Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/8fRQ2gaaSUyxlPfMmZU6YlBuF9s.roa
File: 8fRQ2gaaSUyxlPfMmZU6YlBuF9s.roa (raw, json)
Hash identifier: J9iYhZ57NpzmVPmwg60w1m9TXW93kheuWUSOq5fqcNo=
Subject key identifier: F1:F4:50:DA:06:9A:49:4C:B1:94:F7:CC:99:95:3A:62:50:6E:17:DB
Certificate issuer: /CN=bfb097a36c2325d1031ff4091ba00a86459d4288
Certificate serial: 01942444F4BABDFB46FC959FD6A564376601
Authority key identifier: BF:B0:97:A3:6C:23:25:D1:03:1F:F4:09:1B:A0:0A:86:45:9D:42:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v7CXo2wjJdEDH_QJG6AKhkWdQog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/8fRQ2gaaSUyxlPfMmZU6YlBuF9s.roa
Signing time: Wed 01 Jan 2025 23:48:06 +0000
ROA not before: Wed 01 Jan 2025 23:48:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 200900
IP address blocks: 195.184.27.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:44:f4:ba:bd:fb:46:fc:95:9f:d6:a5:64:37:66:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfb097a36c2325d1031ff4091ba00a86459d4288
Validity
Not Before: Jan 1 23:48:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f1f450da069a494cb194f7cc99953a62506e17db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:fe:7b:d0:85:d6:e6:66:88:52:bf:90:99:43:
de:ca:28:f6:91:8c:46:e8:85:28:2a:b5:dd:40:5c:
ca:14:0d:fb:d5:4d:50:91:c9:7e:b7:2d:4f:50:36:
e2:11:c1:83:ea:50:97:3f:f8:33:7f:f7:f2:1f:5e:
c8:10:39:96:c6:85:7e:1f:96:1f:00:4d:f1:cb:e1:
81:37:a3:97:63:9c:dd:4e:f8:3a:dc:e9:ab:2f:9d:
8c:66:76:a3:69:13:60:e3:e0:e6:93:aa:06:ed:6d:
11:27:53:86:ee:76:09:57:1d:c9:1f:9f:2c:54:98:
6f:35:3e:5b:dc:60:b3:b7:e7:2c:ed:99:39:50:14:
d5:c3:80:5b:5c:93:83:dd:63:36:6f:6d:35:af:2c:
75:40:34:3b:22:86:d8:e7:45:f9:31:7f:4b:33:7c:
8c:4a:4d:9f:4c:ba:27:6b:bd:c0:2b:11:59:d8:f8:
c3:bb:9b:57:ae:96:9a:78:ca:71:72:2c:1f:c6:c1:
9c:23:e2:9b:56:02:c0:59:aa:a4:28:ea:be:75:ca:
39:6c:ff:6b:45:cf:81:42:0e:0c:bd:dc:99:63:c6:
de:ec:79:21:86:6a:b8:01:7c:69:a4:77:7a:39:03:
d0:6e:ef:5e:36:76:fc:b5:1e:a6:20:71:57:aa:8d:
e6:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:F4:50:DA:06:9A:49:4C:B1:94:F7:CC:99:95:3A:62:50:6E:17:DB
X509v3 Authority Key Identifier:
keyid:BF:B0:97:A3:6C:23:25:D1:03:1F:F4:09:1B:A0:0A:86:45:9D:42:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v7CXo2wjJdEDH_QJG6AKhkWdQog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/8fRQ2gaaSUyxlPfMmZU6YlBuF9s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/v7CXo2wjJdEDH_QJG6AKhkWdQog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.184.27.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:b0:6a:cf:16:c9:04:72:1a:c1:b7:6d:ed:37:bd:a4:d0:ef:
c5:03:91:56:6c:99:d8:2e:0f:f6:8f:23:26:bc:df:11:65:41:
3a:9b:70:a5:4d:b8:2a:0d:47:9e:25:a5:c7:f6:a8:7e:bc:da:
3d:cd:fa:d5:82:51:1c:24:10:b8:eb:97:ac:6d:94:cb:b8:f0:
97:1a:9d:a9:a3:35:a1:f3:b3:c6:35:6a:0b:6d:65:64:2b:96:
e5:01:4c:e6:62:c1:19:c0:a0:bf:0b:6a:dd:b2:cf:70:26:17:
50:d4:c5:bd:40:71:f9:69:41:75:7a:3f:af:b9:56:e9:ad:90:
31:32:7d:f0:27:c9:27:cc:c8:5b:a3:c2:0b:9d:50:94:81:89:
0a:b4:e2:8f:85:87:c8:12:b0:b6:16:a5:39:bf:ae:5c:a1:95:
58:22:a5:a8:e8:f4:4f:58:71:f4:52:1e:ca:38:3e:71:cd:fe:
cd:26:4f:31:39:a2:d9:73:b1:17:f1:af:ec:51:59:d2:3b:08:
9e:0c:3a:32:8c:be:86:62:fa:49:eb:75:bd:6d:71:da:60:fa:
3d:5c:26:b6:e2:08:3f:ad:e0:32:f4:63:ba:2d:13:6a:44:df:
f8:9b:74:5d:1e:61:9d:f5:c9:fd:3d:68:73:ba:f9:e4:7e:2c:
fd:0b:93:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:22 2025 by rpki-client on console.sobornost.net