Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/7766bb-bb48-49be-b21f-0a35b7ed63c7/1/iViHONOdVrtJaKvFtb1zW5ZiFfE.roa
File: iViHONOdVrtJaKvFtb1zW5ZiFfE.roa (raw, json)
Hash identifier: y//sfFe0FaBOPBIT3c460VOfTsEZyJ671nHpKb/hUio=
Subject key identifier: 89:58:87:38:D3:9D:56:BB:49:68:AB:C5:B5:BD:73:5B:96:62:15:F1
Certificate issuer: /CN=70f2b41fd36614835e33fc0881db24638b3a787b
Certificate serial: 019424B3BA223DB8EB879C2635D381D763C7
Authority key identifier: 70:F2:B4:1F:D3:66:14:83:5E:33:FC:08:81:DB:24:63:8B:3A:78:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cPK0H9NmFINeM_wIgdskY4s6eHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/7766bb-bb48-49be-b21f-0a35b7ed63c7/1/iViHONOdVrtJaKvFtb1zW5ZiFfE.roa
Signing time: Thu 02 Jan 2025 01:49:05 +0000
ROA not before: Thu 02 Jan 2025 01:49:05 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 8793
IP address blocks: 193.109.222.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:ba:22:3d:b8:eb:87:9c:26:35:d3:81:d7:63:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70f2b41fd36614835e33fc0881db24638b3a787b
Validity
Not Before: Jan 2 01:49:05 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=89588738d39d56bb4968abc5b5bd735b966215f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:b6:b2:e4:71:d1:4a:44:e8:9b:d8:f2:9b:b8:
85:4f:9c:dd:5e:a7:03:03:19:9a:c4:fd:4a:96:53:
7a:5a:63:53:82:9d:2e:72:d3:bd:3a:2b:8d:d2:fd:
55:ba:2c:f4:a6:42:0f:b5:49:c6:79:04:7b:a9:7f:
bd:3e:ba:43:27:11:0b:aa:d2:78:7a:e0:2f:79:1c:
23:76:51:6e:df:2c:16:bb:d5:53:31:e9:e1:26:f5:
a4:0e:39:a7:89:e6:81:cf:4f:46:a8:8e:20:de:6c:
18:a2:3d:a6:8f:bd:d7:bf:61:cc:b3:5f:b3:d5:ec:
30:fc:86:64:1b:f8:2d:c8:88:3e:45:66:f4:8a:37:
fa:b6:7b:fa:4d:96:44:99:43:45:6e:22:64:16:47:
8d:e7:1e:89:84:4b:6f:1e:d0:c2:3b:38:5b:d3:d5:
d6:13:d3:84:7d:d6:56:74:b3:d7:38:ed:42:16:25:
9c:fe:3b:cd:29:11:f5:86:a5:c7:c4:78:26:c0:49:
d3:1a:a6:3d:09:e3:2d:73:ac:48:41:8c:d9:e7:96:
eb:8e:40:18:1e:82:e1:1b:9f:c6:19:f4:2f:9e:69:
40:e4:77:f2:5f:b7:19:ed:ca:b6:36:a9:f3:44:ef:
f8:7d:e5:ce:d5:d5:02:6b:57:5f:dd:da:b7:d7:73:
1d:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:58:87:38:D3:9D:56:BB:49:68:AB:C5:B5:BD:73:5B:96:62:15:F1
X509v3 Authority Key Identifier:
keyid:70:F2:B4:1F:D3:66:14:83:5E:33:FC:08:81:DB:24:63:8B:3A:78:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cPK0H9NmFINeM_wIgdskY4s6eHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/7766bb-bb48-49be-b21f-0a35b7ed63c7/1/iViHONOdVrtJaKvFtb1zW5ZiFfE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/7766bb-bb48-49be-b21f-0a35b7ed63c7/1/cPK0H9NmFINeM_wIgdskY4s6eHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.109.222.0/24
Signature Algorithm: sha256WithRSAEncryption
50:94:a5:b5:18:1d:e1:f6:07:b0:cc:aa:dc:d2:27:a1:48:5c:
39:29:46:ae:14:d8:7f:07:25:af:42:a5:de:34:f0:27:85:15:
c0:28:d9:80:6e:5b:28:1d:19:7d:7a:80:cf:9a:e8:65:a8:db:
3e:7a:19:02:86:f3:72:61:b5:e9:5a:cf:f4:18:25:a3:60:51:
56:e6:8a:4b:96:62:4b:90:30:a2:df:2d:d4:64:14:0b:f3:dc:
49:7f:3c:bf:71:61:c8:9f:24:a8:00:a6:79:91:7c:14:1c:c5:
e9:12:a0:14:a9:f3:ee:99:e7:41:2b:53:5d:42:49:54:ba:a9:
40:f5:01:0d:45:14:8a:e3:3c:fb:d0:1f:79:c8:18:bb:96:21:
a1:dd:0a:7b:0f:1b:85:10:8a:87:fa:ec:c2:7a:e1:01:f4:fc:
ef:9e:3a:b5:23:43:49:1f:c1:3e:2c:47:d1:9d:9f:3f:17:86:
93:90:47:ae:0c:e2:80:00:32:c1:f8:32:42:3c:2c:9b:30:c3:
7c:2b:20:d6:7b:82:2b:54:42:9b:67:cd:ba:61:6f:ca:a2:06:
3b:55:7e:2a:f8:32:73:be:d8:fc:9d:ef:eb:4d:17:e1:7a:b8:
02:15:b3:18:d8:d5:92:c4:58:89:e8:6a:9c:5e:91:d2:13:bc:
ba:74:17:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:10 2025 by rpki-client on console.sobornost.net