu1_s8AjA.roa
File: luhgkGvXoSBeo49IDDTu1_s8AjA.roa (raw, json)
Hash identifier: 9H2kNdWwK/olweSvXdAl8KgICVS+D/OaSJX7mmjuiAk=
Subject key identifier: 96:E8:60:90:6B:D7:A1:20:5E:A3:8F:48:0C:34:EE:D7:FB:3C:02:30
Certificate issuer: /CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Certificate serial: 01942143BAFDAFE6FA0BAE332C948C7DBCE4
Authority key identifier: 30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/luhgkGvXoSBeo49IDDTu1_s8AjA.roa
Signing time: Wed 01 Jan 2025 09:47:54 +0000
ROA not before: Wed 01 Jan 2025 09:47:54 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 200633
IP address blocks: 194.181.51.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:43:ba:fd:af:e6:fa:0b:ae:33:2c:94:8c:7d:bc:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Validity
Not Before: Jan 1 09:47:54 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=96e860906bd7a1205ea38f480c34eed7fb3c0230
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:53:fc:c9:b9:9c:e8:da:1d:87:67:f8:19:7c:
6f:26:01:1c:00:09:10:d4:5c:91:71:9e:9c:73:8f:
81:a0:ff:d9:c7:97:40:56:40:f9:3a:90:42:0a:53:
8a:7b:16:84:43:df:6f:4d:c4:7f:a9:8b:61:30:1d:
be:1b:1e:6b:34:f8:a7:f3:5e:4b:6e:cc:74:3b:db:
cf:ff:84:07:4c:5c:7d:c8:7e:61:fc:53:4a:12:b9:
65:07:df:cc:60:de:dc:b5:d7:30:05:72:af:9e:b6:
f7:e1:f6:ea:7c:e2:75:4f:1e:23:ba:a2:f6:7c:f0:
6e:81:ec:24:a0:74:dc:35:3b:de:14:b3:9e:4c:38:
1c:d2:88:ae:02:1a:9e:ca:be:c0:8c:17:16:ca:60:
3d:f7:32:f6:3b:01:40:4d:f7:5d:66:91:5e:f3:ac:
c2:4b:f4:55:27:db:48:c1:52:f8:58:4a:31:67:fb:
65:2d:a6:9e:2d:64:bf:7a:79:ee:bc:6c:48:90:2d:
12:89:fe:20:2d:a4:af:86:ec:31:43:e6:63:36:0b:
95:b4:9d:5c:92:ea:01:35:1e:88:8d:f6:ab:f8:2e:
36:12:6f:3d:c9:96:24:d4:a7:d1:04:53:ff:9f:9a:
c1:69:39:30:71:e6:c0:2c:89:7e:8d:b0:54:76:8b:
6c:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:E8:60:90:6B:D7:A1:20:5E:A3:8F:48:0C:34:EE:D7:FB:3C:02:30
X509v3 Authority Key Identifier:
keyid:30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/luhgkGvXoSBeo49IDDTu1_s8AjA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.181.51.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:79:82:72:81:b2:ab:c6:2e:28:51:e6:1a:00:d4:f2:b7:c8:
ad:bd:9e:56:db:ee:54:f7:50:c0:a5:36:70:94:2e:de:9b:9c:
87:f4:63:58:79:65:29:86:bf:d6:01:42:66:12:9f:76:ff:5e:
01:fa:f5:02:98:ba:67:47:6f:26:21:2e:53:c6:93:56:30:95:
dc:01:28:5d:f0:9e:ba:15:ee:da:16:39:38:31:c7:56:25:2b:
9c:29:d5:cc:a0:70:10:03:52:85:44:4e:d6:18:8e:70:4c:6f:
3a:1d:24:e1:fd:53:20:14:fd:c7:0e:1f:2d:ca:9e:e0:87:b2:
cf:d8:c2:09:a7:9b:d6:a2:5c:ae:f1:05:ad:d9:59:12:2d:3f:
54:3d:1a:5c:f5:d1:34:21:b4:36:47:42:18:1c:d1:c6:f8:f5:
d6:be:14:c0:ad:73:aa:5e:71:48:4c:70:d8:4c:2d:cd:a0:97:
0e:1a:09:49:14:9d:f2:0d:99:4b:95:71:99:d1:a5:1a:75:e0:
bc:a3:1b:76:88:04:f7:72:9f:7f:0e:f5:d5:3a:fb:9c:91:cc:
94:7f:e8:47:72:45:b2:21:b7:72:c7:29:1d:27:3f:d6:c8:61:
1d:57:09:3b:d1:c4:ec:69:86:37:4b:ee:73:72:bb:c5:0d:a6:
48:a8:26:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:02 2025 by rpki-client on console.sobornost.net