Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/ad8994-51f1-4b65-aca0-e15a8b70e8d2/1/n9uV52lUlBfny_mibwK9eMiu_og.roa
File: n9uV52lUlBfny_mibwK9eMiu_og.roa (raw, json)
Hash identifier: 54PSRM/jpJmSMS9ihIFUAJNjZSe2qLiVsg1xoZD4Jhk=
Subject key identifier: 9F:DB:95:E7:69:54:94:17:E7:CB:F9:A2:6F:02:BD:78:C8:AE:FE:88
Certificate issuer: /CN=37ceaa626cbd89052f3545335dfdb31a13383004
Certificate serial: 019425FD920B476E8EB28CF98B4862F3AD80
Authority key identifier: 37:CE:AA:62:6C:BD:89:05:2F:35:45:33:5D:FD:B3:1A:13:38:30:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N86qYmy9iQUvNUUzXf2zGhM4MAQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/ad8994-51f1-4b65-aca0-e15a8b70e8d2/1/n9uV52lUlBfny_mibwK9eMiu_og.roa
Signing time: Thu 02 Jan 2025 07:49:22 +0000
ROA not before: Thu 02 Jan 2025 07:49:22 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213144
IP address blocks: 194.76.143.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fd:92:0b:47:6e:8e:b2:8c:f9:8b:48:62:f3:ad:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37ceaa626cbd89052f3545335dfdb31a13383004
Validity
Not Before: Jan 2 07:49:22 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9fdb95e769549417e7cbf9a26f02bd78c8aefe88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:62:22:f5:81:5a:5d:e8:4d:1d:e0:fd:43:8f:
5b:3a:b1:7a:d1:5d:62:46:58:85:51:b6:4e:93:cd:
9c:f0:e8:83:05:6f:ac:13:33:ec:be:a2:c1:23:bd:
8a:16:11:2f:1a:32:1a:65:ad:7f:8b:71:f8:4d:e9:
81:a5:99:c1:b9:af:ef:2c:0a:93:74:44:2b:2f:84:
ea:e2:8f:d3:fc:df:df:a9:cf:00:2e:dd:36:f8:b1:
6d:38:51:06:3d:31:e4:c6:62:f1:8c:11:e2:6c:cb:
12:b8:bd:6a:a7:31:68:33:e2:64:d4:82:1b:04:e2:
a0:da:ed:b3:4a:47:fa:29:aa:de:dc:18:89:ef:c0:
25:e2:12:d5:b3:ba:5a:ef:6a:a5:aa:92:79:55:a7:
a0:84:da:2a:72:77:2b:be:73:be:d0:5b:5d:fc:c0:
5e:d8:ac:97:c3:4b:73:d3:e7:97:77:5d:27:41:d0:
95:5d:70:2b:77:d0:ff:1a:a8:77:f0:3a:6f:60:3c:
9c:7b:2f:73:86:27:8d:6b:69:67:40:93:3a:3a:40:
0c:bf:98:c6:1d:8a:72:f5:b8:4b:6d:06:9f:0e:5b:
6b:a0:6d:55:33:90:dc:2b:02:98:af:86:4d:4c:72:
52:cd:75:3c:08:b5:89:99:0f:54:af:6b:97:6b:d8:
76:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:DB:95:E7:69:54:94:17:E7:CB:F9:A2:6F:02:BD:78:C8:AE:FE:88
X509v3 Authority Key Identifier:
keyid:37:CE:AA:62:6C:BD:89:05:2F:35:45:33:5D:FD:B3:1A:13:38:30:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N86qYmy9iQUvNUUzXf2zGhM4MAQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/ad8994-51f1-4b65-aca0-e15a8b70e8d2/1/n9uV52lUlBfny_mibwK9eMiu_og.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/ad8994-51f1-4b65-aca0-e15a8b70e8d2/1/N86qYmy9iQUvNUUzXf2zGhM4MAQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.76.143.0/24
Signature Algorithm: sha256WithRSAEncryption
13:3f:a4:0a:f8:81:a7:8f:0a:2b:06:b9:67:87:dd:be:0d:24:
8a:ea:9e:31:08:39:ff:71:d5:cb:0f:f7:06:f9:91:4d:0c:c6:
7e:7f:14:4a:07:70:55:d9:d8:78:69:cd:df:c8:2b:95:03:17:
1b:bb:99:f5:da:d0:53:95:f6:2d:eb:71:12:9b:14:2d:5f:3b:
00:fe:9e:8f:6c:0d:d8:e5:43:b3:34:68:c8:2b:fd:86:7e:70:
c1:ca:3e:56:cf:cf:e1:9b:a6:dc:14:2f:85:a8:3f:e5:65:b5:
1a:44:c5:81:51:db:52:f1:52:c1:4a:79:4c:ae:10:b5:e6:1c:
8f:73:bc:68:87:ca:04:a3:33:66:cf:b5:7d:cd:c0:41:c9:c1:
56:01:c8:31:c2:3d:02:fe:e3:f5:16:d7:dd:94:f4:ac:44:3d:
8d:50:b4:86:eb:71:90:74:2b:15:eb:14:d2:91:08:d8:3b:12:
80:44:39:36:30:2e:ff:bb:a0:bf:08:d5:e5:f9:14:b9:d9:87:
68:cf:c5:6e:1f:dd:50:b7:4b:84:9c:11:5a:35:4a:88:67:ad:
75:27:6d:fa:40:66:1c:a2:40:af:90:92:20:d3:5d:48:91:08:
ae:3b:26:5a:4a:c7:a6:73:3d:c9:06:78:44:07:6d:e5:75:a9:
61:78:a7:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:32 2025 by rpki-client on console.sobornost.net