Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/0e7b29-6297-42ca-8f33-5dfccd61a9b1/1/i6oJjXRKdgfnkj_rE4iq05oFMmM.roa
File: i6oJjXRKdgfnkj_rE4iq05oFMmM.roa (raw, json)
Hash identifier: nw5jFn55H/EVi3BTrdZ+OM1oIFTGOfhaLyuuO+IjwPY=
Subject key identifier: 8B:AA:09:8D:74:4A:76:07:E7:92:3F:EB:13:88:AA:D3:9A:05:32:63
Certificate issuer: /CN=54b48731e29f27d687576d6863adbda080709bfe
Certificate serial: 019425FC3517A84975D3EF4ED369DA0FD2DD
Authority key identifier: 54:B4:87:31:E2:9F:27:D6:87:57:6D:68:63:AD:BD:A0:80:70:9B:FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VLSHMeKfJ9aHV21oY629oIBwm_4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/0e7b29-6297-42ca-8f33-5dfccd61a9b1/1/i6oJjXRKdgfnkj_rE4iq05oFMmM.roa
Signing time: Thu 02 Jan 2025 07:47:53 +0000
ROA not before: Thu 02 Jan 2025 07:47:53 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 42330
IP address blocks: 78.41.136.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fc:35:17:a8:49:75:d3:ef:4e:d3:69:da:0f:d2:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54b48731e29f27d687576d6863adbda080709bfe
Validity
Not Before: Jan 2 07:47:53 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8baa098d744a7607e7923feb1388aad39a053263
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:67:01:ca:7b:38:0a:bf:29:9b:8e:de:40:ba:
83:c4:ac:a2:0d:11:a6:be:64:1a:d9:e7:28:fc:40:
1a:3d:b6:fe:c2:bd:c6:56:74:ec:ca:4e:aa:7e:bf:
8c:b7:bd:b8:6c:93:02:0b:03:06:16:ce:18:5e:d3:
1d:3a:24:06:87:c8:13:6b:ff:0d:7f:e8:9d:2b:5c:
2f:20:77:2d:31:c8:30:a1:5f:88:1c:35:bc:a9:99:
a8:05:4b:9a:38:6e:e9:3d:82:ca:63:29:4a:fa:fc:
6b:8c:3b:4c:dd:58:38:a7:a3:d8:37:65:35:24:72:
55:be:aa:60:74:14:f0:57:37:23:68:16:30:c3:b6:
ed:0c:3d:4a:b3:d8:f7:fc:46:70:0e:83:b3:f7:d8:
05:c9:bf:d8:c2:6e:df:3f:4f:cb:ec:26:f6:56:ea:
cc:6a:73:00:b2:82:97:09:e5:f6:59:b2:12:e0:7f:
08:ab:82:2e:19:a0:cf:fe:76:86:2b:1c:03:a6:d7:
2f:b1:66:c7:6a:1d:af:ea:b8:e1:2c:ec:52:5b:a5:
8d:df:68:84:ba:d7:b4:b0:f6:64:8c:01:94:0d:90:
84:76:5a:6b:1c:d6:98:ca:44:b9:1c:33:f4:c8:bf:
df:31:94:ff:5e:b5:12:ff:71:6c:9c:03:85:e9:9b:
7b:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:AA:09:8D:74:4A:76:07:E7:92:3F:EB:13:88:AA:D3:9A:05:32:63
X509v3 Authority Key Identifier:
keyid:54:B4:87:31:E2:9F:27:D6:87:57:6D:68:63:AD:BD:A0:80:70:9B:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VLSHMeKfJ9aHV21oY629oIBwm_4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/0e7b29-6297-42ca-8f33-5dfccd61a9b1/1/i6oJjXRKdgfnkj_rE4iq05oFMmM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/0e7b29-6297-42ca-8f33-5dfccd61a9b1/1/VLSHMeKfJ9aHV21oY629oIBwm_4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.41.136.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:12:a8:1f:bf:a6:21:bc:42:ee:b5:40:9d:12:a1:6c:07:d8:
de:7c:e0:1c:46:a1:9a:19:51:84:45:2d:35:df:16:6e:32:33:
04:3a:7d:34:06:1d:c2:37:61:41:4e:19:52:80:88:38:cd:5a:
0b:29:23:73:55:fa:77:6f:60:05:99:54:37:e2:d9:a7:3b:0f:
1d:ae:1c:84:37:0e:34:dc:b8:05:3a:3d:02:00:3a:18:a5:c5:
44:5c:f4:e1:70:c7:e5:64:1e:e9:0a:d7:d6:e5:6d:61:8a:ae:
d1:ef:c6:4f:18:81:ed:13:00:1a:91:ac:a6:20:28:05:55:52:
0e:0d:08:47:0a:2a:9b:ff:72:36:d6:53:b5:57:39:72:05:95:
9c:55:9a:cf:29:55:d4:b6:e7:ca:1c:12:67:8d:47:5f:c6:a0:
24:57:41:1f:41:ed:2e:64:46:2c:08:15:21:5d:95:33:55:55:
3e:8e:eb:20:68:8d:e8:58:2e:c1:80:e0:7d:a5:27:32:18:4c:
d1:11:38:b8:76:c4:2e:cb:55:a6:44:3b:01:98:95:e4:fa:7a:
ae:3c:59:46:fa:14:81:de:4b:23:ea:38:c8:47:14:5d:db:cf:
ac:d9:51:a5:7f:0c:94:cf:f5:b9:4e:70:98:1b:52:9a:1c:90:
66:2f:42:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 23 15:56:04 2025 by rpki-client on console.sobornost.net