Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/lyu6R4gm1GDGGWrprfi3lQB2gi0.roa
File: lyu6R4gm1GDGGWrprfi3lQB2gi0.roa (raw, json)
Hash identifier: SnWsapf5S+uAoqHYWK233NyQQsjjVYaX6QjiNNmT2oI=
Subject key identifier: 97:2B:BA:47:88:26:D4:60:C6:19:6A:E9:AD:F8:B7:95:00:76:82:2D
Certificate issuer: /CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Certificate serial: 01942143B2BCD6DDBF386F3492A06E1B51DF
Authority key identifier: 30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/lyu6R4gm1GDGGWrprfi3lQB2gi0.roa
Signing time: Wed 01 Jan 2025 09:47:52 +0000
ROA not before: Wed 01 Jan 2025 09:47:52 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 35275
IP address blocks: 195.187.154.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:43:b2:bc:d6:dd:bf:38:6f:34:92:a0:6e:1b:51:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Validity
Not Before: Jan 1 09:47:52 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=972bba478826d460c6196ae9adf8b7950076822d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:b2:64:2e:8c:6e:d1:be:1b:e6:8b:89:1b:56:
e6:82:36:e5:2a:9a:48:71:cc:53:47:84:e3:ad:1b:
dc:dd:d7:2e:6f:6a:88:b1:80:3b:28:4f:3f:ab:69:
2a:21:7b:01:42:8a:f0:3a:8c:58:0b:02:f9:80:be:
45:28:a4:89:49:5d:b2:c8:ac:d8:19:7a:f2:a2:ec:
c9:0f:84:9b:9b:5d:28:bc:33:e0:f2:6b:a8:58:b7:
50:99:5c:90:45:54:76:43:78:2b:7d:a6:a8:b2:b7:
c5:2f:08:64:45:de:07:8a:9c:c0:f7:a5:6e:30:80:
05:64:c9:a1:93:51:0c:cd:26:0a:00:4a:11:0b:24:
6b:63:a9:69:7e:0e:73:ef:9a:37:e4:59:08:4c:bb:
6d:9e:b2:d3:bf:d1:2a:9e:9c:5e:9d:8f:cc:5f:8e:
fb:f0:75:6f:d7:37:86:9a:65:74:15:9d:06:da:b2:
76:0f:75:21:6e:89:42:bb:9c:ba:43:df:d8:3d:82:
d4:a3:57:03:d3:4c:d7:4c:23:cc:7c:49:d0:5d:60:
70:0d:8e:a2:06:c5:31:51:c5:a5:80:71:67:14:84:
16:95:92:1b:74:43:7a:11:ad:7d:8f:99:81:fd:a1:
13:2d:40:89:2f:d1:13:ef:b7:65:29:e0:cd:0b:5d:
21:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:2B:BA:47:88:26:D4:60:C6:19:6A:E9:AD:F8:B7:95:00:76:82:2D
X509v3 Authority Key Identifier:
keyid:30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/lyu6R4gm1GDGGWrprfi3lQB2gi0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.187.154.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:43:a5:9f:57:24:6e:08:c6:5a:ff:e5:41:94:ff:2f:ac:08:
76:bf:fd:5f:89:8b:7c:c2:5d:8c:10:ac:b6:4c:64:1e:e8:f7:
ea:0f:64:94:d8:9f:7a:aa:48:95:02:20:15:aa:1e:10:02:87:
e4:55:2d:c7:c9:7c:92:72:3d:ba:a9:65:0b:1a:f0:d9:1e:43:
85:48:5f:2a:4a:26:b5:02:51:c9:b2:b2:83:d0:97:6b:e1:57:
30:c0:2a:c6:4e:40:46:f0:d2:38:06:8c:19:50:fc:9f:f0:45:
30:63:06:7e:4c:72:ae:e6:61:6c:00:e0:fa:03:e8:9a:5a:22:
62:e7:68:c0:27:39:93:02:33:c3:fe:f7:93:e6:75:f0:f7:92:
2f:a8:83:ce:1c:d2:9f:22:c9:a3:c1:72:7f:8c:d6:43:6a:36:
a1:c9:79:34:e6:b1:5c:51:14:18:cc:9f:ec:19:77:ed:d8:22:
2b:d4:05:b3:ca:9f:fc:f4:60:34:7b:3e:1d:10:fa:39:8a:8d:
9c:11:43:1c:40:1b:e2:31:18:f5:06:48:0a:e9:da:06:c2:f7:
8d:1d:ec:73:0e:dd:cb:fe:52:b3:78:94:18:40:a2:e5:af:8d:
e9:15:c6:cc:55:6b:f4:09:b7:29:58:10:c3:7e:8a:71:d9:b7:
68:43:9a:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:02 2025 by rpki-client on console.sobornost.net