Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/3ad9c1-3e09-41ac-acca-d11339fe7df0/1/n9slDOW816oCeV0oI8sGph9zEHY.roa
File: n9slDOW816oCeV0oI8sGph9zEHY.roa (raw, json)
Hash identifier: qD/TRD91aBYWewYzdvChC8Edlu2GICT4uFezEduAc7k=
Subject key identifier: 9F:DB:25:0C:E5:BC:D7:AA:02:79:5D:28:23:CB:06:A6:1F:73:10:76
Certificate issuer: /CN=34f481a9ddcfb48591f78938c4fcc7b8b67c6302
Certificate serial: 019426D8F5CCF3F985A37FA122A115F5D4B1
Authority key identifier: 34:F4:81:A9:DD:CF:B4:85:91:F7:89:38:C4:FC:C7:B8:B6:7C:63:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NPSBqd3PtIWR94k4xPzHuLZ8YwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/3ad9c1-3e09-41ac-acca-d11339fe7df0/1/n9slDOW816oCeV0oI8sGph9zEHY.roa
Signing time: Thu 02 Jan 2025 11:49:00 +0000
ROA not before: Thu 02 Jan 2025 11:49:00 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 199216
IP address blocks: 193.56.204.0/22 maxlen: 24
2a0c:8f40::/29 maxlen: 64
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d8:f5:cc:f3:f9:85:a3:7f:a1:22:a1:15:f5:d4:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34f481a9ddcfb48591f78938c4fcc7b8b67c6302
Validity
Not Before: Jan 2 11:49:00 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9fdb250ce5bcd7aa02795d2823cb06a61f731076
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:9b:ac:ad:e4:c7:ee:7a:ea:93:21:13:1f:bc:
df:71:98:9a:93:b0:fc:45:24:14:09:df:f7:e3:64:
be:bf:5a:e2:d5:11:4f:5c:34:10:fe:26:89:2b:bd:
a8:87:a4:d8:ac:29:32:f3:68:38:3c:8c:7b:25:53:
cb:f2:17:8b:e8:ba:40:24:69:2f:ce:0b:f3:3d:9b:
7c:f1:30:a8:86:67:d6:0d:64:27:35:27:85:f1:f4:
13:df:f4:d9:88:17:0d:49:b8:02:19:47:b3:1a:f9:
4e:ce:ac:6d:38:0d:18:6d:47:bc:c8:f2:91:a0:0a:
c4:25:9f:03:23:eb:d5:cd:00:72:51:2a:c8:a6:54:
73:ee:19:d2:59:66:a3:b9:ba:ac:98:de:8f:f2:68:
08:48:86:0e:44:57:f2:4b:98:b7:1e:63:5b:12:88:
e5:35:4f:57:f4:9c:ff:50:71:73:d0:cc:6f:93:de:
3e:4a:7d:f2:1a:6d:9d:1e:55:a8:67:63:6a:07:6a:
a7:4f:e5:9b:90:92:b8:e7:d5:6c:78:da:30:34:0e:
91:e2:f8:76:fd:9e:d0:fa:71:ca:ee:29:4a:24:05:
b8:06:0a:78:1e:f1:cb:d3:0c:d8:9b:ed:70:c7:36:
73:f9:62:0f:06:d1:df:6c:93:58:33:d1:d1:85:20:
ae:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:DB:25:0C:E5:BC:D7:AA:02:79:5D:28:23:CB:06:A6:1F:73:10:76
X509v3 Authority Key Identifier:
keyid:34:F4:81:A9:DD:CF:B4:85:91:F7:89:38:C4:FC:C7:B8:B6:7C:63:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NPSBqd3PtIWR94k4xPzHuLZ8YwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/3ad9c1-3e09-41ac-acca-d11339fe7df0/1/n9slDOW816oCeV0oI8sGph9zEHY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/3ad9c1-3e09-41ac-acca-d11339fe7df0/1/NPSBqd3PtIWR94k4xPzHuLZ8YwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.56.204.0/22
IPv6:
2a0c:8f40::/29
Signature Algorithm: sha256WithRSAEncryption
35:71:97:86:9b:3b:e6:94:19:3d:59:6b:c7:68:0c:d4:45:f4:
07:dd:f7:3a:31:35:4a:e4:1a:69:37:5d:d1:ee:e8:7a:47:6c:
11:2d:70:e7:b1:bb:d6:03:8c:84:82:4d:0b:1e:48:a3:fc:17:
f6:a9:0a:8d:fe:ab:c7:f2:a9:00:c0:a2:4f:29:68:df:8c:41:
74:c1:94:3e:11:af:d3:4f:e8:f4:b6:0c:50:cf:b6:62:d1:50:
d4:33:53:f4:a8:20:33:65:d9:67:d8:62:38:d0:3b:9f:39:dd:
10:f3:b4:77:4f:94:10:b3:ba:ad:48:f4:64:a1:49:ec:ab:9e:
b0:be:b8:dc:eb:a8:b6:43:e7:0c:d2:6b:5e:01:3e:6c:1c:de:
11:33:2d:15:8a:7d:0d:a8:8a:96:e6:50:e8:79:31:69:04:fa:
fe:35:c8:32:66:2f:33:01:66:15:44:ff:58:6c:49:c9:4c:db:
ea:7c:9b:48:9b:1e:a7:8f:ed:51:bd:1b:46:9a:71:f4:b4:91:
4d:22:1d:f6:5d:19:0d:54:4c:2d:10:4c:25:76:e2:2c:04:da:
22:1d:76:a6:b2:0e:49:b1:59:c7:9f:96:c7:d5:b3:4c:e9:fd:
a7:3c:db:b4:cd:54:4f:5e:0d:d7:ab:73:19:7f:7b:fc:7d:dd:
34:7b:f4:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:20 2025 by rpki-client on console.sobornost.net