Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/201763-176c-4e78-9bc0-496f30ac5275/1/1b_wV0k49kuwRrhHplXiK2XiroA.roa
File: 1b_wV0k49kuwRrhHplXiK2XiroA.roa (raw, json)
Hash identifier: RH2MIMTVkHxoiPuLQAUrE2Rqg6UxaLBroHReV0YDdhs=
Subject key identifier: D5:BF:F0:57:49:38:F6:4B:B0:46:B8:47:A6:55:E2:2B:65:E2:AE:80
Certificate issuer: /CN=88652fe652966d728a527aee6e43c485c6939f45
Certificate serial: 019424B3F9773100AB3F31E56A6AD4732F3A
Authority key identifier: 88:65:2F:E6:52:96:6D:72:8A:52:7A:EE:6E:43:C4:85:C6:93:9F:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iGUv5lKWbXKKUnrubkPEhcaTn0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/201763-176c-4e78-9bc0-496f30ac5275/1/1b_wV0k49kuwRrhHplXiK2XiroA.roa
Signing time: Thu 02 Jan 2025 01:49:22 +0000
ROA not before: Thu 02 Jan 2025 01:49:22 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 29663
IP address blocks: 195.149.112.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:f9:77:31:00:ab:3f:31:e5:6a:6a:d4:73:2f:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88652fe652966d728a527aee6e43c485c6939f45
Validity
Not Before: Jan 2 01:49:22 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d5bff0574938f64bb046b847a655e22b65e2ae80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:f5:d6:b6:85:e5:fc:e7:84:14:b3:e0:37:b2:
b6:4d:06:75:b5:81:8c:66:43:04:88:66:f1:3a:1c:
31:fa:60:19:1d:a6:df:c7:06:5d:15:5e:ae:5d:6a:
2d:bc:74:43:52:ce:08:57:2b:fe:5d:b3:19:9f:f9:
9e:fa:a9:84:92:3c:91:02:80:aa:6e:14:0b:b7:b3:
91:4a:ac:41:2b:bd:31:0f:2b:09:28:22:fa:ee:44:
83:1e:53:2c:9c:d6:c8:71:90:fd:12:1a:51:c2:71:
89:8e:33:54:e6:6a:cb:d7:93:70:82:c2:d3:2d:5d:
62:34:03:4b:f0:12:78:54:fd:6e:d7:c3:8c:39:72:
4e:21:b2:53:7a:14:bb:4e:85:35:b9:0b:eb:29:62:
4c:5a:28:40:88:c7:3f:25:a4:75:1a:2c:32:7c:e6:
21:59:55:f7:42:60:1f:ce:2e:f3:bb:05:6e:00:da:
57:d3:60:19:95:cd:c0:03:73:7d:e8:b3:f8:69:fe:
7b:a6:54:c5:ec:db:fc:91:ce:66:b8:09:aa:7d:42:
9b:4c:a6:5d:4e:27:e1:e7:9e:c3:99:87:2c:b3:72:
36:80:48:3b:9d:e3:84:e1:68:a4:81:9f:b0:cc:6a:
b0:a5:e1:ba:16:b6:82:9b:75:5d:4d:dd:39:ba:5e:
fa:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:BF:F0:57:49:38:F6:4B:B0:46:B8:47:A6:55:E2:2B:65:E2:AE:80
X509v3 Authority Key Identifier:
keyid:88:65:2F:E6:52:96:6D:72:8A:52:7A:EE:6E:43:C4:85:C6:93:9F:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iGUv5lKWbXKKUnrubkPEhcaTn0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/201763-176c-4e78-9bc0-496f30ac5275/1/1b_wV0k49kuwRrhHplXiK2XiroA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/201763-176c-4e78-9bc0-496f30ac5275/1/iGUv5lKWbXKKUnrubkPEhcaTn0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.149.112.0/24
Signature Algorithm: sha256WithRSAEncryption
41:dc:77:c1:46:dd:e3:66:83:44:7f:ac:90:5c:5b:1f:84:e9:
ed:31:20:7c:e6:ee:09:40:3d:09:bb:51:f4:93:94:1b:9d:c8:
c2:5d:5b:30:96:c1:68:c8:3a:bc:90:c7:60:df:d3:45:af:ef:
4d:bc:08:a0:7d:5c:dd:77:b8:8b:52:7e:9a:de:e0:32:b9:a8:
84:a9:b2:39:6a:b2:26:64:5f:6d:db:77:41:79:b8:de:fd:d7:
15:b8:7c:f8:18:05:57:c8:0e:3d:c1:72:1c:97:fa:a2:d0:ee:
2f:35:df:82:6f:4b:6a:e5:9c:ef:80:cb:cb:f4:aa:4f:97:46:
bf:c2:f3:17:fe:b7:06:48:0b:ab:13:0c:cb:56:08:50:77:9e:
11:24:44:c5:04:f3:17:4e:ed:15:74:ad:97:ab:89:7d:49:8e:
cd:fb:4c:65:a1:87:d5:4e:46:18:5b:b8:94:b9:eb:0f:70:b5:
c0:61:7c:0b:93:c7:e9:cc:4a:21:fd:71:a6:e3:07:16:25:27:
4e:4a:53:39:01:75:a0:00:77:be:93:c1:90:c3:5c:d2:0f:fc:
30:2a:61:ad:ed:c0:ce:3c:cb:04:da:0d:76:09:fe:b3:38:31:
f6:20:f9:92:e4:22:40:3e:ac:af:0e:b2:c7:ff:de:f9:8d:69:
8e:a2:e9:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:40 2025 by rpki-client on console.sobornost.net