Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/fd8457-810f-4f7e-9e58-56cc39db6ed6/1/BG-IwhP94ukLbxm2X3VxR4W5Nbc.roa
File: BG-IwhP94ukLbxm2X3VxR4W5Nbc.roa (raw, json)
Hash identifier: 8rlyAUIx0xWV/NVKgvLdoyGMltHPy6j1FAqFmhNaiKg=
Subject key identifier: 04:6F:88:C2:13:FD:E2:E9:0B:6F:19:B6:5F:75:71:47:85:B9:35:B7
Certificate issuer: /CN=c59bd1e8c58f641bd944305f11c54efe5f3a0ce2
Certificate serial: 01942748261417FB0393DDEBEF0903FDAE4E
Authority key identifier: C5:9B:D1:E8:C5:8F:64:1B:D9:44:30:5F:11:C5:4E:FE:5F:3A:0C:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xZvR6MWPZBvZRDBfEcVO_l86DOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/fd8457-810f-4f7e-9e58-56cc39db6ed6/1/BG-IwhP94ukLbxm2X3VxR4W5Nbc.roa
Signing time: Thu 02 Jan 2025 13:50:27 +0000
ROA not before: Thu 02 Jan 2025 13:50:27 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213895
IP address blocks: 103.130.144.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:26:14:17:fb:03:93:dd:eb:ef:09:03:fd:ae:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c59bd1e8c58f641bd944305f11c54efe5f3a0ce2
Validity
Not Before: Jan 2 13:50:27 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=046f88c213fde2e90b6f19b65f75714785b935b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:3f:3a:24:74:ce:ed:ad:23:7f:14:b1:23:42:
07:c1:00:d2:f9:40:87:0f:a8:6b:e5:6a:41:fc:88:
2c:62:4a:f7:c5:c5:4d:86:fa:5b:bd:59:90:28:bf:
1e:fd:c2:18:1d:88:7d:d6:c4:c0:88:4e:0b:10:50:
66:d3:bc:83:d4:a9:c7:cf:04:db:0a:e4:85:e6:53:
55:46:3b:c6:c4:fa:d4:4c:96:85:8c:37:c4:ef:47:
60:ca:45:f0:fb:73:18:49:c3:74:d0:40:2d:13:f9:
eb:33:c1:58:9e:dc:9c:a3:6d:b4:d6:19:64:fb:e7:
62:36:6e:61:2d:ab:5d:38:e0:83:30:d2:84:59:d0:
7d:6b:72:23:6b:66:31:78:c0:83:da:f7:b6:b4:dc:
3b:f0:4a:b4:5d:95:ed:56:f2:4e:6a:9b:46:fa:2d:
66:1b:87:15:14:8e:59:b3:e3:0c:a2:00:97:35:5e:
e9:4a:f9:39:ce:11:0a:07:bc:79:45:24:ad:d6:2b:
f2:f3:06:b6:d6:b0:02:94:4d:51:c2:0c:c0:cd:16:
53:ea:75:d0:ab:b4:bf:3b:74:9b:b7:70:65:48:96:
57:29:cf:0d:cf:75:ac:b9:8a:66:8a:ee:50:75:38:
c3:62:39:55:c7:cc:bd:f3:62:bf:03:ec:a7:a5:05:
27:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:6F:88:C2:13:FD:E2:E9:0B:6F:19:B6:5F:75:71:47:85:B9:35:B7
X509v3 Authority Key Identifier:
keyid:C5:9B:D1:E8:C5:8F:64:1B:D9:44:30:5F:11:C5:4E:FE:5F:3A:0C:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xZvR6MWPZBvZRDBfEcVO_l86DOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/fd8457-810f-4f7e-9e58-56cc39db6ed6/1/BG-IwhP94ukLbxm2X3VxR4W5Nbc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/fd8457-810f-4f7e-9e58-56cc39db6ed6/1/xZvR6MWPZBvZRDBfEcVO_l86DOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.130.144.0/24
Signature Algorithm: sha256WithRSAEncryption
66:f0:f3:22:6c:8d:61:c2:9a:b4:8e:84:4f:ea:bc:ec:33:a9:
30:0e:3a:3c:9f:8a:f2:b7:94:b9:8b:e8:8b:65:e7:21:b1:98:
e0:aa:84:fb:6a:e0:17:c4:69:91:f2:f1:d9:9e:03:54:9a:1b:
9c:bc:e7:95:e0:e1:f8:2b:46:e8:b6:4e:f7:0d:cf:61:bd:3f:
6f:b3:26:4b:a2:6b:7c:05:57:6a:be:35:72:0b:e9:49:16:08:
fb:03:36:d2:f5:55:b9:20:cb:ac:61:50:f3:1d:8d:27:d0:d1:
d1:e0:44:39:f1:c2:87:42:60:eb:11:c6:eb:db:a3:7c:65:dc:
e2:04:47:67:44:2e:a4:9b:89:23:c3:47:fa:4e:6f:2e:bc:c5:
27:3a:92:9b:bb:1c:58:84:90:73:14:24:c0:c0:57:d7:6d:80:
61:ea:e0:65:e1:34:0d:5f:5e:03:c4:14:71:0e:91:e4:6d:d1:
e1:60:90:9f:a4:c2:54:77:39:ce:99:68:bd:9e:78:30:83:e5:
d4:3e:99:82:70:49:a2:70:3b:a5:ac:70:d9:50:5f:44:11:b7:
0a:da:7d:d3:41:93:68:80:11:72:dd:35:8d:2e:3d:6d:a5:20:
9a:ec:77:e9:73:af:f8:47:61:06:79:10:ba:26:d4:c2:e3:01:
80:ec:c1:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:32 2025 by rpki-client on console.sobornost.net