Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/5d0278-216e-4712-9487-19b3d1544c39/1/fRGE3gXQY93KoteIKmDWsv7Pa8E.roa
File: fRGE3gXQY93KoteIKmDWsv7Pa8E.roa (raw, json)
Hash identifier: oBozhLOPrWsT/ybptTbngKdb/+Q5fLnG+R66tlH23uY=
Subject key identifier: 7D:11:84:DE:05:D0:63:DD:CA:A2:D7:88:2A:60:D6:B2:FE:CF:6B:C1
Certificate issuer: /CN=095dff1f6bd8813de5ff9af167247f78b88439bd
Certificate serial: 01942068209832FC3947F2E2340D3FC68439
Authority key identifier: 09:5D:FF:1F:6B:D8:81:3D:E5:FF:9A:F1:67:24:7F:78:B8:84:39:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CV3_H2vYgT3l_5rxZyR_eLiEOb0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/5d0278-216e-4712-9487-19b3d1544c39/1/fRGE3gXQY93KoteIKmDWsv7Pa8E.roa
Signing time: Wed 01 Jan 2025 05:48:02 +0000
ROA not before: Wed 01 Jan 2025 05:48:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 1257
IP address blocks: 94.126.224.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:68:20:98:32:fc:39:47:f2:e2:34:0d:3f:c6:84:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=095dff1f6bd8813de5ff9af167247f78b88439bd
Validity
Not Before: Jan 1 05:48:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7d1184de05d063ddcaa2d7882a60d6b2fecf6bc1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:09:3e:b3:d2:b5:97:de:d1:27:d9:3f:4a:f1:
00:7c:d3:4a:c2:b4:92:c3:da:99:fd:c5:58:74:bf:
20:2d:f4:64:e4:9a:cf:60:53:6d:33:60:a7:4e:5c:
a7:66:55:73:0c:0e:97:56:63:2a:b7:2e:1f:94:b2:
fe:42:92:51:71:2a:5f:90:57:09:27:e8:0b:da:4c:
c2:c5:49:4b:84:1b:7e:2f:21:ec:54:06:13:7c:43:
c7:5a:4f:c5:19:66:45:0b:e8:90:25:3b:e7:a4:4b:
3e:06:7c:d2:b3:6c:94:ab:6b:20:21:c7:cf:c7:76:
55:b9:c8:30:25:f4:6e:12:08:1f:45:32:25:21:d9:
8f:3e:b7:6a:e2:23:ad:5a:83:37:9c:b0:b5:a0:51:
fa:4b:f4:78:75:7b:0c:ef:0a:a2:1e:17:e8:6b:3d:
ae:eb:41:87:05:c9:20:97:24:20:ca:e5:7c:57:a2:
25:2d:21:a1:e3:23:06:58:d3:61:a7:9b:ec:e3:bb:
55:ad:12:83:0a:66:51:67:81:4e:e6:cf:80:96:c2:
90:fb:60:b6:f7:9b:f5:4d:66:2c:f7:db:5b:02:77:
5a:fd:86:5b:60:70:e6:b0:63:6c:03:95:9f:58:07:
86:16:54:b9:06:6a:11:3b:26:e9:ee:0e:0c:4b:84:
b2:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:11:84:DE:05:D0:63:DD:CA:A2:D7:88:2A:60:D6:B2:FE:CF:6B:C1
X509v3 Authority Key Identifier:
keyid:09:5D:FF:1F:6B:D8:81:3D:E5:FF:9A:F1:67:24:7F:78:B8:84:39:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CV3_H2vYgT3l_5rxZyR_eLiEOb0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/5d0278-216e-4712-9487-19b3d1544c39/1/fRGE3gXQY93KoteIKmDWsv7Pa8E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/5d0278-216e-4712-9487-19b3d1544c39/1/CV3_H2vYgT3l_5rxZyR_eLiEOb0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.126.224.0/21
Signature Algorithm: sha256WithRSAEncryption
2b:29:c6:93:47:ae:af:e9:5d:8c:f4:46:62:01:d8:40:41:54:
85:36:c4:7f:eb:bc:e3:41:c2:61:a1:21:f3:05:d3:a3:7e:10:
07:f5:4e:23:fe:da:d3:e3:12:3a:c3:2b:28:e1:ad:5c:38:c2:
9c:5b:bc:47:f0:52:31:91:95:9d:f5:0e:b6:98:cd:2f:b3:54:
08:cf:23:6d:cf:7a:7a:9b:31:f0:ad:fc:fd:f8:f9:4d:71:ad:
48:a2:84:bb:39:6e:ce:1e:c7:af:73:e1:68:ad:d0:e8:06:e7:
af:b4:fb:27:aa:d1:6f:f1:39:28:6d:8b:71:8c:27:f6:ef:b1:
c5:59:10:c6:e7:1b:53:d6:25:62:63:f9:67:ad:6a:64:6c:b3:
d9:93:10:08:c4:78:77:01:75:99:6e:bc:f8:ad:c1:5e:bf:4b:
51:b9:31:f8:04:4e:69:38:96:1e:db:3f:83:d0:e7:8c:0e:d7:
cd:88:a8:7a:4b:b0:73:c2:57:03:ef:d2:81:61:df:e7:c8:99:
d1:19:e6:f7:cb:2f:cf:3f:fd:00:5a:c0:76:c8:0c:08:59:36:
d7:88:cb:43:7f:c7:72:64:03:86:a0:ac:0d:8b:34:5f:4a:39:
13:ee:2c:bc:c2:c5:bf:c2:a9:59:2e:be:2a:c4:27:b1:e1:95:
8c:1c:3b:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:15 2025 by rpki-client on console.sobornost.net