Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/79ebc6-617b-4ea9-b453-4360ee06a22c/1/1-5n0KWaGHCDQYhl2aLfMjhVyMRI.roa
File: 1-5n0KWaGHCDQYhl2aLfMjhVyMRI.roa (raw, json)
Hash identifier: KATmxtMp2ikC0o4XIGyQU9bJkWtT8ILR3+Dm38ZRLnA=
Subject key identifier: FB:99:F4:29:66:86:1C:20:D0:62:19:76:68:B7:CC:8E:15:72:31:12
Certificate issuer: /CN=324b2032c38fb17f42f8832a4c21e1f0d5f19ee0
Certificate serial: 019422FBA9C394C82071E1C761126835C52C
Authority key identifier: 32:4B:20:32:C3:8F:B1:7F:42:F8:83:2A:4C:21:E1:F0:D5:F1:9E:E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MksgMsOPsX9C-IMqTCHh8NXxnuA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/79ebc6-617b-4ea9-b453-4360ee06a22c/1/1-5n0KWaGHCDQYhl2aLfMjhVyMRI.roa
Signing time: Wed 01 Jan 2025 17:48:25 +0000
ROA not before: Wed 01 Jan 2025 17:48:25 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 197205
IP address blocks: 83.150.244.0/22 maxlen: 22
195.66.82.0/24 maxlen: 24
2a09:1f00::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fb:a9:c3:94:c8:20:71:e1:c7:61:12:68:35:c5:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=324b2032c38fb17f42f8832a4c21e1f0d5f19ee0
Validity
Not Before: Jan 1 17:48:25 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=fb99f42966861c20d062197668b7cc8e15723112
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:fd:a2:5b:6e:0c:0d:7d:84:30:1c:e7:e9:ac:
cd:45:3f:43:63:1c:b4:d7:0b:ed:f2:2a:28:89:56:
b5:d9:de:e9:94:c4:ca:94:a0:9d:c3:61:6e:22:1a:
4c:c8:b9:a1:0b:49:ff:75:9c:b6:64:bb:10:4a:78:
40:e0:21:ed:62:89:cd:39:6a:74:23:fd:96:5b:a8:
aa:93:fd:ca:c5:9b:6b:9b:c7:b9:b0:57:dd:a0:74:
7e:2b:14:63:45:b7:aa:0a:35:f5:16:69:fa:e7:c2:
83:40:43:5b:21:8d:74:18:70:2e:a6:19:da:da:09:
b1:4e:57:69:d1:9c:25:ca:d3:9e:46:6e:c3:a4:99:
70:7e:53:f6:1b:02:d2:ae:38:ef:ee:8b:47:76:ec:
0b:7a:5c:a5:e6:8a:d3:47:1d:cd:76:ea:7a:78:b8:
15:a1:6d:69:86:b6:cb:27:a6:bd:1b:46:8c:ca:7e:
0c:18:2a:c1:89:ce:62:50:69:44:bf:76:0a:12:4a:
60:df:19:4a:d4:52:7b:30:61:1c:c6:85:be:29:6c:
82:dd:5c:a0:cd:a7:40:1f:59:45:fe:ff:24:2f:71:
f6:31:21:93:43:5d:23:fe:6e:5b:2e:3c:7c:09:5a:
24:56:25:d7:37:a5:d8:56:a2:e3:9f:9d:ff:e2:af:
70:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:99:F4:29:66:86:1C:20:D0:62:19:76:68:B7:CC:8E:15:72:31:12
X509v3 Authority Key Identifier:
keyid:32:4B:20:32:C3:8F:B1:7F:42:F8:83:2A:4C:21:E1:F0:D5:F1:9E:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MksgMsOPsX9C-IMqTCHh8NXxnuA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/79ebc6-617b-4ea9-b453-4360ee06a22c/1/1-5n0KWaGHCDQYhl2aLfMjhVyMRI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/79ebc6-617b-4ea9-b453-4360ee06a22c/1/MksgMsOPsX9C-IMqTCHh8NXxnuA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.150.244.0/22
195.66.82.0/24
IPv6:
2a09:1f00::/29
Signature Algorithm: sha256WithRSAEncryption
0f:e0:8b:8e:67:fb:ab:65:3a:c2:00:78:b8:01:c7:44:24:c5:
77:1a:e5:4e:c2:e8:c2:c2:81:fa:d2:f3:3c:a4:64:11:2e:ff:
ac:a2:80:c1:ff:75:2d:fe:3c:06:07:bc:a8:27:dd:85:10:7a:
6a:40:c4:4a:3b:7e:63:5d:e7:b5:86:21:42:c7:ab:59:7e:de:
f7:89:c7:54:3d:63:e0:95:2d:e6:68:d1:2b:e8:7d:5c:ea:bc:
18:0d:41:31:51:1d:d6:bd:2d:fd:d4:f3:b8:38:6a:7a:be:3c:
a2:d0:80:8e:d8:3d:3f:29:4d:2c:a8:03:73:f7:e6:9d:b0:49:
57:69:76:11:d7:96:ae:da:42:da:67:c0:65:ab:1d:ac:1f:70:
8f:7d:e5:b4:0c:6a:36:8f:ae:f6:20:fb:0b:f2:b2:b1:28:40:
6b:a5:ae:ad:9e:1f:59:91:5a:ac:91:51:bb:63:9c:d6:f5:b4:
8c:7a:db:75:06:1e:1a:a2:30:ab:d9:53:49:a5:84:31:ef:1a:
2e:cd:0a:d1:29:5f:6e:f6:2d:ba:d7:59:51:78:05:85:6d:f9:
e3:94:20:a7:dc:2e:57:e3:60:f1:8c:59:d7:3b:48:ab:68:72:
73:46:bc:e4:78:2d:4e:72:f5:b7:89:20:a5:a7:45:c6:51:31:
74:af:25:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:35 2025 by rpki-client on console.sobornost.net