Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/685b53-6f11-41db-bead-43eaf7567caa/1/S81leN1fuHkrYmn7HxOWRSa_EgA.roa
File: S81leN1fuHkrYmn7HxOWRSa_EgA.roa (raw, json)
Hash identifier: jKDEc5FdU7Yds63BEna9vHfX9LdcVE/wlCXgfCTj304=
Subject key identifier: 4B:CD:65:78:DD:5F:B8:79:2B:62:69:FB:1F:13:96:45:26:BF:12:00
Certificate issuer: /CN=485f76274c805d25b115a3adba1d2ea154deead7
Certificate serial: 019497B36F8340039C909ABA2A89009213E3
Authority key identifier: 48:5F:76:27:4C:80:5D:25:B1:15:A3:AD:BA:1D:2E:A1:54:DE:EA:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SF92J0yAXSWxFaOtuh0uoVTe6tc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/685b53-6f11-41db-bead-43eaf7567caa/1/S81leN1fuHkrYmn7HxOWRSa_EgA.roa
Signing time: Fri 24 Jan 2025 09:45:06 +0000
ROA not before: Fri 24 Jan 2025 09:45:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 39900
IP address blocks: 194.26.27.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:97:b3:6f:83:40:03:9c:90:9a:ba:2a:89:00:92:13:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=485f76274c805d25b115a3adba1d2ea154deead7
Validity
Not Before: Jan 24 09:45:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4bcd6578dd5fb8792b6269fb1f13964526bf1200
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:9f:fc:54:4f:fa:ed:45:08:da:a8:80:fa:e4:
e8:f9:12:0c:76:d2:58:6c:52:c5:d3:d3:e0:6a:63:
42:4a:8b:ff:c1:62:5f:41:a6:1a:c0:22:c6:89:a1:
59:9a:2c:85:84:09:b6:0c:76:08:2e:41:c7:37:2d:
33:ce:7b:27:7a:dc:86:e8:21:b8:a2:96:3c:a1:f4:
3c:e2:0b:f4:e5:d9:a0:a8:1a:3a:5a:92:27:c6:a3:
5a:70:14:4d:e5:54:7a:86:25:1b:64:5d:4b:c0:8c:
f6:10:d9:5b:7e:de:7d:f7:73:93:3f:74:f9:d9:4c:
e9:89:44:08:16:c5:f6:a9:0f:5a:06:20:df:12:01:
80:08:21:e4:b9:58:f8:6b:a4:99:3c:cf:c5:fd:41:
75:89:fb:4e:5c:1f:19:13:fe:85:59:2d:4c:3f:6a:
7d:40:92:f1:b9:2d:ab:14:41:c2:be:a2:75:7c:f1:
cd:7b:31:e1:7b:49:62:19:33:49:2b:41:e6:f5:a2:
90:df:83:95:f9:ce:bd:e6:44:be:4d:5a:70:e2:78:
8e:7f:99:7d:8d:f0:58:a8:97:7a:fe:b3:19:17:26:
72:06:6f:05:dd:0d:1f:a6:25:03:56:2a:27:07:b1:
0e:07:a3:65:e4:3f:b3:8f:6a:13:db:f8:ba:84:fb:
6e:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:CD:65:78:DD:5F:B8:79:2B:62:69:FB:1F:13:96:45:26:BF:12:00
X509v3 Authority Key Identifier:
keyid:48:5F:76:27:4C:80:5D:25:B1:15:A3:AD:BA:1D:2E:A1:54:DE:EA:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SF92J0yAXSWxFaOtuh0uoVTe6tc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/685b53-6f11-41db-bead-43eaf7567caa/1/S81leN1fuHkrYmn7HxOWRSa_EgA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/685b53-6f11-41db-bead-43eaf7567caa/1/SF92J0yAXSWxFaOtuh0uoVTe6tc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.26.27.0/24
Signature Algorithm: sha256WithRSAEncryption
c3:65:0f:28:7e:75:be:0c:37:29:e5:c7:cd:72:1c:79:4c:03:
53:cb:9a:77:ef:dc:49:9b:d0:b5:ff:87:80:6e:22:17:60:bd:
3e:b4:12:30:f4:d7:1c:98:dc:95:b9:4c:d0:51:0f:8e:eb:3e:
df:0e:98:e0:f2:83:c8:f9:90:94:a7:8c:e1:6b:da:d9:72:7c:
24:46:19:0c:7d:0f:75:8c:9e:72:e3:67:22:a7:cc:79:63:4c:
ce:04:b0:08:9a:8f:b5:75:8c:af:b5:8b:ba:36:86:ed:4e:21:
3b:b0:4a:d4:2a:68:de:33:fb:4a:c9:d5:75:25:d6:5d:43:a2:
6e:b9:2b:61:cc:70:df:db:a5:69:e1:3b:51:fa:28:33:22:cc:
7c:09:2b:5d:25:70:60:40:87:c5:e8:dd:b8:2b:03:d5:f1:ad:
30:20:cd:bd:24:b3:5f:ec:23:57:48:9c:bc:50:65:8d:26:70:
dc:3d:8a:f8:96:3a:75:95:6d:ae:b7:80:e9:63:b3:9a:4e:9b:
76:18:0b:0f:a5:a5:80:48:65:ff:b2:09:fa:f2:f2:25:b1:7b:
04:44:00:30:ff:11:de:f2:9c:a1:30:83:53:a5:9c:f0:de:28:
e2:7d:1f:52:5a:56:9e:6c:e0:f3:dd:37:55:1a:0c:ad:6b:2f:
74:83:09:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:33 2025 by rpki-client on console.sobornost.net