Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/16fbbf-6cdd-49b7-8c21-883b90cd134a/1/wqDhS7gdeGbdKyK4P2B2xid5RCk.roa
File: wqDhS7gdeGbdKyK4P2B2xid5RCk.roa (raw, json)
Hash identifier: pzt+fKb4dYAAFu+QRte1CXzAs8gCt6ejAy8RnTWXAJ0=
Subject key identifier: C2:A0:E1:4B:B8:1D:78:66:DD:2B:22:B8:3F:60:76:C6:27:79:44:29
Certificate issuer: /CN=4cef78082c07292aaae240f6ecfd3afdba78b8ca
Certificate serial: 0195285F33EF7EA27C2601477CDC500BBD05
Authority key identifier: 4C:EF:78:08:2C:07:29:2A:AA:E2:40:F6:EC:FD:3A:FD:BA:78:B8:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TO94CCwHKSqq4kD27P06_bp4uMo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/16fbbf-6cdd-49b7-8c21-883b90cd134a/1/wqDhS7gdeGbdKyK4P2B2xid5RCk.roa
Signing time: Fri 21 Feb 2025 11:58:02 +0000
ROA not before: Fri 21 Feb 2025 11:58:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214380
IP address blocks: 193.22.87.0/24 maxlen: 24
2001:67c:139c::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:28:5f:33:ef:7e:a2:7c:26:01:47:7c:dc:50:0b:bd:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cef78082c07292aaae240f6ecfd3afdba78b8ca
Validity
Not Before: Feb 21 11:58:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c2a0e14bb81d7866dd2b22b83f6076c627794429
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:f3:73:f1:03:4f:6e:11:92:d1:fa:70:46:28:
9e:52:55:46:b1:00:23:83:5c:e9:27:81:7b:af:f9:
e7:af:a5:73:65:af:fc:59:da:c4:63:c0:fe:d2:e7:
af:f2:d7:32:0c:3c:36:62:8e:dd:ea:6d:a7:af:f3:
fc:e3:18:74:12:4f:15:6c:a2:30:8f:32:89:a6:aa:
3d:bd:81:ef:c1:62:a3:eb:87:11:60:d0:43:10:6c:
76:35:aa:e7:12:b7:2f:bf:be:af:38:a7:ce:9d:5f:
2d:be:b8:9f:26:22:18:df:37:43:98:eb:11:c8:fd:
8f:b7:01:79:d9:9d:a9:67:32:df:c2:1e:a2:dc:d0:
91:fb:6e:02:1d:85:0f:35:f8:ea:a2:d0:80:9f:9a:
d0:04:6f:a0:ee:72:c0:dc:73:ea:cf:ba:6d:96:7c:
03:9a:f7:8b:c5:bd:2b:a3:9b:2d:e9:aa:40:15:61:
0d:88:d6:a4:d9:50:bd:6a:12:fd:c3:33:a8:38:d3:
a6:95:b9:5d:1a:31:af:30:c8:d4:28:c2:15:b8:dd:
ee:06:0c:35:a3:25:98:39:04:82:bd:aa:1c:3a:bc:
f9:f8:ca:da:f3:9e:19:5b:f6:55:f4:b6:8c:78:ef:
52:a2:ca:12:ec:c7:71:55:18:01:61:99:de:31:b0:
41:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:A0:E1:4B:B8:1D:78:66:DD:2B:22:B8:3F:60:76:C6:27:79:44:29
X509v3 Authority Key Identifier:
keyid:4C:EF:78:08:2C:07:29:2A:AA:E2:40:F6:EC:FD:3A:FD:BA:78:B8:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TO94CCwHKSqq4kD27P06_bp4uMo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/16fbbf-6cdd-49b7-8c21-883b90cd134a/1/wqDhS7gdeGbdKyK4P2B2xid5RCk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/16fbbf-6cdd-49b7-8c21-883b90cd134a/1/TO94CCwHKSqq4kD27P06_bp4uMo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.22.87.0/24
IPv6:
2001:67c:139c::/48
Signature Algorithm: sha256WithRSAEncryption
a4:ad:c7:56:82:9c:74:e2:00:96:2a:bb:af:b9:0e:93:b5:e9:
19:7b:1b:ca:40:99:28:1d:23:8b:ef:7b:fc:ea:88:48:6a:03:
68:18:32:de:89:e1:56:f5:c6:a3:21:86:ab:d9:d6:17:c8:a1:
3b:e9:b4:46:8c:51:f6:57:23:4e:8e:de:fa:37:22:11:53:8f:
9a:d8:a0:a0:c5:33:23:d7:e9:7d:fe:35:2c:97:b0:e3:75:c5:
77:b3:ab:b7:b2:a1:b6:7d:5d:66:21:60:ba:e9:06:92:36:fe:
f5:b2:20:c9:ee:74:7a:1b:09:fd:1a:07:4f:a0:85:e7:89:95:
67:15:b9:03:6c:1d:4e:eb:13:34:56:44:0a:63:b5:bd:03:82:
a5:61:2a:50:5a:b5:60:95:51:97:13:f4:32:de:36:94:71:38:
b0:62:4e:7c:d2:27:da:7f:71:f3:d0:27:7a:a6:b7:48:d3:18:
19:17:8c:01:7a:a8:c4:9a:ae:57:71:0a:66:c3:2e:d9:8c:41:
65:e5:2f:e0:d2:86:cb:e1:36:06:a7:54:0a:7e:87:8a:67:f4:
1c:d5:82:4b:88:95:38:a7:ae:51:a7:c0:5a:3c:72:77:e3:30:
6c:15:18:98:18:87:e1:b1:d4:73:a6:34:fd:b3:05:52:a1:54:
1f:58:57:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:20 2025 by rpki-client on console.sobornost.net