Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/9ca0df-d474-40cd-8688-1715919567c9/1/r0sx0dKkFtH5IxbLaEsFdTPr2X0.roa
File: r0sx0dKkFtH5IxbLaEsFdTPr2X0.roa (raw, json)
Hash identifier: EBn7sEe1WosQ18UNra4vN2152bj1ofOm+tLWvyXPfXI=
Subject key identifier: AF:4B:31:D1:D2:A4:16:D1:F9:23:16:CB:68:4B:05:75:33:EB:D9:7D
Certificate issuer: /CN=5e05cb67209bbd1983f4327716523eb1777fd4fa
Certificate serial: 01942521889FF4F974054685B33257B7EED8
Authority key identifier: 5E:05:CB:67:20:9B:BD:19:83:F4:32:77:16:52:3E:B1:77:7F:D4:FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XgXLZyCbvRmD9DJ3FlI-sXd_1Po.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/9ca0df-d474-40cd-8688-1715919567c9/1/r0sx0dKkFtH5IxbLaEsFdTPr2X0.roa
Signing time: Thu 02 Jan 2025 03:49:02 +0000
ROA not before: Thu 02 Jan 2025 03:49:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 57651
IP address blocks: 193.247.238.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:88:9f:f4:f9:74:05:46:85:b3:32:57:b7:ee:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e05cb67209bbd1983f4327716523eb1777fd4fa
Validity
Not Before: Jan 2 03:49:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=af4b31d1d2a416d1f92316cb684b057533ebd97d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:a5:80:55:b0:79:a5:76:1f:2b:16:b9:3f:cc:
88:4a:2c:5c:3c:97:f4:83:95:2f:8d:18:6c:cc:4a:
91:e0:de:aa:f5:55:41:3d:f4:7e:18:63:ae:6c:20:
fb:f0:64:f9:7f:a7:82:54:9f:2a:6c:92:a0:de:06:
74:12:15:1a:20:1b:13:98:5b:e9:0f:ff:89:ae:83:
9e:b6:ad:a7:5c:6f:b2:96:07:0c:08:04:61:97:bf:
14:d6:a7:53:0d:31:4a:64:b6:cf:53:82:bd:42:21:
17:ce:0e:58:68:30:a9:dd:b7:a3:5d:c5:01:80:c3:
18:ba:c1:7e:2f:18:86:e8:38:c4:9c:41:16:5e:97:
d6:77:5e:dd:ce:15:97:dc:5b:07:5f:15:3a:51:f7:
5f:26:59:35:ef:7e:0f:40:84:0a:95:e0:0e:90:48:
84:a5:96:a2:7e:c6:d6:ed:a5:ba:dc:b7:ba:3c:83:
c1:8d:00:00:78:61:1f:52:7e:82:8a:58:1f:4d:bb:
da:7a:86:c9:ee:6f:86:5b:47:7d:74:10:3f:a8:43:
d5:38:77:47:f9:b3:c9:d7:63:e7:c7:68:a3:fe:a2:
b9:9a:bc:10:ed:04:2a:90:63:69:23:f4:8e:e7:f0:
b3:36:77:b9:be:81:8a:55:eb:b5:01:4c:c0:0b:8b:
4a:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:4B:31:D1:D2:A4:16:D1:F9:23:16:CB:68:4B:05:75:33:EB:D9:7D
X509v3 Authority Key Identifier:
keyid:5E:05:CB:67:20:9B:BD:19:83:F4:32:77:16:52:3E:B1:77:7F:D4:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XgXLZyCbvRmD9DJ3FlI-sXd_1Po.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/9ca0df-d474-40cd-8688-1715919567c9/1/r0sx0dKkFtH5IxbLaEsFdTPr2X0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/9ca0df-d474-40cd-8688-1715919567c9/1/XgXLZyCbvRmD9DJ3FlI-sXd_1Po.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.247.238.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:1d:33:22:37:5b:0c:d2:82:b4:c0:30:e2:5d:41:c1:36:ef:
f3:0a:09:ed:17:b9:f9:cb:32:8f:f8:a2:d0:d8:c7:4b:89:ce:
09:b4:af:48:7e:61:ff:24:b3:d5:33:48:21:f5:64:69:b7:13:
0e:5d:82:b7:8a:2b:26:58:03:db:8f:37:c3:66:2a:70:ad:16:
2e:ba:60:2d:47:78:57:33:76:98:34:d9:11:00:83:c3:f9:88:
4e:ef:aa:8d:32:11:98:5b:ac:ae:1c:e2:49:1d:49:06:7c:03:
94:90:59:5d:c3:cf:b5:e4:46:18:79:bb:b3:0e:96:e2:7b:d2:
6c:97:42:05:15:3f:11:75:5b:c7:8e:c1:8b:c2:32:e7:bc:dc:
58:42:57:fc:45:f5:5a:72:ba:27:97:70:6e:16:8a:51:2f:85:
fb:22:92:53:dd:c4:e5:79:d9:12:ae:e9:58:d3:cc:6e:ba:95:
73:9a:9a:05:0e:3d:b0:28:0b:17:31:6f:6d:77:bf:11:6b:2b:
87:ac:b3:43:20:64:47:9e:ac:7b:f0:42:e4:99:80:c2:95:9f:
26:a4:2d:45:84:f0:1f:93:42:32:f3:ff:3c:15:48:bb:29:15:
0e:f7:b7:4c:d0:0d:bc:04:95:cf:87:42:67:f3:cc:57:3b:2e:
70:8a:cc:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:29 2025 by rpki-client on console.sobornost.net