Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/b8bd3b-0026-4d56-bb25-6a5c9c0d91e9/1/XhkT1eFNXwGFl9CWLS9N7T67Cu4.roa
File: XhkT1eFNXwGFl9CWLS9N7T67Cu4.roa (raw, json)
Hash identifier: 48Vc4tJA9v+KllK28V53zCHphJsA0bfyopYkodUcdk4=
Subject key identifier: 5E:19:13:D5:E1:4D:5F:01:85:97:D0:96:2D:2F:4D:ED:3E:BB:0A:EE
Certificate issuer: /CN=283648aff886185ffce3626f090f119a3e4ede35
Certificate serial: 019426D949F7A4931B170CE6FD4CB68F36DE
Authority key identifier: 28:36:48:AF:F8:86:18:5F:FC:E3:62:6F:09:0F:11:9A:3E:4E:DE:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KDZIr_iGGF_842JvCQ8Rmj5O3jU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/b8bd3b-0026-4d56-bb25-6a5c9c0d91e9/1/XhkT1eFNXwGFl9CWLS9N7T67Cu4.roa
Signing time: Thu 02 Jan 2025 11:49:21 +0000
ROA not before: Thu 02 Jan 2025 11:49:21 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 25365
IP address blocks: 195.190.136.0/24 maxlen: 24
2001:67c:2f24::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:49:f7:a4:93:1b:17:0c:e6:fd:4c:b6:8f:36:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=283648aff886185ffce3626f090f119a3e4ede35
Validity
Not Before: Jan 2 11:49:21 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5e1913d5e14d5f018597d0962d2f4ded3ebb0aee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:66:e4:40:97:1f:1b:ad:a4:6f:7b:9a:b9:99:
fa:63:94:39:f5:ad:83:1a:ef:ae:c0:01:cb:b3:5d:
0a:01:40:67:ea:ed:d3:70:92:ce:94:88:ca:fd:e7:
83:e0:6a:aa:ef:a0:a7:6d:37:dc:96:12:89:1b:29:
37:c2:45:44:75:74:41:22:b5:48:9f:9c:32:11:a4:
4f:a3:6f:f4:67:f2:fd:f7:fa:7b:ee:35:a3:e1:8f:
e5:ad:8c:17:21:7d:3b:0f:a8:9d:9c:5f:b7:6c:46:
98:28:85:61:fe:4c:54:1d:3e:8d:18:41:86:45:10:
67:9a:eb:d0:fa:58:3f:b8:86:ca:a2:f3:a0:89:0a:
76:a5:89:13:d5:ac:15:8c:26:57:2f:45:ce:f3:e4:
66:00:e4:86:7d:8e:cc:d9:eb:df:a9:cd:1a:99:c5:
91:97:be:be:83:fb:33:8b:77:d9:37:bc:77:f4:01:
31:f4:57:ca:65:f7:21:d7:cb:94:0d:7b:46:3c:1c:
e5:ae:0f:9c:88:ce:f9:fb:e8:62:86:23:cb:b1:06:
f1:5d:31:c6:a2:cc:79:40:71:fe:8f:b3:39:96:c9:
2d:f2:50:2c:52:b3:76:77:d2:c4:6e:1c:ae:4d:ff:
d9:d5:26:2b:11:cd:58:67:de:c7:2a:92:47:ee:c8:
aa:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:19:13:D5:E1:4D:5F:01:85:97:D0:96:2D:2F:4D:ED:3E:BB:0A:EE
X509v3 Authority Key Identifier:
keyid:28:36:48:AF:F8:86:18:5F:FC:E3:62:6F:09:0F:11:9A:3E:4E:DE:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KDZIr_iGGF_842JvCQ8Rmj5O3jU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/b8bd3b-0026-4d56-bb25-6a5c9c0d91e9/1/XhkT1eFNXwGFl9CWLS9N7T67Cu4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/b8bd3b-0026-4d56-bb25-6a5c9c0d91e9/1/KDZIr_iGGF_842JvCQ8Rmj5O3jU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.190.136.0/24
IPv6:
2001:67c:2f24::/48
Signature Algorithm: sha256WithRSAEncryption
82:4c:04:0d:d0:61:89:d1:27:f7:c0:46:8c:49:e9:0e:55:0a:
a1:6d:9d:be:56:6b:b8:db:10:1b:9b:54:96:4b:fd:8d:c2:be:
a3:0d:47:64:3e:52:33:0d:30:d8:c4:61:81:6d:e6:5a:d5:f4:
d9:94:2d:21:5e:bc:58:06:e7:12:b5:d6:e3:b4:72:0e:e1:c1:
d5:5a:07:b2:76:46:18:a4:77:c0:86:79:1a:5c:c6:95:e7:2f:
20:40:08:18:1a:d9:a7:0a:16:fc:31:d9:2d:a6:07:6c:5d:9c:
53:39:8f:72:e5:16:10:fb:2d:0c:70:fd:d6:8f:6e:3d:41:f0:
28:30:90:47:39:52:17:f3:85:ab:e3:87:8d:82:c7:b0:49:ae:
56:f2:22:70:48:75:94:4d:3f:80:16:0f:20:16:45:46:24:52:
ea:ad:2b:d9:a7:47:61:c0:be:8c:ae:d8:90:04:fb:b1:a1:62:
9f:c3:d2:0a:a2:8c:32:fc:8f:17:77:4f:49:b7:b1:78:99:0e:
03:e4:7b:b8:5a:0f:8b:db:59:2c:44:91:7c:5a:fc:5b:10:06:
37:04:04:66:ad:96:06:ce:2a:11:a4:1b:17:d9:ad:63:e9:d7:
49:2d:59:03:57:94:a0:3d:23:c2:65:94:6e:71:2a:be:93:6a:
05:d7:6e:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:19 2025 by rpki-client on console.sobornost.net