Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/shcI5ksCijvvRLID7bxpTU4Ek38.roa
File: shcI5ksCijvvRLID7bxpTU4Ek38.roa (raw, json)
Hash identifier: 5j6UIvbPGZk819fhFv2lIK9RILlN83FerZg8FUEwxJA=
Subject key identifier: B2:17:08:E6:4B:02:8A:3B:EF:44:B2:03:ED:BC:69:4D:4E:04:93:7F
Certificate issuer: /CN=1847b59d21ea36b3062fca80ce75c1616af5119a
Certificate serial: 019427474966496093B4CE2F2A8A1C7408A4
Authority key identifier: 18:47:B5:9D:21:EA:36:B3:06:2F:CA:80:CE:75:C1:61:6A:F5:11:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GEe1nSHqNrMGL8qAznXBYWr1EZo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/shcI5ksCijvvRLID7bxpTU4Ek38.roa
Signing time: Thu 02 Jan 2025 13:49:30 +0000
ROA not before: Thu 02 Jan 2025 13:49:30 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 8430
IP address blocks: 195.49.208.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:47:49:66:49:60:93:b4:ce:2f:2a:8a:1c:74:08:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1847b59d21ea36b3062fca80ce75c1616af5119a
Validity
Not Before: Jan 2 13:49:30 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b21708e64b028a3bef44b203edbc694d4e04937f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:89:2b:e6:ec:7f:81:dd:9e:3c:1d:51:0e:be:
0f:6c:04:31:7a:ea:97:b3:8e:dd:cd:72:6f:b7:02:
cf:b0:1c:eb:d2:57:07:a9:6b:b9:42:09:1d:fa:4c:
42:a3:fa:f9:2e:20:28:c9:26:76:92:cc:a7:51:05:
f0:c9:0f:55:bd:50:86:ee:7a:b8:a5:73:85:08:11:
5c:a9:9b:73:a7:dc:9a:1a:ce:7c:26:4a:e7:67:15:
f9:d3:b1:50:8b:af:99:16:45:74:f2:2f:49:18:ba:
c4:d8:57:92:8b:8b:50:c9:99:35:f6:02:d9:12:8e:
83:1d:e2:8f:b5:15:60:d0:3a:11:90:6d:a6:20:61:
15:08:cc:5c:7f:b5:25:d3:33:32:63:62:d5:9b:9b:
d0:34:1b:fc:55:3b:e3:e0:1d:22:d6:43:32:6f:b8:
c2:68:86:22:fc:ca:8d:8e:12:25:30:25:67:82:7a:
8b:ab:3c:77:4e:e2:a7:2b:83:c9:98:c9:9f:5f:53:
9c:b6:e4:8d:32:88:39:9d:b4:9f:de:5a:cd:62:eb:
1a:86:0d:0e:66:e0:fa:aa:34:99:57:f8:9d:ef:e7:
44:fb:ba:31:b2:44:04:cd:63:95:54:88:6c:1c:11:
9c:8b:c9:46:82:03:2e:b0:86:6d:ef:6d:b9:b2:82:
a0:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:17:08:E6:4B:02:8A:3B:EF:44:B2:03:ED:BC:69:4D:4E:04:93:7F
X509v3 Authority Key Identifier:
keyid:18:47:B5:9D:21:EA:36:B3:06:2F:CA:80:CE:75:C1:61:6A:F5:11:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GEe1nSHqNrMGL8qAznXBYWr1EZo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/shcI5ksCijvvRLID7bxpTU4Ek38.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/GEe1nSHqNrMGL8qAznXBYWr1EZo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.49.208.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:cf:67:ec:61:0c:a1:c3:c1:28:ec:06:89:e0:56:f5:58:07:
67:a7:e4:13:d6:2c:ed:20:56:d1:9c:8f:76:f5:dc:92:e2:26:
e6:31:d8:bb:4a:b5:35:ed:be:2b:cf:31:30:03:46:d1:45:96:
7a:48:bf:87:4f:54:60:c2:44:ca:3b:0f:99:8f:e6:31:8d:24:
f1:2e:d3:ff:8e:20:cb:71:31:db:c7:de:83:e0:e5:14:dc:66:
73:65:8a:06:d2:c1:ab:f1:ba:0d:09:14:bb:e8:7a:92:59:05:
93:5f:c9:1a:a9:24:30:70:82:66:1e:de:66:32:d3:bf:f4:ba:
51:a2:65:0c:0f:16:8e:fa:29:9c:3c:ca:62:bd:d4:33:64:52:
6e:c1:11:d0:96:d4:be:aa:2d:8f:82:d8:63:86:bc:9e:4b:fa:
64:0f:c8:d1:ad:08:f0:5f:76:e9:db:1f:98:5e:42:d0:6c:a0:
dc:21:43:d2:d4:0d:12:a3:31:2e:55:5c:25:03:81:4f:ad:0f:
2a:e8:8f:88:b1:3e:64:fc:74:f3:40:f9:22:8a:c2:b8:5f:48:
f5:01:27:42:c7:59:da:7f:cc:56:67:20:5d:75:aa:1b:75:26:
cc:e0:a0:6b:59:2d:17:81:9b:e9:7f:b3:5f:8e:6c:a1:ed:af:
12:91:66:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:17 2025 by rpki-client on console.sobornost.net