Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/072105-49ef-4903-9695-eeb865d10dba/1/uYmDkNSOTpoFpFn87a-aXY254ZI.roa
File: uYmDkNSOTpoFpFn87a-aXY254ZI.roa (raw, json)
Hash identifier: f1Ff5ggY03B285EwxB+EjeSorrx1qWrOpvl1cl092pQ=
Subject key identifier: B9:89:83:90:D4:8E:4E:9A:05:A4:59:FC:ED:AF:9A:5D:8D:B9:E1:92
Certificate issuer: /CN=f050147ee9f62f970423cbd8b6d52ea5f4a0eda5
Certificate serial: 0195C78D226FB0AFA21193210713E12709D3
Authority key identifier: F0:50:14:7E:E9:F6:2F:97:04:23:CB:D8:B6:D5:2E:A5:F4:A0:ED:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8FAUfun2L5cEI8vYttUupfSg7aU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/072105-49ef-4903-9695-eeb865d10dba/1/uYmDkNSOTpoFpFn87a-aXY254ZI.roa
Signing time: Mon 24 Mar 2025 09:47:50 +0000
ROA not before: Mon 24 Mar 2025 09:47:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 51401
IP address blocks: 193.28.72.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:c7:8d:22:6f:b0:af:a2:11:93:21:07:13:e1:27:09:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f050147ee9f62f970423cbd8b6d52ea5f4a0eda5
Validity
Not Before: Mar 24 09:47:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b9898390d48e4e9a05a459fcedaf9a5d8db9e192
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:2d:80:c6:60:97:a3:ba:26:9e:8a:58:0b:ec:
e1:05:66:3a:33:f6:3f:97:6d:34:fe:7c:85:85:26:
73:50:66:ea:cf:37:76:d0:45:2b:04:8c:60:81:4e:
f5:9b:3e:90:b1:91:18:6b:95:ca:98:ba:d9:9d:d0:
34:08:4e:c8:37:37:f4:61:6a:a7:23:55:7f:c2:1b:
81:fd:66:6f:bf:dd:0d:9c:6a:1a:0d:04:cc:41:c3:
86:d1:55:a3:dc:ea:d6:49:00:99:7c:ca:59:8d:4e:
46:4f:44:4e:7e:f8:83:eb:f4:25:0b:08:bb:d6:a8:
ce:6f:c2:06:37:d2:56:37:7f:a1:f8:ac:c5:3e:52:
06:65:91:ec:d0:f0:f5:66:ff:f4:70:f0:a9:94:c2:
bf:cd:cd:2f:4c:da:97:d5:6d:65:9d:a9:f3:fc:1c:
7d:e1:21:aa:6c:05:f9:6d:a0:1d:93:cb:79:21:90:
fe:d6:c0:aa:09:dd:f4:5c:07:76:a0:b6:08:5e:b5:
d1:a4:42:e3:8f:1a:47:04:cc:97:e0:4c:f3:51:63:
80:6d:b0:17:c1:ae:72:2c:34:31:53:c3:9f:1a:d7:
f8:aa:2e:8d:ff:a3:09:00:6f:e7:ef:ac:42:f4:26:
ff:93:f4:4e:6a:2b:68:ed:16:ac:88:93:cf:e0:8e:
40:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:89:83:90:D4:8E:4E:9A:05:A4:59:FC:ED:AF:9A:5D:8D:B9:E1:92
X509v3 Authority Key Identifier:
keyid:F0:50:14:7E:E9:F6:2F:97:04:23:CB:D8:B6:D5:2E:A5:F4:A0:ED:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8FAUfun2L5cEI8vYttUupfSg7aU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/072105-49ef-4903-9695-eeb865d10dba/1/uYmDkNSOTpoFpFn87a-aXY254ZI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/072105-49ef-4903-9695-eeb865d10dba/1/8FAUfun2L5cEI8vYttUupfSg7aU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.28.72.0/21
Signature Algorithm: sha256WithRSAEncryption
75:2c:50:dd:f5:8c:d7:6c:cd:ad:20:f4:d0:d9:4e:1f:c9:92:
a4:12:12:45:a1:fa:83:ec:94:3b:14:3e:de:a4:c9:10:5b:14:
28:e1:75:4a:56:7e:79:c9:b3:57:84:08:67:d6:a8:cc:42:d4:
c0:a8:35:23:be:84:fe:19:6c:7a:23:74:3e:2e:c4:17:ac:d3:
05:08:08:71:3d:e5:c8:62:45:42:18:16:a2:b3:70:ed:8b:08:
99:55:a1:48:e5:c4:e3:19:7d:7f:1b:6b:f5:d5:21:a6:92:bf:
d5:b5:d3:66:c5:0a:7b:c3:e1:6f:5c:18:bc:de:22:bc:8b:0b:
66:ba:77:78:38:95:a5:f9:9f:c9:fb:11:b8:9d:a7:a3:3c:50:
3e:e1:1c:fe:6d:61:11:0f:2f:7d:d8:1d:c1:74:32:17:5f:e9:
ca:fb:af:18:fb:31:9e:42:80:bb:bd:c7:52:65:fe:b1:42:38:
dc:66:2e:15:dd:82:01:4a:f2:78:72:86:86:4c:12:17:5d:ba:
7d:b7:ef:e4:54:d1:30:c6:7a:08:54:25:e5:60:ca:ab:aa:48:
02:1c:10:d2:3d:55:80:e3:0a:6f:f5:b9:cb:04:2d:45:86:93:
c7:b2:8b:3c:7e:01:6f:1d:00:0a:96:6b:a0:11:41:97:7c:17:
b7:1b:e0:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:40 2025 by rpki-client on console.sobornost.net