Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/8R9-4shoaWBy8nv8-SeP1RsE_tc.roa
File: 8R9-4shoaWBy8nv8-SeP1RsE_tc.roa (raw, json)
Hash identifier: 6SSW2U2ivNmJA6CpfrcaSJUUkjE0lNZKxtMs3tqZnd0=
Subject key identifier: F1:1F:7E:E2:C8:68:69:60:72:F2:7B:FC:F9:27:8F:D5:1B:04:FE:D7
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 0195F2D303F5FB52FEEB929AEF6103D3F8E3
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/8R9-4shoaWBy8nv8-SeP1RsE_tc.roa
Signing time: Tue 01 Apr 2025 19:27:50 +0000
ROA not before: Tue 01 Apr 2025 19:27:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 21859
IP address blocks: 163.5.170.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:f2:d3:03:f5:fb:52:fe:eb:92:9a:ef:61:03:d3:f8:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Apr 1 19:27:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f11f7ee2c868696072f27bfcf9278fd51b04fed7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:4c:fd:7a:84:cb:fd:12:a5:c5:21:99:70:47:
0f:07:b9:9c:80:16:22:12:39:7d:ea:30:7e:50:6f:
12:39:71:27:44:e4:dd:9e:57:a2:5b:cb:db:b0:18:
c8:44:9d:29:7d:94:92:ba:e3:ba:f0:f5:1b:8a:a4:
b4:45:2c:9c:e8:cc:af:51:3e:d2:e3:9e:df:bf:c8:
3a:c5:f4:0f:4f:cb:15:1f:3a:27:26:95:ef:be:9e:
fe:2d:fa:07:fa:82:d2:bb:9c:e1:b6:ea:f8:7d:77:
ca:59:46:0c:2c:a8:ea:92:08:2a:8a:61:cb:d5:13:
37:da:4c:96:cb:67:6d:79:b8:61:31:e3:f3:29:c9:
fc:62:2b:4e:51:39:58:1f:9f:70:5e:0b:bd:44:f4:
72:07:ed:5e:ec:f3:08:11:38:0d:4b:da:5c:61:03:
5d:0e:6d:a5:00:7e:9c:f4:66:42:af:16:3b:1c:8d:
13:b3:32:8a:d7:d3:d0:85:d7:fd:e8:55:c6:b6:5e:
02:4b:10:cb:c9:e6:c0:d5:b1:0f:b5:ea:82:ed:59:
50:14:32:76:b2:46:f3:75:88:e7:51:4d:3e:8d:5d:
04:5b:c6:0b:6a:8e:cf:6c:6e:6f:28:16:1c:f2:fd:
b3:d5:f7:d5:b2:c5:5a:6f:53:61:a0:22:b4:98:5e:
cf:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:1F:7E:E2:C8:68:69:60:72:F2:7B:FC:F9:27:8F:D5:1B:04:FE:D7
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/8R9-4shoaWBy8nv8-SeP1RsE_tc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.170.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:3f:10:f0:c4:95:2c:d6:b4:5b:c3:40:74:0e:28:6b:44:b5:
ed:6e:01:16:24:2c:1a:84:17:a5:e4:78:13:19:f2:9b:e6:52:
ab:fa:b6:16:4b:1b:8f:0c:ce:2a:55:d8:e4:16:28:f9:dd:9a:
9f:16:88:95:f8:6b:bf:e6:ad:f5:36:4d:7e:98:00:d7:bb:8b:
c1:a2:89:f0:31:58:1d:62:82:d5:84:a8:0e:2a:16:47:75:70:
f4:2f:6f:0b:0a:bf:d3:eb:bd:72:f3:33:44:7d:50:e7:cd:0b:
e5:f2:ae:c2:6f:5f:ed:d7:fd:43:fd:ba:51:62:5d:d5:94:1b:
43:7a:a2:57:eb:62:b8:1a:72:f7:38:77:dc:0a:6b:d6:36:a5:
1b:bb:32:f9:64:c9:3f:2d:e6:6f:d7:e3:07:42:90:c7:58:f5:
e9:dc:71:bc:75:cb:83:84:77:d7:f3:f7:db:1f:d0:df:dc:98:
dd:f0:47:de:b7:f5:8e:be:4d:9c:26:48:6c:70:49:53:51:3d:
c6:eb:59:1a:9d:ad:a9:80:89:4b:7e:b7:68:41:cc:76:7a:6e:
46:89:63:ea:3c:26:1d:71:9b:53:bc:f4:e2:29:8d:64:e4:94:
7e:24:c7:89:1c:a0:49:6b:a1:e4:2e:d5:7b:e1:dd:d9:ba:bf:
83:2a:a4:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:03 2025 by rpki-client on console.sobornost.net