Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/481269-dbdb-425e-9642-e1ea41c9a2e6/1/7Rx3mayEBwk8ldskeFY-2K2rZ-s.roa
File: 7Rx3mayEBwk8ldskeFY-2K2rZ-s.roa (raw, json)
Hash identifier: wklqA5tkn0CZJbDeoo6PYXZybB1iV079BOW7c/8yfmg=
Subject key identifier: ED:1C:77:99:AC:84:07:09:3C:95:DB:24:78:56:3E:D8:AD:AB:67:EB
Certificate issuer: /CN=9ce94757ac3f70b40f369307d365ebc9657bab69
Certificate serial: 01942521688538E31DE4152EFBF784CF8CA1
Authority key identifier: 9C:E9:47:57:AC:3F:70:B4:0F:36:93:07:D3:65:EB:C9:65:7B:AB:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nOlHV6w_cLQPNpMH02XryWV7q2k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/481269-dbdb-425e-9642-e1ea41c9a2e6/1/7Rx3mayEBwk8ldskeFY-2K2rZ-s.roa
Signing time: Thu 02 Jan 2025 03:48:53 +0000
ROA not before: Thu 02 Jan 2025 03:48:53 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 34572
IP address blocks: 156.28.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:68:85:38:e3:1d:e4:15:2e:fb:f7:84:cf:8c:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9ce94757ac3f70b40f369307d365ebc9657bab69
Validity
Not Before: Jan 2 03:48:53 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ed1c7799ac8407093c95db2478563ed8adab67eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:c7:44:c6:09:6c:5a:5c:bb:42:84:6d:13:44:
77:43:d4:53:55:5d:81:25:9e:c5:f0:ed:d8:6a:92:
f1:1c:ef:80:a8:7a:bd:88:d0:2a:f9:9e:18:c8:04:
a1:ef:bc:4d:0e:7a:8f:e0:6c:39:5e:4d:7a:5b:71:
d9:61:5f:ef:cc:3d:12:86:e7:ca:6e:61:3b:6a:e2:
3f:5d:5a:a5:eb:08:14:21:71:15:e1:10:16:68:c0:
5a:d5:d7:3e:a7:0f:4f:7d:b1:67:40:51:80:8e:c4:
ea:4d:1d:08:76:4f:73:a1:dc:b4:d1:91:3f:2f:c9:
f4:9b:0e:91:6d:96:47:f7:5b:89:c2:3f:8a:28:a7:
6e:64:a1:71:fe:f6:a0:fc:f1:34:02:6b:9f:ca:a0:
4b:e4:0c:db:b3:af:c8:78:e4:ff:d2:0f:62:34:f0:
d9:85:8b:b4:34:af:98:b5:f3:d7:25:0e:cd:a2:3e:
0a:8f:d9:f3:8c:1e:ee:a5:8c:4a:82:4e:2d:cc:1a:
3b:03:ff:5d:38:df:ed:20:b1:2b:32:b7:cd:7c:28:
cf:eb:de:15:17:f7:58:97:31:47:47:a0:9a:5f:61:
2d:14:bd:74:91:ef:cd:bc:ff:b6:30:4f:41:4a:60:
a6:3d:ac:62:85:c6:fa:37:f8:65:b6:d0:27:56:07:
32:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:1C:77:99:AC:84:07:09:3C:95:DB:24:78:56:3E:D8:AD:AB:67:EB
X509v3 Authority Key Identifier:
keyid:9C:E9:47:57:AC:3F:70:B4:0F:36:93:07:D3:65:EB:C9:65:7B:AB:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nOlHV6w_cLQPNpMH02XryWV7q2k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/481269-dbdb-425e-9642-e1ea41c9a2e6/1/7Rx3mayEBwk8ldskeFY-2K2rZ-s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/481269-dbdb-425e-9642-e1ea41c9a2e6/1/nOlHV6w_cLQPNpMH02XryWV7q2k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
156.28.0.0/16
Signature Algorithm: sha256WithRSAEncryption
8f:7c:da:e6:50:bf:ad:ca:c1:83:7f:d3:ff:98:9d:05:98:e2:
7e:29:a6:67:54:77:da:de:c6:cb:74:ec:4a:0d:8d:96:36:fd:
a6:71:f2:5f:d0:0c:d4:b8:41:05:e1:5d:4e:05:8b:71:22:70:
b7:59:d8:c2:59:72:10:1c:1e:07:9b:6b:a9:b3:ad:73:27:08:
6d:a9:b6:c3:73:bd:ae:86:b3:a6:a3:97:36:c9:59:20:16:99:
69:e1:ce:6d:44:77:a1:48:a5:1e:45:05:d9:d3:65:8b:58:bd:
c8:4b:bb:a2:9f:71:eb:f4:8e:95:fd:c3:2f:f7:a0:97:3b:09:
8c:a3:eb:02:60:94:6e:71:2d:49:98:90:40:45:92:1e:20:1e:
25:cd:33:6c:1d:aa:d2:32:13:fb:39:20:74:85:b3:04:75:1e:
62:98:2e:5b:96:e9:d8:6c:80:b9:d7:9c:45:85:f7:b5:ae:ce:
f2:c4:46:bd:67:cd:b7:5f:68:bd:b5:69:d7:69:9d:80:da:06:
af:3b:23:b3:24:34:78:50:b0:6c:7e:23:22:9a:d5:65:70:a2:
66:c5:cd:a5:81:3c:e1:6b:6c:ce:0c:d9:fb:2b:3a:96:5c:50:
04:f2:17:59:06:a0:a2:cc:fc:b6:8e:00:1d:36:ce:79:6b:e7:
dd:4c:fe:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:20 2025 by rpki-client on console.sobornost.net