Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/e64625-cb8b-49cb-8569-266ac104f7b4/1/MeHcHEJLI5aJxpbL08K_nBsRPYY.roa
File: MeHcHEJLI5aJxpbL08K_nBsRPYY.roa (raw, json)
Hash identifier: N7FogbwCwinhT6HlieiaEOy7N6CNclRf7G6B1lRFJU0=
Subject key identifier: 31:E1:DC:1C:42:4B:23:96:89:C6:96:CB:D3:C2:BF:9C:1B:11:3D:86
Certificate issuer: /CN=954b071a03db5d233d05ab0394548007767f83e7
Certificate serial: 01941F8C667C508CB0DAF04D964F653D97C4
Authority key identifier: 95:4B:07:1A:03:DB:5D:23:3D:05:AB:03:94:54:80:07:76:7F:83:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lUsHGgPbXSM9BasDlFSAB3Z_g-c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/e64625-cb8b-49cb-8569-266ac104f7b4/1/MeHcHEJLI5aJxpbL08K_nBsRPYY.roa
Signing time: Wed 01 Jan 2025 01:48:02 +0000
ROA not before: Wed 01 Jan 2025 01:48:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 47204
IP address blocks: 194.88.199.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:66:7c:50:8c:b0:da:f0:4d:96:4f:65:3d:97:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=954b071a03db5d233d05ab0394548007767f83e7
Validity
Not Before: Jan 1 01:48:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=31e1dc1c424b239689c696cbd3c2bf9c1b113d86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:da:75:7c:e8:84:b8:6d:5d:88:d8:e9:2e:9b:
15:83:3a:09:15:92:be:b1:02:f5:3c:1d:89:3b:f0:
3b:89:9d:ee:ef:85:f8:6f:f7:95:ba:f9:0b:12:07:
19:54:ab:27:3b:ea:c5:52:46:a3:c9:75:bf:80:d1:
d4:c9:4d:0e:26:31:0b:14:72:3f:ff:9f:75:6e:9f:
2f:5b:7b:ef:3e:cd:9c:e2:e6:c8:b3:79:0c:1f:c4:
14:bb:9e:2a:6e:90:6d:79:cc:0d:1f:93:ec:22:62:
fe:01:36:a1:6a:5f:0a:b5:2b:6b:6d:50:d0:f5:b2:
06:c8:2b:62:e7:ad:d9:85:76:5e:7b:d4:e1:0d:21:
71:19:1e:3c:09:98:ec:08:97:5f:63:75:07:2e:3b:
28:7c:9d:8d:e9:db:a0:7f:ca:db:88:7a:23:6f:e7:
29:81:88:fd:1e:cb:7d:05:49:ee:e3:d4:61:2d:fc:
15:fe:d5:b1:fb:a9:53:20:6f:c0:dc:65:3a:1a:4a:
3e:2d:7a:ec:48:c1:8d:19:d8:f3:cd:e9:fa:fc:79:
ea:13:44:63:92:b4:b3:dc:93:4f:27:f3:23:d9:a9:
7a:48:06:7d:97:8a:2b:d6:ce:23:79:e9:15:bb:31:
13:32:e1:32:0e:51:62:fd:c0:aa:92:b4:fe:07:d1:
4e:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:E1:DC:1C:42:4B:23:96:89:C6:96:CB:D3:C2:BF:9C:1B:11:3D:86
X509v3 Authority Key Identifier:
keyid:95:4B:07:1A:03:DB:5D:23:3D:05:AB:03:94:54:80:07:76:7F:83:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lUsHGgPbXSM9BasDlFSAB3Z_g-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/e64625-cb8b-49cb-8569-266ac104f7b4/1/MeHcHEJLI5aJxpbL08K_nBsRPYY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/e64625-cb8b-49cb-8569-266ac104f7b4/1/lUsHGgPbXSM9BasDlFSAB3Z_g-c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.88.199.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:bb:ee:85:f1:45:90:31:67:73:fe:e7:2a:61:cc:ac:e3:31:
ca:d1:d4:65:7a:06:26:9d:2b:9d:f2:48:79:7e:ce:21:8e:71:
61:a8:03:c9:2a:d6:09:c1:90:cf:ae:f0:eb:21:70:85:27:11:
f9:6c:c4:4f:32:8c:1a:e3:81:83:50:62:ed:d8:f7:a3:9d:b9:
33:61:c2:8e:58:a7:12:9d:c0:8e:c7:87:b2:cf:cf:59:ab:6f:
0d:9c:c1:77:2c:67:a6:38:61:dc:f7:05:b6:be:97:7b:a8:30:
24:3d:47:c3:0c:de:0a:7c:3b:94:3c:16:16:8d:41:59:3d:73:
1e:45:00:11:e2:9d:55:e6:34:0b:50:b5:27:3d:b2:b1:7b:2f:
52:3a:d2:97:be:8f:56:53:46:6f:55:fc:ca:19:0d:59:92:64:
3a:3a:45:39:41:fe:37:22:bb:7b:58:6a:6b:1d:9a:92:9c:1a:
41:52:8f:0e:c7:da:2d:b0:ae:42:2a:39:b8:4b:eb:e6:7a:08:
2d:94:d8:e6:62:08:61:44:af:6b:9a:21:46:e1:94:f1:af:cc:
50:bf:21:4e:62:7e:7e:1b:66:36:63:1c:3e:eb:f2:59:52:c3:
1e:a0:18:17:0a:00:fc:ee:89:48:d7:01:24:30:d6:a0:d8:20:
d1:d2:83:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:16 2025 by rpki-client on console.sobornost.net