Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/kgktAVlTv2D-bG1zQyRBYEGj9mA.roa
File: kgktAVlTv2D-bG1zQyRBYEGj9mA.roa (raw, json)
Hash identifier: 4jXjOfG4sPUQ7tZxP9U4E4EO8TcDhdNGeHxDovGZ4Wo=
Subject key identifier: 92:09:2D:01:59:53:BF:60:FE:6C:6D:73:43:24:41:60:41:A3:F6:60
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 01961E0C088D8D4EC5367369DAD9A9234ABA
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/kgktAVlTv2D-bG1zQyRBYEGj9mA.roa
Signing time: Thu 10 Apr 2025 04:53:47 +0000
ROA not before: Thu 10 Apr 2025 04:53:47 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 45.94.169.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:1e:0c:08:8d:8d:4e:c5:36:73:69:da:d9:a9:23:4a:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Apr 10 04:53:47 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=92092d015953bf60fe6c6d734324416041a3f660
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:e1:7c:19:d9:00:83:75:9a:54:f8:2c:e5:2a:
fb:d3:7b:b7:23:93:8e:ee:1f:5d:98:5d:84:5c:62:
56:21:cc:a1:36:4e:b0:85:73:ee:50:d8:c2:23:a5:
39:18:34:dd:0b:69:bd:c5:42:3e:9b:af:9d:cb:cc:
fc:27:9e:c2:54:fc:d3:d6:3b:b7:b0:5b:a1:ff:8e:
c2:06:46:e7:df:f2:92:6b:82:60:d7:78:de:d6:7a:
35:cd:c1:97:a8:0b:ec:c4:b9:8d:3e:a4:b0:1b:57:
42:ab:c5:19:f1:10:07:b9:f0:31:2e:64:5a:7a:a8:
a1:b9:84:35:65:40:62:b1:c9:2f:6c:8c:e9:46:69:
d3:cd:0c:3d:69:1a:c8:bf:34:c6:1d:3e:1a:1a:27:
4d:12:67:91:60:e7:7b:db:16:89:ec:83:10:e0:0e:
f5:5b:af:b1:19:09:7a:93:4b:f1:75:3b:ef:6d:e2:
04:ec:aa:d7:ba:8e:c6:32:00:95:7c:27:78:f0:1f:
a2:e3:d4:4e:6d:46:7b:98:6c:c7:9c:60:04:7f:a4:
e9:75:1f:7b:53:5b:cb:3e:8c:38:55:c6:96:32:0f:
5f:20:79:2b:9b:c4:37:f3:6f:14:13:65:c7:69:6a:
e9:9d:65:2e:6a:28:1b:47:8c:5f:ba:5f:9b:ee:c5:
1d:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:09:2D:01:59:53:BF:60:FE:6C:6D:73:43:24:41:60:41:A3:F6:60
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/kgktAVlTv2D-bG1zQyRBYEGj9mA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.94.169.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:21:cc:12:d0:f3:88:a1:ec:b7:a5:21:8e:45:75:0e:8f:91:
7c:66:a4:cd:38:9c:39:41:a7:43:e0:a1:90:3e:48:70:cc:1d:
db:85:2b:55:b4:cf:5f:9c:c7:c4:99:b5:71:12:21:03:db:33:
aa:03:22:25:03:49:27:71:4a:5f:63:fe:39:74:95:2e:85:87:
87:98:c2:91:4c:9f:5f:ff:68:d9:93:c6:f4:9f:21:e9:cc:88:
a0:10:c1:7b:21:f0:77:94:21:26:b4:1e:c5:b6:1d:81:93:91:
16:4f:d8:72:48:4d:ce:63:b6:68:4b:55:a9:bb:ce:e6:84:5e:
ff:84:0e:6f:ea:33:e3:9e:52:47:3d:1e:93:d3:c4:5d:a5:b8:
b2:03:f2:a4:c1:90:a3:ba:47:ea:68:ad:bb:c1:47:c8:23:91:
e5:ab:7e:13:ee:f3:e7:ba:5e:a1:f7:42:af:22:25:ca:a7:dd:
b4:f2:24:9b:0b:71:8f:79:dd:c5:bb:75:ab:7b:b1:f0:dc:94:
bf:3a:06:93:d7:5f:d6:6d:21:cd:c6:cc:55:9e:da:48:71:fd:
23:21:f7:1e:fa:3d:35:72:6a:9c:bc:81:31:cb:04:f9:eb:47:
b4:f9:ba:2f:9c:8f:39:78:52:d8:c2:a4:b4:f2:ee:be:6a:d8:
86:f3:f8:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:06 2025 by rpki-client on console.sobornost.net