Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/9c2c90-c7d4-48b7-9baf-f1bf0c33a908/1/hTDGmmn2FYXUzU7TBnMKhJwzgBA.roa
File: hTDGmmn2FYXUzU7TBnMKhJwzgBA.roa (raw, json)
Hash identifier: 1eTmB0t+VZgY89Mes1TNlFqfs2UJeJff1ZjTxBLpw/g=
Subject key identifier: 85:30:C6:9A:69:F6:15:85:D4:CD:4E:D3:06:73:0A:84:9C:33:80:10
Certificate issuer: /CN=23e3d92bfe16619ca500c03267effa9aa7ca0c47
Certificate serial: 019427B61009591646F3C4F3627B4D51BCAF
Authority key identifier: 23:E3:D9:2B:FE:16:61:9C:A5:00:C0:32:67:EF:FA:9A:A7:CA:0C:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I-PZK_4WYZylAMAyZ-_6mqfKDEc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/9c2c90-c7d4-48b7-9baf-f1bf0c33a908/1/hTDGmmn2FYXUzU7TBnMKhJwzgBA.roa
Signing time: Thu 02 Jan 2025 15:50:30 +0000
ROA not before: Thu 02 Jan 2025 15:50:30 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 207479
IP address blocks: 81.95.43.0/24 maxlen: 24
82.194.248.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b6:10:09:59:16:46:f3:c4:f3:62:7b:4d:51:bc:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23e3d92bfe16619ca500c03267effa9aa7ca0c47
Validity
Not Before: Jan 2 15:50:30 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8530c69a69f61585d4cd4ed306730a849c338010
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:3e:70:54:84:50:4b:35:02:6a:84:c4:6c:3c:
68:05:bb:6b:0e:da:3e:a0:b7:50:f4:fe:6b:dc:80:
67:87:ea:3b:b9:b4:9f:75:2e:b6:17:14:7e:1c:68:
fc:64:6b:de:1a:6b:49:c8:dd:ce:58:d6:e8:9a:d4:
04:1f:84:07:3a:44:45:e5:e5:53:02:09:6b:23:69:
f3:3a:37:8a:57:15:de:d7:68:0d:6e:9c:ac:3c:08:
b2:f5:4a:05:3e:5e:dc:f1:1c:cd:74:b4:e0:b6:83:
7e:03:1e:e1:43:06:0c:c1:b8:ab:d0:2d:db:09:03:
68:50:cd:58:0d:ef:44:8b:df:fe:24:6d:16:ff:52:
73:1a:4d:5b:f4:84:9d:c8:64:c8:d5:6c:47:c8:ec:
34:ae:f3:96:40:12:4f:a0:1f:fc:09:7c:a3:e5:a2:
aa:14:7e:c0:48:75:8b:b4:68:7b:7a:2a:d6:c9:48:
86:47:82:7d:ef:9b:5b:8d:22:2c:4d:fc:64:a3:c3:
cb:1f:8a:11:84:52:0d:a6:78:9f:05:7c:0e:8d:38:
29:16:21:cb:3a:1f:88:f9:5c:15:47:c5:8e:73:2d:
0c:4a:6c:9c:77:7b:92:eb:3b:9c:93:7a:80:ad:ac:
3a:6c:24:55:1a:a4:7a:a6:f0:bd:a6:11:f7:d9:21:
db:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:30:C6:9A:69:F6:15:85:D4:CD:4E:D3:06:73:0A:84:9C:33:80:10
X509v3 Authority Key Identifier:
keyid:23:E3:D9:2B:FE:16:61:9C:A5:00:C0:32:67:EF:FA:9A:A7:CA:0C:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I-PZK_4WYZylAMAyZ-_6mqfKDEc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9c2c90-c7d4-48b7-9baf-f1bf0c33a908/1/hTDGmmn2FYXUzU7TBnMKhJwzgBA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9c2c90-c7d4-48b7-9baf-f1bf0c33a908/1/I-PZK_4WYZylAMAyZ-_6mqfKDEc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.95.43.0/24
82.194.248.0/24
Signature Algorithm: sha256WithRSAEncryption
42:cb:5e:f8:d9:81:37:53:32:3d:a5:b8:80:66:29:ad:1a:0d:
53:9b:6d:cc:6c:41:99:4d:8c:73:e9:54:33:9a:89:03:3d:37:
46:d7:6f:22:ef:bd:45:33:6b:a2:25:47:9c:f2:3c:55:2d:8c:
a7:9a:e1:7f:1e:1d:09:3d:43:e0:2b:fb:34:ba:06:26:e7:b8:
b3:9e:01:4a:0b:f2:16:07:88:d2:f8:2e:b8:54:3c:72:3b:40:
a3:0c:6b:3b:77:98:77:67:a7:9e:a0:a6:d0:88:f6:27:0c:98:
1a:a5:43:19:03:32:b6:ba:eb:fa:20:a6:64:ca:41:d5:1d:4c:
5d:c8:91:e5:68:be:77:2b:c0:52:49:11:15:2d:34:d8:bf:46:
b1:67:7d:ae:cf:d1:56:b2:cb:cd:c1:c2:a8:33:6c:ca:9a:03:
83:33:52:70:eb:dc:22:b1:f1:4d:7a:b4:11:b1:c8:43:f4:ec:
6f:2b:e6:76:fa:80:be:7d:eb:d6:60:10:c6:bf:ce:df:76:0c:
4c:49:ec:eb:a0:93:32:0d:63:dc:b7:bd:41:a5:6e:69:82:e6:
fe:07:34:7d:77:3d:1c:b5:32:16:a7:6c:49:27:4e:7f:c4:27:
51:91:ba:b8:3c:ce:64:44:99:70:f1:81:b8:62:5b:4f:b7:32:
88:d1:b8:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:18 2025 by rpki-client on console.sobornost.net