Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/b5d3b8-bdbf-46fb-aa94-b14e599c0cc2/1/CNVq6hwjcvgKEJLlVTlQtSTBrJw.roa
File: CNVq6hwjcvgKEJLlVTlQtSTBrJw.roa (raw, json)
Hash identifier: XXymanpZ2oFTMQyHo/xvD9pTSAOM/yLCZqhwlA0NOiw=
Subject key identifier: 08:D5:6A:EA:1C:23:72:F8:0A:10:92:E5:55:39:50:B5:24:C1:AC:9C
Certificate issuer: /CN=51aedc576bdf5600bfe4c4790385facedc46f034
Certificate serial: 0194222036C5D026BAA3E75453CD8B811F38
Authority key identifier: 51:AE:DC:57:6B:DF:56:00:BF:E4:C4:79:03:85:FA:CE:DC:46:F0:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ua7cV2vfVgC_5MR5A4X6ztxG8DQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/b5d3b8-bdbf-46fb-aa94-b14e599c0cc2/1/CNVq6hwjcvgKEJLlVTlQtSTBrJw.roa
Signing time: Wed 01 Jan 2025 13:48:43 +0000
ROA not before: Wed 01 Jan 2025 13:48:43 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 29353
IP address blocks: 194.13.111.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:20:36:c5:d0:26:ba:a3:e7:54:53:cd:8b:81:1f:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=51aedc576bdf5600bfe4c4790385facedc46f034
Validity
Not Before: Jan 1 13:48:43 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=08d56aea1c2372f80a1092e5553950b524c1ac9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:40:d1:72:0d:ab:a5:56:e1:67:20:37:00:47:
bf:42:bf:18:69:f8:96:7f:bf:b3:e0:b1:67:a4:7d:
70:4f:fd:58:d0:95:8e:3a:8f:9c:2e:09:96:14:bd:
63:2a:82:2e:f9:e9:47:8e:8d:58:8a:9c:d6:78:de:
40:7f:fb:04:7c:5d:03:88:0c:2a:67:05:f4:96:63:
ab:cf:9d:2c:cc:b7:cb:f9:e4:af:aa:ef:31:b3:7f:
16:70:e4:61:4e:54:45:b1:2d:f2:31:51:6b:05:6a:
3d:bf:64:81:1d:f7:67:12:10:0e:8d:55:55:cf:1f:
62:17:61:53:38:b1:33:41:11:f3:93:6f:ed:c1:ae:
c7:92:77:ee:da:45:88:9b:05:93:fd:81:7f:dc:c1:
76:84:f1:91:38:d8:a0:b4:a7:2f:9f:af:84:9d:4b:
03:91:7e:0b:69:ad:a4:8b:ef:02:26:16:cd:e0:95:
90:68:4a:85:ba:55:f5:1c:59:89:a6:c1:cf:bd:94:
a3:db:31:60:e3:4d:0b:d2:70:79:88:35:bf:55:03:
6a:9f:ed:89:dc:8b:8d:f8:3c:91:b7:83:7c:6d:5c:
ba:7a:f5:fe:56:91:a2:88:e7:1f:df:52:55:96:6b:
46:dd:de:9a:bc:c9:01:a5:7e:29:83:a0:6a:b6:38:
5c:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:D5:6A:EA:1C:23:72:F8:0A:10:92:E5:55:39:50:B5:24:C1:AC:9C
X509v3 Authority Key Identifier:
keyid:51:AE:DC:57:6B:DF:56:00:BF:E4:C4:79:03:85:FA:CE:DC:46:F0:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ua7cV2vfVgC_5MR5A4X6ztxG8DQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/b5d3b8-bdbf-46fb-aa94-b14e599c0cc2/1/CNVq6hwjcvgKEJLlVTlQtSTBrJw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/b5d3b8-bdbf-46fb-aa94-b14e599c0cc2/1/Ua7cV2vfVgC_5MR5A4X6ztxG8DQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.13.111.0/24
Signature Algorithm: sha256WithRSAEncryption
60:2a:d0:c9:ce:21:1b:05:72:08:7e:fa:17:82:cf:d1:76:30:
95:cb:2e:06:3b:37:21:91:4e:2c:01:a5:a5:75:ea:12:9d:cc:
08:63:df:72:c1:91:f8:d6:6e:05:e9:db:38:37:4c:0d:f7:c4:
53:52:3b:3d:db:c9:97:03:11:be:59:38:ec:82:9f:88:ad:88:
44:a6:f8:d3:85:b3:cb:7f:ef:59:4a:33:f7:ca:9c:ad:82:8b:
2e:c8:ab:2c:cc:2f:ee:ba:f7:42:1a:01:02:6a:fb:6b:36:0f:
79:9e:49:39:cd:ee:bc:1f:58:a5:e0:67:a8:6e:61:d2:25:88:
d2:13:19:4b:24:65:ef:77:3e:bf:36:9f:db:f3:cb:f6:67:56:
4e:91:5e:46:07:88:8c:c6:e5:c2:f9:ba:7c:e0:fc:02:cb:92:
4f:a9:da:28:d0:76:b7:0a:d2:4b:11:c1:d1:31:01:9d:86:d6:
71:eb:c4:a1:1f:be:d5:52:7e:e0:50:f9:28:76:0b:24:41:f0:
da:22:0f:14:b0:03:ae:3e:89:3e:bf:aa:c5:a4:3a:f3:03:6a:
0c:bd:4b:4d:2f:85:22:70:3f:a4:6c:58:74:ee:06:a5:aa:48:
e8:01:94:76:ee:9a:11:3d:e1:65:4f:c6:5c:4a:a2:b9:27:3e:
1c:f7:81:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:32 2025 by rpki-client on console.sobornost.net