Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/2NzOCD2bM5a530UIGl2ZsDRbmUU.roa
File: 2NzOCD2bM5a530UIGl2ZsDRbmUU.roa (raw, json)
Hash identifier: /+WGidIvg/u0vrSl2pcgEtQoS0FUZmi1tEkbrWlSxL4=
Subject key identifier: D8:DC:CE:08:3D:9B:33:96:B9:DF:45:08:1A:5D:99:B0:34:5B:99:45
Certificate issuer: /CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Certificate serial: 0195FD5DFBAE05C64ED9AF94CB092541D947
Authority key identifier: FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/2NzOCD2bM5a530UIGl2ZsDRbmUU.roa
Signing time: Thu 03 Apr 2025 20:35:49 +0000
ROA not before: Thu 03 Apr 2025 20:35:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 35505
IP address blocks: 193.187.149.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:fd:5d:fb:ae:05:c6:4e:d9:af:94:cb:09:25:41:d9:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Validity
Not Before: Apr 3 20:35:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d8dcce083d9b3396b9df45081a5d99b0345b9945
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:f1:de:90:7f:5f:00:24:a9:4a:2d:5a:97:3a:
b2:38:3c:17:96:27:86:bf:81:8b:7f:20:eb:60:41:
ad:13:fb:14:fc:49:6b:b9:4f:14:69:53:8d:8d:03:
c5:cc:20:a4:47:50:fc:91:e3:ed:5c:f9:80:5f:72:
7d:a1:0e:a6:29:35:be:64:e1:2e:be:9d:d7:77:45:
8c:e1:a2:15:73:e8:99:ba:63:d7:3a:95:cb:ca:17:
0d:52:3e:83:ad:3e:47:a5:22:bc:4e:5b:13:07:ba:
d3:6f:00:5e:85:29:d7:6b:46:6d:07:f2:e3:4e:82:
0a:f4:df:cc:43:36:5b:e3:fe:c0:f5:b4:36:c8:9b:
e0:e5:91:a9:82:93:4d:ac:5b:c6:5d:bf:c4:6c:ea:
f7:19:df:9e:ba:91:ff:1a:9d:95:6c:29:2c:54:75:
8a:79:35:4c:27:2b:c6:1d:61:c6:95:e8:e4:0f:0a:
83:ef:29:53:63:12:7d:d3:85:49:ce:44:c1:61:a7:
a4:52:90:03:09:08:40:09:40:77:d9:ce:b4:60:d2:
bc:98:9f:bd:bb:68:af:d9:c9:f3:12:d4:99:d8:b2:
51:32:80:ea:ab:fb:c1:57:82:a6:5a:42:6a:55:f8:
83:30:99:de:3a:e7:45:83:00:09:a7:9f:98:c8:32:
83:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:DC:CE:08:3D:9B:33:96:B9:DF:45:08:1A:5D:99:B0:34:5B:99:45
X509v3 Authority Key Identifier:
keyid:FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/2NzOCD2bM5a530UIGl2ZsDRbmUU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.187.149.0/24
Signature Algorithm: sha256WithRSAEncryption
83:0a:60:0f:8c:d8:b5:8a:1d:5a:f1:b6:14:52:3a:54:3a:6a:
b5:35:9d:bb:84:3e:4a:2b:2d:16:ae:8c:cf:fb:dd:81:44:45:
a2:81:3e:99:c5:8d:33:0e:83:fd:7a:aa:96:22:6b:ef:f5:16:
11:3e:53:c6:14:51:2b:61:ea:b3:f9:df:f4:be:46:0d:01:f7:
8d:d9:00:fa:5f:d5:c1:db:4b:a6:45:5a:13:7b:1f:4e:ad:da:
25:c0:54:c2:e9:b2:da:1a:a4:8f:72:2a:fa:85:4a:e2:3f:48:
3e:1a:48:99:8c:28:1c:1f:33:bf:58:60:51:43:83:fe:cd:2b:
a0:71:2b:d9:59:09:93:9e:b2:01:48:7f:e9:57:f2:79:1a:6a:
73:36:22:c4:16:b3:35:d2:cb:65:1b:39:e0:76:ec:51:6b:b0:
62:f4:d4:28:13:98:5e:46:16:ff:23:61:4a:69:6d:3c:cb:3c:
ec:4c:74:ce:5c:69:f2:f6:1f:95:9c:f8:4b:14:23:4f:8f:c6:
52:58:6f:ac:4a:29:75:32:dc:98:4d:79:5f:1d:bc:05:bd:a7:
23:c8:e0:16:65:97:71:e4:42:39:bb:f7:0c:98:05:74:a5:bd:
66:ea:a7:7d:0c:e3:2b:69:f2:b8:42:6a:d2:71:2b:dc:33:7e:
9f:95:79:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:33 2025 by rpki-client on console.sobornost.net