Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/psBlkIW6dtVWZi88WXnK8h2TOIs.roa
File: psBlkIW6dtVWZi88WXnK8h2TOIs.roa (raw, json)
Hash identifier: m2D/JyGNFIe1c3lHf2YlnIPoGAFENvhQeedwzh/Q5lA=
Subject key identifier: A6:C0:65:90:85:BA:76:D5:56:66:2F:3C:59:79:CA:F2:1D:93:38:8B
Certificate issuer: /CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Certificate serial: 01942823963B0F88F7828446772DB7487725
Authority key identifier: D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/psBlkIW6dtVWZi88WXnK8h2TOIs.roa
Signing time: Thu 02 Jan 2025 17:50:08 +0000
ROA not before: Thu 02 Jan 2025 17:50:08 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 205220
IP address blocks: 188.209.136.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:23:96:3b:0f:88:f7:82:84:46:77:2d:b7:48:77:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Validity
Not Before: Jan 2 17:50:08 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a6c0659085ba76d556662f3c5979caf21d93388b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:36:fe:96:8c:f5:ce:0b:83:c0:35:75:fe:a4:
45:a9:7f:ec:7e:88:12:27:3d:a3:18:50:d0:e1:d9:
62:e4:06:e9:6c:4e:59:6c:13:b3:a8:46:11:39:78:
12:63:4e:4d:31:08:62:3b:8c:51:29:56:46:fa:38:
90:fe:e7:ae:19:39:77:4f:f6:64:16:bb:eb:b9:e1:
3f:6b:c0:f7:b1:70:73:30:4c:90:9b:aa:38:16:ae:
cc:19:06:f5:0f:29:44:3f:b3:93:aa:92:c2:d2:05:
bf:e5:3f:9a:ed:60:c6:64:f5:f4:3e:29:9e:10:98:
95:14:4e:b0:55:ea:ff:d1:de:45:2a:d7:97:5e:38:
cc:8a:c4:50:d1:d9:0c:e3:a7:f3:f8:e8:e4:3c:24:
b3:e7:bb:24:7a:17:a5:f5:0b:f2:1e:15:e1:f0:b7:
70:85:f5:c9:99:e7:a0:0a:6c:d5:95:6d:08:3b:b0:
29:d6:47:3e:76:01:91:f3:97:db:68:0e:21:e1:3a:
2d:b0:6a:49:6b:f8:93:ca:ce:18:ec:13:18:43:8d:
7d:91:e2:06:34:14:a6:98:92:ae:84:6b:80:cd:4e:
bc:1a:6b:b3:10:c5:d0:f6:ef:71:55:e3:1c:8c:b6:
56:f2:a3:d6:72:41:05:91:b4:a7:87:0d:d7:8a:27:
9c:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:C0:65:90:85:BA:76:D5:56:66:2F:3C:59:79:CA:F2:1D:93:38:8B
X509v3 Authority Key Identifier:
keyid:D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/psBlkIW6dtVWZi88WXnK8h2TOIs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.209.136.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:ad:61:5d:69:37:bb:9d:aa:fb:ab:cd:94:c5:d4:95:a2:9b:
8e:ae:26:a0:29:90:13:e3:8a:bf:6f:82:10:93:04:f4:48:dc:
95:1b:83:9c:61:c2:63:58:6c:9c:54:ec:69:1f:e9:3f:2e:ea:
a7:09:99:c8:75:0b:92:0d:8b:8c:48:94:23:22:5f:d9:51:c1:
ab:77:41:19:bd:e8:0a:67:0e:0d:00:20:b1:13:80:72:8f:41:
8e:cc:3c:9b:d8:00:1b:dc:ec:96:f2:c1:74:83:4e:19:d0:22:
f1:80:44:d5:0e:21:b7:aa:d7:3d:81:d7:d4:86:77:62:48:3a:
5d:ed:b4:ac:d2:18:05:93:39:0c:1b:3b:18:bd:3e:25:55:9e:
67:d2:8c:bd:70:75:aa:7d:bb:0b:a9:8a:2e:ab:0d:f4:6c:7a:
49:68:5f:1b:78:5b:55:9c:8b:ef:76:9e:10:80:58:13:46:6f:
74:dd:2a:03:3c:af:77:ec:4b:19:05:3d:3b:bb:0a:e5:5e:9d:
7f:5e:b6:fb:6c:05:47:a9:43:5e:e7:4e:2c:45:7b:05:1c:6a:
d0:75:ee:63:9b:e1:73:a1:c6:e5:ff:4f:81:dd:48:bf:fe:a2:
dd:5d:81:9d:40:a7:6b:9b:b9:53:a5:ea:49:5a:7d:ee:17:6e:
5b:ef:a0:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 8 04:48:21 2025 by rpki-client on console.sobornost.net