Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/db5101-015c-40c5-905b-657b3a7d9676/1/9iuKUiRNNk0yJqP9x1MG2I_7d9s.roa
File: 9iuKUiRNNk0yJqP9x1MG2I_7d9s.roa (raw, json)
Hash identifier: OJC+CIaFp/mpbSmO0wI1lGEv8Ek7U6QE2MP4Wm3PDaM=
Subject key identifier: F6:2B:8A:52:24:4D:36:4D:32:26:A3:FD:C7:53:06:D8:8F:FB:77:DB
Certificate issuer: /CN=30f90d2520ad619ac3060b39fbd2c204e29a2a14
Certificate serial: 01942143C1B0E7BE3D916FA3A9ABADB8ABA5
Authority key identifier: 30:F9:0D:25:20:AD:61:9A:C3:06:0B:39:FB:D2:C2:04:E2:9A:2A:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MPkNJSCtYZrDBgs5-9LCBOKaKhQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/db5101-015c-40c5-905b-657b3a7d9676/1/9iuKUiRNNk0yJqP9x1MG2I_7d9s.roa
Signing time: Wed 01 Jan 2025 09:47:56 +0000
ROA not before: Wed 01 Jan 2025 09:47:56 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 50277
IP address blocks: 195.5.180.0/24 maxlen: 24
2001:67c:1580::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:43:c1:b0:e7:be:3d:91:6f:a3:a9:ab:ad:b8:ab:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30f90d2520ad619ac3060b39fbd2c204e29a2a14
Validity
Not Before: Jan 1 09:47:56 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f62b8a52244d364d3226a3fdc75306d88ffb77db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:db:41:76:89:04:c0:37:e7:74:8b:0e:a8:20:
01:2a:b5:7a:93:01:97:38:12:60:fd:5c:30:dd:48:
86:e4:6e:c9:76:5a:ce:ab:b7:07:b3:82:51:4e:ce:
13:46:2b:af:e2:62:6a:66:b9:4d:f5:6c:e2:61:b7:
28:63:f6:61:e5:bc:d6:38:87:ac:5c:b9:59:36:4e:
98:cd:f9:ef:0b:80:ce:6d:f9:e6:34:73:32:1c:03:
85:1c:41:35:30:cb:a6:57:9a:a0:ba:bb:97:a2:db:
9a:e2:f8:a4:3c:25:58:cb:a9:37:f8:4c:7b:8a:98:
92:a2:48:52:91:0e:b1:41:72:98:95:bd:f6:91:62:
15:b5:ec:cc:d4:5a:a9:01:1a:8a:cb:fe:46:f8:97:
8a:62:c8:41:a1:d0:b1:81:a6:a3:17:72:f6:28:d1:
24:22:a4:f7:1f:48:76:a7:8d:d6:b9:77:1a:bc:ea:
54:dc:0c:bc:f6:43:92:02:ea:5e:65:5d:e9:ea:c7:
10:79:6b:a2:3c:aa:29:50:63:df:78:bb:be:0c:65:
3d:93:63:fc:63:ba:f5:a2:06:66:2d:6f:f2:e7:cc:
de:d4:c1:45:ec:6e:2a:81:eb:6e:1d:06:fd:dd:31:
69:ac:f1:45:12:f2:bd:01:3c:49:ad:36:60:9d:87:
37:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:2B:8A:52:24:4D:36:4D:32:26:A3:FD:C7:53:06:D8:8F:FB:77:DB
X509v3 Authority Key Identifier:
keyid:30:F9:0D:25:20:AD:61:9A:C3:06:0B:39:FB:D2:C2:04:E2:9A:2A:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MPkNJSCtYZrDBgs5-9LCBOKaKhQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/db5101-015c-40c5-905b-657b3a7d9676/1/9iuKUiRNNk0yJqP9x1MG2I_7d9s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/db5101-015c-40c5-905b-657b3a7d9676/1/MPkNJSCtYZrDBgs5-9LCBOKaKhQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.5.180.0/24
IPv6:
2001:67c:1580::/48
Signature Algorithm: sha256WithRSAEncryption
27:9b:8d:92:15:6f:0f:1d:67:38:bd:0a:f0:d3:f4:8c:9d:52:
85:10:2d:50:14:af:ae:59:4a:13:c7:64:a1:7a:b2:01:55:c1:
08:de:2c:b3:aa:55:c0:1e:06:bd:22:f4:1c:df:bc:7e:ba:14:
0c:f6:83:58:94:f4:7d:dd:c8:e0:73:78:c5:0a:84:46:40:61:
94:5d:0f:78:b3:89:64:0d:ed:40:ad:0f:3f:02:b2:44:f1:da:
5c:eb:c6:58:1a:d2:74:a4:32:78:af:51:07:19:59:b2:ed:70:
49:d6:09:c6:85:f0:ca:37:41:03:87:69:29:df:e3:dd:5a:87:
38:f4:a6:6b:c0:21:58:6a:5d:d1:bb:83:d4:9d:07:14:c0:88:
d4:14:cd:2f:a2:e7:6e:f4:91:a9:4f:f3:1c:61:0a:d2:62:cd:
2d:a3:a1:6d:d6:b6:1a:80:80:9a:5c:aa:91:7b:2a:47:a9:d5:
37:ce:c4:ac:77:24:36:fd:2d:a6:4d:f1:3e:9f:49:c2:95:45:
7f:f8:61:27:ca:e9:84:0a:95:9d:77:51:a1:d8:6c:48:95:89:
fb:e0:13:6b:41:dd:93:03:36:40:4f:47:21:aa:f6:b9:26:4c:
65:eb:69:85:e5:53:8e:dd:c2:d7:9a:de:cd:06:6e:75:50:04:
16:8c:08:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:04 2025 by rpki-client on console.sobornost.net