Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/7c91ca-55f7-43a4-b950-8dc94e89bf03/1/G9mF37Fb91r0jC33-YcK9r4IAmk.roa
File: G9mF37Fb91r0jC33-YcK9r4IAmk.roa (raw, json)
Hash identifier: MaEVR8Nlqavgaakwb2T4C4sUXoGT+mVODKAXw14Vucs=
Subject key identifier: 1B:D9:85:DF:B1:5B:F7:5A:F4:8C:2D:F7:F9:87:0A:F6:BE:08:02:69
Certificate issuer: /CN=99deb2e1f85a17da240cfc816d972c85e411e624
Certificate serial: 01942067C9044A0614976FD314250AB71649
Authority key identifier: 99:DE:B2:E1:F8:5A:17:DA:24:0C:FC:81:6D:97:2C:85:E4:11:E6:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/md6y4fhaF9okDPyBbZcsheQR5iQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/7c91ca-55f7-43a4-b950-8dc94e89bf03/1/G9mF37Fb91r0jC33-YcK9r4IAmk.roa
Signing time: Wed 01 Jan 2025 05:47:40 +0000
ROA not before: Wed 01 Jan 2025 05:47:40 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 61328
IP address blocks: 194.31.56.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:67:c9:04:4a:06:14:97:6f:d3:14:25:0a:b7:16:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99deb2e1f85a17da240cfc816d972c85e411e624
Validity
Not Before: Jan 1 05:47:40 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1bd985dfb15bf75af48c2df7f9870af6be080269
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:42:ef:76:56:43:74:28:1e:b5:96:3e:d2:a7:
27:3a:8a:0b:44:71:94:a9:89:be:48:b7:da:b5:d0:
3f:1c:9e:2d:a8:7c:0b:bf:49:c3:7e:87:cc:a9:2b:
a2:f3:ba:5b:1e:f5:c4:27:77:e8:4f:6c:d5:2e:2a:
6a:14:17:e7:1e:0b:00:90:07:97:8a:40:24:60:6e:
08:a2:ee:bd:80:1f:8e:e0:74:c9:70:2c:e5:13:28:
c8:4e:53:8e:50:31:d9:b8:88:95:31:c4:a2:a5:16:
7c:4c:2a:8d:83:78:8b:fc:ab:04:e7:8e:38:97:63:
30:b5:71:2f:c8:f9:82:dc:d2:99:c5:4c:cd:95:8e:
63:40:fd:a2:08:64:8e:a9:61:08:42:c1:93:db:54:
1a:13:d6:da:15:53:17:d0:6c:e7:08:a6:86:9d:24:
d5:21:b2:c8:3e:c6:37:98:7c:53:7d:38:44:b2:e9:
e4:8d:de:fc:48:8c:d4:95:17:77:c1:78:85:eb:35:
7e:aa:a9:6f:0e:79:7e:51:34:13:33:bb:ee:4c:59:
a0:ee:88:8a:30:cb:20:f5:90:b6:f8:cb:4c:6f:81:
d2:c8:7b:ca:9a:65:eb:70:11:fe:70:41:20:ff:89:
23:c4:7a:c7:3b:a9:ea:ef:15:23:35:c5:c0:38:33:
81:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:D9:85:DF:B1:5B:F7:5A:F4:8C:2D:F7:F9:87:0A:F6:BE:08:02:69
X509v3 Authority Key Identifier:
keyid:99:DE:B2:E1:F8:5A:17:DA:24:0C:FC:81:6D:97:2C:85:E4:11:E6:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/md6y4fhaF9okDPyBbZcsheQR5iQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/7c91ca-55f7-43a4-b950-8dc94e89bf03/1/G9mF37Fb91r0jC33-YcK9r4IAmk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/7c91ca-55f7-43a4-b950-8dc94e89bf03/1/md6y4fhaF9okDPyBbZcsheQR5iQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.31.56.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:d0:c3:1f:17:6d:a2:85:9a:88:18:35:83:83:97:eb:34:dd:
6e:97:46:b4:02:2d:4e:3d:7f:e8:9e:e8:d0:ee:d2:fe:16:23:
bd:2c:de:1d:ac:69:f4:d5:c3:ba:71:b9:bb:61:65:2d:ea:d3:
45:7c:c9:96:5a:a7:34:cf:e2:59:b0:02:5d:f9:0e:32:db:8d:
a8:d1:d2:24:33:26:77:2c:50:08:ed:fa:b8:0a:ec:d6:9a:37:
14:af:12:7d:85:f6:01:cf:af:73:ab:e0:83:c2:8a:f5:08:43:
8a:bc:54:8b:55:58:81:01:eb:ef:82:b3:6a:c3:30:19:25:dd:
aa:fd:68:33:b8:70:b7:a4:09:70:5b:aa:49:c0:65:0f:ce:d2:
b7:b7:15:70:4e:99:cb:5f:ae:a5:74:27:c8:7b:81:13:f3:ce:
ec:8a:7b:88:f0:c1:7c:9c:ef:ce:fe:7e:f3:ae:16:b1:d9:f4:
63:a4:8b:57:cc:88:e9:da:8c:9c:2b:ea:9c:3e:7e:9f:17:27:
43:77:f1:a6:f9:fa:4e:79:8f:05:67:34:35:ed:4f:8d:6a:e9:
e6:9a:6d:95:34:7e:36:f8:d3:66:18:1c:bf:48:7c:e9:86:60:
e7:f7:a7:8a:23:76:ec:dd:ee:d5:3b:c9:b2:fe:ea:88:20:6b:
81:a8:89:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:19 2025 by rpki-client on console.sobornost.net