Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/BxXmPXHAMnptVDH7wCFQXUziB-s.roa
File: BxXmPXHAMnptVDH7wCFQXUziB-s.roa (raw, json)
Hash identifier: QHwoDd5q7PsNhxLoPk4g1mRbhD0ahp55EZfPa2G2LPA=
Subject key identifier: 07:15:E6:3D:71:C0:32:7A:6D:54:31:FB:C0:21:50:5D:4C:E2:07:EB
Certificate issuer: /CN=4dd1b2587490ad061cb207176bdeec81a531588c
Certificate serial: 0194266C1B67C6C867A3FEA801C1359CF58D
Authority key identifier: 4D:D1:B2:58:74:90:AD:06:1C:B2:07:17:6B:DE:EC:81:A5:31:58:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TdGyWHSQrQYcsgcXa97sgaUxWIw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/BxXmPXHAMnptVDH7wCFQXUziB-s.roa
Signing time: Thu 02 Jan 2025 09:50:06 +0000
ROA not before: Thu 02 Jan 2025 09:50:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 42298
IP address blocks: 195.219.42.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6c:1b:67:c6:c8:67:a3:fe:a8:01:c1:35:9c:f5:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4dd1b2587490ad061cb207176bdeec81a531588c
Validity
Not Before: Jan 2 09:50:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0715e63d71c0327a6d5431fbc021505d4ce207eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:4f:35:1e:31:1a:b8:83:ea:33:55:d5:1c:ea:
ed:b8:5c:42:ba:0b:1a:5e:de:c5:67:a6:90:ef:be:
e0:76:bf:9e:da:48:60:ae:95:5e:76:fe:f0:a3:81:
b1:ae:c6:28:d9:4b:3d:16:23:d1:cd:8e:89:be:ba:
2d:3f:1a:dd:4e:45:4a:aa:08:93:46:3c:03:8d:87:
f5:df:3d:12:1f:84:e5:ee:78:e6:d4:21:0a:8f:5d:
75:54:19:22:a2:af:e6:bc:1e:cd:c0:9d:95:e5:c8:
43:bd:a6:9c:76:fa:0a:05:1e:a6:63:0c:2c:59:3d:
2c:e8:be:4f:11:a5:40:4d:7a:de:c0:80:bf:ef:17:
02:59:34:ec:ef:d3:2a:c1:34:d1:ac:2a:2c:64:6e:
5e:5c:e7:b1:f6:bd:30:1e:e6:17:6a:61:94:31:67:
c3:21:8d:8e:99:8a:75:60:94:f0:d2:db:c0:88:e0:
5c:d7:19:2b:13:67:fa:df:12:48:d6:6a:02:c5:ea:
a4:da:b5:84:25:a2:83:ae:a4:23:64:92:7f:f0:7c:
78:cf:d6:09:ec:8f:ff:d9:04:94:5f:47:7b:06:5a:
2f:d6:1d:98:72:57:35:07:67:6b:8d:8e:fb:14:8f:
a4:bb:7f:59:d4:21:d1:41:44:18:1a:e7:08:87:80:
bd:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:15:E6:3D:71:C0:32:7A:6D:54:31:FB:C0:21:50:5D:4C:E2:07:EB
X509v3 Authority Key Identifier:
keyid:4D:D1:B2:58:74:90:AD:06:1C:B2:07:17:6B:DE:EC:81:A5:31:58:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TdGyWHSQrQYcsgcXa97sgaUxWIw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/BxXmPXHAMnptVDH7wCFQXUziB-s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/TdGyWHSQrQYcsgcXa97sgaUxWIw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.219.42.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:ca:ad:74:72:39:7e:ce:95:c3:1b:2e:eb:d8:f9:69:91:a5:
fa:45:19:ba:5d:8a:51:a6:af:63:0d:c8:41:a3:b9:c1:d4:e3:
6b:84:48:4b:d1:44:f3:50:6d:ef:53:1d:d0:31:e1:f9:c5:ea:
98:c8:cf:5c:5e:af:e3:69:c0:57:94:e5:ba:8c:24:dd:94:2d:
c8:d6:79:d9:57:cf:00:53:97:19:80:62:83:bb:e7:89:9c:60:
ea:e9:a7:b1:ce:d0:09:2a:61:e3:fe:b0:c6:c9:dd:fd:49:6b:
4c:67:06:15:af:d6:bc:2f:be:58:26:ed:e9:f1:b0:1e:93:8a:
83:0f:86:da:b5:9d:04:01:84:18:e6:3d:af:af:f0:0f:57:36:
c8:06:fc:ee:7e:f0:0f:1c:64:af:f1:2a:53:7c:80:33:1c:1a:
d9:92:0b:e7:af:f2:e3:df:5f:c2:0c:a0:d2:66:f6:d8:1d:30:
4e:25:54:66:6b:d5:ed:63:0a:94:f5:84:1a:6b:02:17:4a:e2:
0b:7a:52:bd:97:69:73:93:69:f3:10:43:d5:05:e6:cf:bc:3f:
ed:77:a5:e3:9a:ad:be:59:80:8a:a9:97:cf:b4:ef:4a:32:19:
61:de:db:b9:17:93:dd:99:7c:5e:b9:15:59:f3:fe:8b:c2:c8:
bb:d4:1d:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:20 2025 by rpki-client on console.sobornost.net