Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/fde44b-f2c0-41e4-b141-fb4642d2d9a6/1/l2gwnONgJJmc9aNFKVJiVvqzx2A.roa
File: l2gwnONgJJmc9aNFKVJiVvqzx2A.roa (raw, json)
Hash identifier: yyAEtXytlbDfVZErAQi0Mk5MO/WKce+c66TOzBmN5Ww=
Subject key identifier: 97:68:30:9C:E3:60:24:99:9C:F5:A3:45:29:52:62:56:FA:B3:C7:60
Certificate issuer: /CN=2467603623143bd1bc7a8fc9d8e79d9559611860
Certificate serial: 0194258FB8245448F2970ECD9B9726B90443
Authority key identifier: 24:67:60:36:23:14:3B:D1:BC:7A:8F:C9:D8:E7:9D:95:59:61:18:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JGdgNiMUO9G8eo_J2OedlVlhGGA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/fde44b-f2c0-41e4-b141-fb4642d2d9a6/1/l2gwnONgJJmc9aNFKVJiVvqzx2A.roa
Signing time: Thu 02 Jan 2025 05:49:23 +0000
ROA not before: Thu 02 Jan 2025 05:49:23 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 28686
IP address blocks: 194.147.192.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:b8:24:54:48:f2:97:0e:cd:9b:97:26:b9:04:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2467603623143bd1bc7a8fc9d8e79d9559611860
Validity
Not Before: Jan 2 05:49:23 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9768309ce36024999cf5a34529526256fab3c760
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:17:35:51:aa:10:32:c5:fc:ac:3c:75:4b:24:
bf:9e:2a:4e:ad:3f:00:81:46:69:f7:32:b5:28:76:
b7:7e:cf:7a:f5:b3:9b:10:48:3e:e7:eb:00:2d:e9:
e2:4a:87:bf:47:9b:c7:33:ff:94:b6:5e:47:27:8e:
f4:46:a4:2a:96:38:f3:1d:e5:c9:75:78:0e:ce:bd:
55:e9:a5:9f:44:ff:61:95:92:eb:cc:b7:b8:61:c1:
61:a0:4c:d9:d6:3c:b7:26:84:e4:79:24:c4:4d:a1:
82:da:c0:3b:4d:06:17:88:04:54:dc:dc:aa:b7:13:
50:bf:32:1c:73:7f:d1:f1:b9:87:26:46:b3:0e:d2:
48:fd:c8:38:9b:ff:d2:67:94:9b:33:f7:a9:95:bf:
1f:bf:4b:1d:7c:12:4c:a8:f6:80:f8:a3:e1:1a:ea:
d1:98:7a:ac:b7:34:2a:2d:e2:2e:ad:8b:60:0b:9e:
7c:6c:35:b0:e7:a4:2f:92:a9:a6:63:23:fc:cd:ca:
1a:43:35:35:d7:79:47:92:5d:be:4e:f0:68:a1:dd:
09:e6:6c:99:3f:cb:e9:fb:c0:16:98:bc:9d:07:71:
2c:86:09:95:f4:39:f7:5b:52:37:a0:6d:6d:d1:ed:
37:dc:fc:d1:bc:c4:99:75:16:4a:5f:62:1d:05:81:
2c:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:68:30:9C:E3:60:24:99:9C:F5:A3:45:29:52:62:56:FA:B3:C7:60
X509v3 Authority Key Identifier:
keyid:24:67:60:36:23:14:3B:D1:BC:7A:8F:C9:D8:E7:9D:95:59:61:18:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JGdgNiMUO9G8eo_J2OedlVlhGGA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/fde44b-f2c0-41e4-b141-fb4642d2d9a6/1/l2gwnONgJJmc9aNFKVJiVvqzx2A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/fde44b-f2c0-41e4-b141-fb4642d2d9a6/1/JGdgNiMUO9G8eo_J2OedlVlhGGA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.147.192.0/22
Signature Algorithm: sha256WithRSAEncryption
4d:58:6c:28:27:f0:72:62:91:ca:04:6e:a0:4d:0e:29:be:9a:
75:22:e0:ee:52:cd:06:71:6b:04:b6:63:b6:b6:39:11:a9:42:
50:ba:a9:72:2e:88:a5:be:5d:06:53:cf:8e:07:5a:9b:4d:d4:
84:33:82:ad:42:c5:d7:ea:84:2d:46:02:a8:82:eb:ce:61:34:
e9:2d:56:be:72:3a:2e:31:5a:68:39:35:1a:0c:80:9e:8a:f4:
f8:4c:82:63:fd:9c:f6:26:14:ef:34:44:30:20:43:28:96:b7:
08:62:17:c2:5a:82:fa:52:d6:83:db:5a:b1:61:b5:6e:7b:bd:
ab:6f:24:3f:98:a2:9d:2a:64:b8:2e:22:4b:78:7f:52:78:04:
00:00:86:92:06:da:7c:e2:d0:64:74:ab:90:e2:aa:b8:01:df:
9a:c9:45:d6:bd:8a:24:a6:99:c3:7c:34:3e:1c:43:3a:27:f4:
be:3f:d6:12:8a:5d:17:b4:5f:60:41:53:9d:c9:f1:4b:ab:9b:
31:00:ff:d5:82:80:79:89:97:6d:33:54:f5:c4:49:70:4c:63:
e8:a9:4f:fb:35:1a:96:0e:db:7f:4f:75:0b:45:ec:2a:4e:b9:
10:d3:9a:da:9b:2b:8b:44:62:53:9a:07:3c:67:35:ad:b2:57:
bd:33:cc:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:08 2025 by rpki-client on console.sobornost.net