Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/614e5c-299b-4fd4-a0bc-af1cc2317e39/1/Oyop5ie0J1YYtu5t_uGmCo3zIS8.roa
File: Oyop5ie0J1YYtu5t_uGmCo3zIS8.roa (raw, json)
Hash identifier: 874fXZpydXHD1cFuDPyWOHD0dYaQUqKnVNs6jbCBZlc=
Subject key identifier: 3B:2A:29:E6:27:B4:27:56:18:B6:EE:6D:FE:E1:A6:0A:8D:F3:21:2F
Certificate issuer: /CN=feb84d9f8f9e33156589a5ebf722203a899e0a51
Certificate serial: 0195F7E625253E641722614EC541E7A1AA9A
Authority key identifier: FE:B8:4D:9F:8F:9E:33:15:65:89:A5:EB:F7:22:20:3A:89:9E:0A:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_rhNn4-eMxVliaXr9yIgOomeClE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/614e5c-299b-4fd4-a0bc-af1cc2317e39/1/Oyop5ie0J1YYtu5t_uGmCo3zIS8.roa
Signing time: Wed 02 Apr 2025 19:06:49 +0000
ROA not before: Wed 02 Apr 2025 19:06:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206352
IP address blocks: 195.210.98.0/24 maxlen: 24
195.210.110.0/23 maxlen: 23
195.210.122.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:f7:e6:25:25:3e:64:17:22:61:4e:c5:41:e7:a1:aa:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=feb84d9f8f9e33156589a5ebf722203a899e0a51
Validity
Not Before: Apr 2 19:06:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3b2a29e627b4275618b6ee6dfee1a60a8df3212f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:0a:5e:f7:8c:ef:10:ad:eb:55:e9:8d:af:81:
d4:18:cf:7a:4f:b4:0a:12:88:04:7e:0e:3c:71:84:
cd:d7:2f:2b:d7:03:08:c9:a5:57:5b:c8:fb:f7:4c:
fa:51:91:db:6b:b4:c0:88:f3:85:76:ac:60:3b:e8:
eb:d3:56:14:6c:15:6d:9c:e1:ea:82:ee:17:51:ab:
2c:ec:94:f9:b7:0b:7a:44:09:51:f5:dc:7d:d3:de:
b2:eb:c5:96:34:aa:8e:a2:72:10:1c:8a:a1:89:77:
fc:ab:48:8c:32:62:78:53:da:0a:00:48:9a:56:72:
48:b1:ab:10:fb:73:d0:1f:ba:57:f3:65:d0:16:0f:
32:f2:56:9e:78:44:dd:40:21:cc:f0:3e:c5:b7:74:
2d:22:23:bd:30:d3:20:a9:5d:ba:c6:8c:74:72:fa:
c7:92:46:1d:8f:83:ec:ba:e9:61:63:65:a2:c8:fe:
40:b3:22:aa:b2:04:ba:08:56:67:ed:f6:0a:1e:fa:
fb:d1:22:76:83:df:a9:ee:9d:19:88:10:f8:11:fb:
3b:37:b8:c7:ba:da:f8:ae:7c:c5:c5:13:c0:3d:1a:
f9:0a:5c:7a:c3:e7:b8:60:ef:a4:dd:af:de:15:4f:
8f:f4:d6:b2:af:9e:a4:d6:bd:e5:db:26:9e:b7:0d:
2f:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:2A:29:E6:27:B4:27:56:18:B6:EE:6D:FE:E1:A6:0A:8D:F3:21:2F
X509v3 Authority Key Identifier:
keyid:FE:B8:4D:9F:8F:9E:33:15:65:89:A5:EB:F7:22:20:3A:89:9E:0A:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_rhNn4-eMxVliaXr9yIgOomeClE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/614e5c-299b-4fd4-a0bc-af1cc2317e39/1/Oyop5ie0J1YYtu5t_uGmCo3zIS8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/614e5c-299b-4fd4-a0bc-af1cc2317e39/1/_rhNn4-eMxVliaXr9yIgOomeClE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.210.98.0/24
195.210.110.0/23
195.210.122.0/24
Signature Algorithm: sha256WithRSAEncryption
75:50:8f:90:84:92:b9:87:f5:c4:94:23:c1:d5:eb:db:93:98:
9a:72:c2:95:23:10:0b:8b:d6:c3:03:9c:e1:28:d6:11:d5:00:
8b:fb:28:7a:31:b2:5c:b2:36:f5:6c:ad:a2:1b:3b:5c:94:e8:
80:8b:cb:11:cd:08:c9:a4:7c:4f:b5:45:5b:63:38:d5:95:43:
a5:48:45:dd:bc:01:72:c9:70:51:31:55:62:3c:19:45:4a:35:
ba:e0:db:eb:c6:aa:e6:8b:ee:00:73:a3:59:39:a8:c2:d8:77:
2e:f2:56:f8:01:1d:63:08:13:4d:02:78:71:d9:41:2b:19:a0:
27:72:87:e4:5d:fb:25:bd:f2:15:30:31:6e:0f:c5:85:de:d1:
a3:d3:9d:be:48:32:42:5d:fd:c5:84:0b:32:42:fb:93:0a:74:
56:a6:3d:41:79:5f:2c:37:85:59:2a:e4:be:df:44:3d:cd:c9:
5e:ec:2f:51:4a:7a:3a:63:44:a8:69:61:77:94:03:70:0a:0f:
d5:ea:c2:e2:c7:a8:6d:bd:88:dd:40:07:23:02:37:c2:c6:e0:
dd:5e:43:ed:bb:38:f8:08:52:87:cd:a2:84:f1:4c:e6:7a:47:
d2:ca:7b:0d:f6:22:be:f3:d7:2f:27:d1:e4:63:71:3c:aa:f8:
83:14:b5:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:21 2025 by rpki-client on console.sobornost.net