Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/5e23ae-6338-48dd-a304-c2a43b080d6f/1/_DuyKPQbR1DkiE_RbE3bwhY5Urg.roa
File: _DuyKPQbR1DkiE_RbE3bwhY5Urg.roa (raw, json)
Hash identifier: komYy8q7+/6pbFO69hkA1CXIqh7HDmdwPrOiVtmRueI=
Subject key identifier: FC:3B:B2:28:F4:1B:47:50:E4:88:4F:D1:6C:4D:DB:C2:16:39:52:B8
Certificate issuer: /CN=a8b31004df135aa1a8b943033db14691b11a63dd
Certificate serial: 0194244598427607346DDD4EC7DF9E7D6BC4
Authority key identifier: A8:B3:10:04:DF:13:5A:A1:A8:B9:43:03:3D:B1:46:91:B1:1A:63:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qLMQBN8TWqGouUMDPbFGkbEaY90.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/5e23ae-6338-48dd-a304-c2a43b080d6f/1/_DuyKPQbR1DkiE_RbE3bwhY5Urg.roa
Signing time: Wed 01 Jan 2025 23:48:48 +0000
ROA not before: Wed 01 Jan 2025 23:48:48 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 56559
IP address blocks: 151.1.252.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:98:42:76:07:34:6d:dd:4e:c7:df:9e:7d:6b:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a8b31004df135aa1a8b943033db14691b11a63dd
Validity
Not Before: Jan 1 23:48:48 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=fc3bb228f41b4750e4884fd16c4ddbc2163952b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:23:7c:3d:9e:a2:61:69:50:9e:e7:78:74:ae:
09:ed:f9:e0:d4:3b:a5:64:c5:34:e2:23:ce:1a:e9:
eb:02:b4:cc:19:86:14:01:54:70:a0:e9:9e:50:86:
b1:bb:a0:eb:f0:6d:91:96:5d:a7:c9:38:1b:94:81:
fc:b4:61:39:80:1d:bc:b3:d6:3d:9e:b3:6d:75:f5:
d2:0e:26:90:b7:ad:9e:98:1f:83:88:20:c3:d8:72:
b6:2f:ee:1c:31:2a:18:9e:2b:59:a4:4a:e9:e2:4c:
80:5b:33:36:10:9d:89:57:5b:0f:7c:22:28:0e:70:
53:5b:a9:dd:b4:d1:73:16:bc:d5:28:b6:b6:8d:2d:
11:c6:53:61:e2:74:a1:4d:b4:c7:5c:c3:fd:47:c0:
59:d1:9e:b4:92:55:8a:e3:54:47:48:9f:df:1f:51:
9e:10:27:b3:e8:6d:57:27:aa:f8:12:27:5f:1a:07:
67:a7:e4:38:ee:37:a0:68:b5:f6:ee:22:78:28:e8:
d1:5e:17:32:56:b8:5e:ee:77:c1:3b:a7:16:0f:d2:
1b:da:5e:4a:51:e7:45:d2:5e:2c:96:73:3b:1a:d6:
d8:4c:81:a3:70:72:26:d9:54:e9:e0:fd:40:4b:ea:
1c:0c:29:79:a8:ee:6f:3a:08:4b:47:f0:02:33:75:
24:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:3B:B2:28:F4:1B:47:50:E4:88:4F:D1:6C:4D:DB:C2:16:39:52:B8
X509v3 Authority Key Identifier:
keyid:A8:B3:10:04:DF:13:5A:A1:A8:B9:43:03:3D:B1:46:91:B1:1A:63:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qLMQBN8TWqGouUMDPbFGkbEaY90.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/5e23ae-6338-48dd-a304-c2a43b080d6f/1/_DuyKPQbR1DkiE_RbE3bwhY5Urg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/5e23ae-6338-48dd-a304-c2a43b080d6f/1/qLMQBN8TWqGouUMDPbFGkbEaY90.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.1.252.0/24
Signature Algorithm: sha256WithRSAEncryption
17:3e:cb:4c:cc:3a:a2:c9:0d:f4:7c:c7:46:44:eb:cb:8c:a2:
77:39:62:df:fb:60:5d:0f:8f:23:f9:13:32:5f:d4:c2:6e:b2:
34:99:34:6b:bd:c2:6b:52:43:8b:b9:51:52:46:d9:b8:a9:67:
33:d9:95:64:8c:1d:ad:15:00:64:a2:b8:af:80:f9:ac:98:58:
82:28:c9:8a:b3:58:86:1e:01:65:72:69:0f:25:7c:17:22:e6:
3c:25:9c:65:4e:cc:c9:7a:91:a4:85:f3:80:1f:4e:b0:8f:5b:
99:26:a4:b2:a3:a0:6e:3d:81:1a:98:55:16:5e:81:44:c9:a7:
24:85:8c:f0:05:f8:d9:5c:8b:6f:83:0b:19:4a:29:32:ad:1e:
7e:ee:c4:29:58:84:f9:37:48:de:f1:c6:b8:b8:af:be:26:71:
3c:5f:5d:83:0a:e0:fd:0b:6a:e4:00:1d:b1:d4:25:c8:ec:11:
9c:9f:0d:42:db:3a:3c:08:3b:9a:74:5b:3c:a1:83:a3:7f:4a:
42:00:0f:cf:45:75:5f:98:01:02:0d:ad:8a:e9:90:36:ad:5f:
b7:6a:89:a6:42:d4:d8:7d:2f:e6:9b:51:fb:40:56:88:93:5d:
8d:5d:14:1f:dc:3d:1d:78:a9:de:e6:da:2e:57:ce:45:69:f3:
6a:80:8c:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:16 2025 by rpki-client on console.sobornost.net