Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/70ddc4-f9c4-498b-85ee-16fc9d44ec7d/1/dOMaomaM3zc_oZf2l_KGgZkjQjM.roa
File: dOMaomaM3zc_oZf2l_KGgZkjQjM.roa (raw, json)
Hash identifier: ZA8CPvYUiDN0MdAy8uYPcmT72kE+r1MAEa1eMhF5nMk=
Subject key identifier: 74:E3:1A:A2:66:8C:DF:37:3F:A1:97:F6:97:F2:86:81:99:23:42:33
Certificate issuer: /CN=9c0d5540bdcd33052bc00fff266338bf3cc82a80
Certificate serial: 019423D7D56F27D970C456C4EA3C6C0DF5DA
Authority key identifier: 9C:0D:55:40:BD:CD:33:05:2B:C0:0F:FF:26:63:38:BF:3C:C8:2A:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nA1VQL3NMwUrwA__JmM4vzzIKoA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/70ddc4-f9c4-498b-85ee-16fc9d44ec7d/1/dOMaomaM3zc_oZf2l_KGgZkjQjM.roa
Signing time: Wed 01 Jan 2025 21:48:54 +0000
ROA not before: Wed 01 Jan 2025 21:48:54 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 400161
IP address blocks: 195.96.137.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:d5:6f:27:d9:70:c4:56:c4:ea:3c:6c:0d:f5:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c0d5540bdcd33052bc00fff266338bf3cc82a80
Validity
Not Before: Jan 1 21:48:54 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=74e31aa2668cdf373fa197f697f2868199234233
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:83:82:26:a5:df:65:f3:ed:cc:c4:23:4a:8a:
ea:df:9e:4d:ce:e1:04:70:bd:d2:a9:dc:05:af:0f:
bd:9b:9c:fd:df:49:72:4a:df:a8:0e:7a:38:ea:d4:
eb:95:4f:4d:7a:f1:98:8a:55:d8:43:f7:07:ea:65:
2c:a3:fc:c6:29:c8:ce:80:0c:19:47:19:36:a2:5d:
1b:dd:10:1d:8e:07:d0:ee:52:ab:05:26:a6:26:fc:
82:06:77:dd:c3:a7:9f:5f:0d:95:b1:be:ba:df:92:
e4:4e:61:52:fe:58:4e:b4:78:dd:6f:cf:3b:d5:4f:
fa:07:52:cd:b9:4b:dc:27:89:65:e0:12:00:c5:a9:
ec:50:c9:1c:42:ce:6d:51:e3:10:a9:53:31:a0:2a:
2a:43:93:be:17:13:2c:01:46:16:5b:1e:05:89:fe:
c0:11:9a:86:ec:d9:28:d2:87:56:1b:8a:77:0e:0e:
1a:f4:6e:6e:93:2e:ae:b1:46:97:05:7c:97:95:ac:
7b:1c:4d:b4:dd:dd:64:34:44:4c:1c:b9:4e:4e:40:
0b:ce:18:9d:47:1f:21:22:56:69:1d:64:f1:3f:3f:
fe:96:63:7a:2e:b9:5a:01:d4:b2:1c:cc:00:0f:e7:
6b:3c:3d:11:6c:4c:08:c6:1b:be:c1:cb:88:f3:42:
1e:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:E3:1A:A2:66:8C:DF:37:3F:A1:97:F6:97:F2:86:81:99:23:42:33
X509v3 Authority Key Identifier:
keyid:9C:0D:55:40:BD:CD:33:05:2B:C0:0F:FF:26:63:38:BF:3C:C8:2A:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nA1VQL3NMwUrwA__JmM4vzzIKoA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/70ddc4-f9c4-498b-85ee-16fc9d44ec7d/1/dOMaomaM3zc_oZf2l_KGgZkjQjM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/70ddc4-f9c4-498b-85ee-16fc9d44ec7d/1/nA1VQL3NMwUrwA__JmM4vzzIKoA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.96.137.0/24
Signature Algorithm: sha256WithRSAEncryption
07:92:8e:53:c8:69:04:a0:de:20:cf:b6:44:40:e7:a4:80:19:
3e:5a:c4:c8:34:62:45:b8:eb:5b:d7:e6:15:cb:b4:6d:9b:e2:
cb:49:9c:e9:b6:da:76:ba:39:a6:5d:f4:ae:24:39:be:c2:af:
24:b2:4e:0b:4f:f5:40:f3:01:75:43:b6:aa:08:ee:8b:44:c5:
b5:32:7b:3d:6d:8b:3e:af:78:8a:89:32:91:f3:37:c6:2d:2e:
98:1c:c7:78:48:81:6b:2b:55:0c:91:d0:30:41:87:a5:00:31:
a2:05:4d:26:e5:4c:99:29:fe:b2:05:df:af:f3:a7:5f:9f:5e:
7b:ac:e5:da:d2:58:5f:03:28:04:7b:55:cf:73:28:93:0a:dd:
0c:a0:41:fc:8d:5b:7e:c7:6e:c3:4f:99:b0:f5:78:27:72:08:
f2:21:af:10:c5:82:4a:bd:93:e2:a5:a2:2d:c8:32:44:8f:78:
78:2f:8c:b4:24:84:75:05:ff:66:37:ce:2e:3b:8a:02:a8:7b:
43:26:d3:a3:2c:52:d0:73:a5:24:f2:27:0b:73:83:e6:ef:58:
3d:c2:c0:a8:d6:e1:7d:1b:5e:52:a1:6a:5d:7c:7b:28:40:ea:
17:9f:7c:94:48:aa:e4:7a:63:e7:29:ce:b4:e6:26:e1:40:70:
60:cc:ee:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:02 2025 by rpki-client on console.sobornost.net