Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/c771c3-ca90-4fd2-99ac-04c82ed6ed4c/1/FmQTGAptfwQVIkuMpg8hJc2vZxA.roa
File: FmQTGAptfwQVIkuMpg8hJc2vZxA.roa (raw, json)
Hash identifier: e7opOpYhedUnony/T0f78z282oNfXK2DZuJyjlY4Q0s=
Subject key identifier: 16:64:13:18:0A:6D:7F:04:15:22:4B:8C:A6:0F:21:25:CD:AF:67:10
Certificate issuer: /CN=41fb6b1708335006b0a6aac650bfaff3fc8d292c
Certificate serial: 0194266BFAAB2FDC86DB043D05378D6A16DC
Authority key identifier: 41:FB:6B:17:08:33:50:06:B0:A6:AA:C6:50:BF:AF:F3:FC:8D:29:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QftrFwgzUAawpqrGUL-v8_yNKSw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/c771c3-ca90-4fd2-99ac-04c82ed6ed4c/1/FmQTGAptfwQVIkuMpg8hJc2vZxA.roa
Signing time: Thu 02 Jan 2025 09:49:58 +0000
ROA not before: Thu 02 Jan 2025 09:49:58 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 59489
IP address blocks: 193.32.57.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:fa:ab:2f:dc:86:db:04:3d:05:37:8d:6a:16:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41fb6b1708335006b0a6aac650bfaff3fc8d292c
Validity
Not Before: Jan 2 09:49:58 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=166413180a6d7f0415224b8ca60f2125cdaf6710
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:2d:b1:e0:d1:a4:d6:69:ee:ff:5e:d3:60:b5:
29:f3:bf:d4:e7:d4:68:b9:2e:dd:2b:52:63:2b:77:
b7:69:32:13:91:4c:20:bd:47:65:02:52:a5:6c:63:
5a:f7:1d:7d:c2:10:02:1e:04:ab:37:6d:0a:35:10:
c6:d6:2d:9d:5d:e6:84:7a:82:0b:3f:6d:50:20:16:
22:b2:5e:f3:ac:af:f6:26:26:f6:ce:08:d5:83:be:
81:51:b7:ec:5b:56:56:55:75:e7:c9:bb:66:eb:9e:
2a:85:c1:cc:97:7b:07:ba:11:ca:03:ee:85:d3:ee:
cc:ec:6c:17:b1:3d:bc:7f:d7:47:80:6a:44:9f:e3:
e2:3b:a6:63:75:11:4e:97:54:31:10:87:1c:b6:c1:
62:2d:0c:5c:2c:4a:1a:ca:26:84:68:d6:a2:34:54:
15:4e:64:9b:e4:68:f7:02:43:cd:9e:81:41:b6:54:
1a:99:af:f9:af:4d:0a:77:5a:7d:ee:fd:f8:31:55:
56:24:6c:1c:0f:91:38:1b:df:5f:92:ea:75:7d:67:
6b:03:5a:4b:69:f8:1e:1b:fb:ff:df:5c:ec:e4:ee:
1b:2c:d8:68:7a:ee:ec:20:9c:45:a2:3c:c1:1e:3c:
22:d4:3a:10:aa:fa:95:65:6e:74:d4:7b:5f:16:9a:
b0:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:64:13:18:0A:6D:7F:04:15:22:4B:8C:A6:0F:21:25:CD:AF:67:10
X509v3 Authority Key Identifier:
keyid:41:FB:6B:17:08:33:50:06:B0:A6:AA:C6:50:BF:AF:F3:FC:8D:29:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QftrFwgzUAawpqrGUL-v8_yNKSw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/c771c3-ca90-4fd2-99ac-04c82ed6ed4c/1/FmQTGAptfwQVIkuMpg8hJc2vZxA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/c771c3-ca90-4fd2-99ac-04c82ed6ed4c/1/QftrFwgzUAawpqrGUL-v8_yNKSw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.32.57.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:e1:1d:37:8b:01:22:7f:f5:0c:b3:d0:d1:4d:ec:e5:cf:96:
f4:f4:24:43:07:20:50:0c:59:f3:09:c6:7b:c4:f0:65:da:d0:
65:6d:3a:8f:85:ef:2f:a6:3e:95:35:e4:a0:ae:d3:1d:38:2e:
0f:35:cd:44:c2:2b:b5:23:65:cc:f1:ba:7c:8c:62:b8:87:52:
90:15:77:98:27:fb:5c:9b:a3:f9:36:6d:5f:60:86:9b:23:34:
5b:75:39:c3:9d:d9:dc:f7:09:e5:98:4b:6d:04:12:bf:7d:c9:
57:06:84:d4:3d:af:b4:97:c8:7b:89:c6:5a:d4:b8:50:2f:c3:
3e:8d:0b:4c:10:ee:7f:b1:85:6a:19:9b:14:37:ef:4a:eb:91:
95:28:9a:90:7c:53:13:8d:75:be:63:78:1c:01:7e:bd:06:d7:
45:84:8f:35:ed:6d:b7:cf:b6:5a:e5:27:2e:43:94:a2:e1:60:
81:3f:ac:33:5c:1d:8b:92:3f:41:26:b0:ae:79:dd:21:31:83:
8e:31:a4:aa:b8:b1:39:e7:29:97:93:dc:20:fd:72:c7:68:92:
58:fe:68:93:27:57:30:18:de:7d:24:b2:15:43:2b:df:95:c7:
c8:b2:6f:e8:67:48:4f:51:e2:88:91:7a:84:ad:9c:35:8d:3c:
6f:ac:7f:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:17 2025 by rpki-client on console.sobornost.net