Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/1d8fca-b462-4313-a523-e411b43dc68a/1/CMb4sSALz-KpBLSc_havR1--Rcg.roa
File: CMb4sSALz-KpBLSc_havR1--Rcg.roa (raw, json)
Hash identifier: tSEX+cRvKAqr6srk3pPXDdRAbuuNHsu00QGpp8uCSYw=
Subject key identifier: 08:C6:F8:B1:20:0B:CF:E2:A9:04:B4:9C:FE:16:AF:47:5F:BE:45:C8
Certificate issuer: /CN=53f39d2f20e2d9b4f96cbd1337ea32da518d8ec8
Certificate serial: 01942368DD531247ED227DDBB079C4055335
Authority key identifier: 53:F3:9D:2F:20:E2:D9:B4:F9:6C:BD:13:37:EA:32:DA:51:8D:8E:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U_OdLyDi2bT5bL0TN-oy2lGNjsg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/1d8fca-b462-4313-a523-e411b43dc68a/1/CMb4sSALz-KpBLSc_havR1--Rcg.roa
Signing time: Wed 01 Jan 2025 19:47:42 +0000
ROA not before: Wed 01 Jan 2025 19:47:42 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 59929
IP address blocks: 195.12.60.0/24 maxlen: 24
195.12.61.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:68:dd:53:12:47:ed:22:7d:db:b0:79:c4:05:53:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53f39d2f20e2d9b4f96cbd1337ea32da518d8ec8
Validity
Not Before: Jan 1 19:47:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=08c6f8b1200bcfe2a904b49cfe16af475fbe45c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:b4:0b:d7:c1:58:f0:c7:02:d6:c4:7d:67:96:
bf:f9:20:a9:4f:5b:79:b4:10:17:5a:53:fa:f7:60:
1a:1f:3e:bd:83:18:45:29:ca:ff:33:40:34:72:62:
cf:b0:25:5b:41:97:71:44:41:9f:58:e5:79:69:e9:
87:b3:3a:8e:79:1f:e5:06:dc:f2:3c:28:74:6c:cd:
59:41:93:c7:b2:e3:cb:5e:ac:3c:1a:29:e5:d6:91:
50:57:5e:15:c6:9f:6c:ca:c7:2e:92:b4:7f:39:c5:
97:45:49:1d:ee:37:f9:26:b5:53:e5:98:53:cd:ac:
60:84:6a:1e:13:96:59:73:a5:62:30:ff:f4:bb:6d:
fc:7f:d0:c7:9f:40:f7:c1:e0:d2:e8:75:17:88:97:
03:c6:fb:a0:90:90:6d:75:d6:9f:bb:a3:40:89:62:
98:c9:44:af:33:c0:d7:cc:04:76:d6:1c:0b:ff:b0:
ef:bc:c6:04:ee:0a:a6:41:9e:db:60:49:6c:76:49:
9f:6f:95:ba:23:23:09:29:56:72:4b:c7:6e:ce:e6:
74:fb:d6:59:79:26:59:8c:87:18:78:50:6b:bc:75:
41:43:e8:25:85:4f:bc:95:c0:de:b3:80:4a:7c:e5:
eb:98:35:b3:ad:83:3d:01:84:aa:13:6a:bd:70:40:
46:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:C6:F8:B1:20:0B:CF:E2:A9:04:B4:9C:FE:16:AF:47:5F:BE:45:C8
X509v3 Authority Key Identifier:
keyid:53:F3:9D:2F:20:E2:D9:B4:F9:6C:BD:13:37:EA:32:DA:51:8D:8E:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U_OdLyDi2bT5bL0TN-oy2lGNjsg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/1d8fca-b462-4313-a523-e411b43dc68a/1/CMb4sSALz-KpBLSc_havR1--Rcg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/1d8fca-b462-4313-a523-e411b43dc68a/1/U_OdLyDi2bT5bL0TN-oy2lGNjsg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.12.60.0/23
Signature Algorithm: sha256WithRSAEncryption
46:ca:20:a8:9b:7f:5c:19:dc:de:13:1b:47:66:b9:1c:d4:a6:
e6:75:9d:bd:54:5f:e8:af:a8:fb:0a:5d:a0:92:02:14:e5:ca:
00:f9:a5:63:89:3a:2e:10:ed:57:80:f6:02:d8:87:24:8d:aa:
c5:52:65:84:4e:28:69:e4:ad:8f:60:ab:58:01:08:e5:ab:3f:
e5:12:6a:ee:eb:e0:02:9c:0d:fa:13:62:db:0c:7e:4b:97:f1:
59:d9:1f:6e:ac:6b:c9:8a:d2:14:77:50:49:43:60:5e:7c:1a:
fe:4a:dc:ed:7b:07:15:0e:cc:4d:14:b8:f8:fd:f6:7b:07:b9:
a3:18:41:3a:6a:b4:49:39:4b:a9:1e:24:ed:54:93:ea:14:47:
f1:1f:d5:11:0a:20:b3:e2:b9:c7:83:22:ac:3a:e3:08:be:39:
14:43:2d:68:51:e6:19:c6:1d:7f:4c:6b:06:fe:6d:b3:0a:6e:
98:ac:1f:c0:bb:46:2b:49:4a:8e:87:94:c4:e9:80:b0:5f:8f:
46:15:bf:c6:98:ef:3a:e9:c9:fa:a0:43:d7:5a:87:a0:ef:37:
0b:c5:9b:59:ab:26:b8:e7:f0:10:ac:83:9c:50:00:30:e4:ee:
34:a5:13:bb:b2:b9:21:a5:93:f6:06:e9:25:ba:4a:49:96:45:
03:51:b2:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:04 2025 by rpki-client on console.sobornost.net