Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/f3c3b2-b64a-49e1-9a48-c93989cc9b67/1/JdnQsGvdkhLMYKHimmIYbcmtu_4.roa
File: JdnQsGvdkhLMYKHimmIYbcmtu_4.roa (raw, json)
Hash identifier: XQ8/SW7MphrctHqH7PZ0NzqyE28ii273Q0FygBQXgEo=
Subject key identifier: 25:D9:D0:B0:6B:DD:92:12:CC:60:A1:E2:9A:62:18:6D:C9:AD:BB:FE
Certificate issuer: /CN=5730a32f316246ce0b147bb895e8cdf0aed43ed6
Certificate serial: 019424B2C316E50086083A3B1A7B2EB9F839
Authority key identifier: 57:30:A3:2F:31:62:46:CE:0B:14:7B:B8:95:E8:CD:F0:AE:D4:3E:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VzCjLzFiRs4LFHu4lejN8K7UPtY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/f3c3b2-b64a-49e1-9a48-c93989cc9b67/1/JdnQsGvdkhLMYKHimmIYbcmtu_4.roa
Signing time: Thu 02 Jan 2025 01:48:02 +0000
ROA not before: Thu 02 Jan 2025 01:48:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 61006
IP address blocks: 93.188.88.0/21 maxlen: 21
2a01:9b00::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b2:c3:16:e5:00:86:08:3a:3b:1a:7b:2e:b9:f8:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5730a32f316246ce0b147bb895e8cdf0aed43ed6
Validity
Not Before: Jan 2 01:48:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=25d9d0b06bdd9212cc60a1e29a62186dc9adbbfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:e9:33:d5:d6:41:8d:02:0b:3d:78:27:cb:c2:
05:9d:70:a7:7f:0d:84:d8:4a:6e:ad:46:bf:5a:40:
d4:59:0d:14:cc:f6:4d:f6:8e:33:db:fc:2c:04:e5:
29:82:aa:af:e4:c5:b6:1a:92:e0:af:79:89:1d:c4:
fd:4f:5e:67:d2:ba:9d:8c:7a:a5:70:b4:dc:d5:86:
27:25:76:5c:7b:a5:59:7f:88:5c:8d:08:c3:76:bc:
79:55:ed:9a:6b:ab:64:1f:e9:f0:50:68:29:c2:48:
67:01:0d:97:10:fa:b7:21:93:9b:9a:fd:a0:25:2c:
d6:d6:f7:f2:16:bd:e5:15:31:a4:a5:a0:12:15:15:
e2:55:87:9f:4a:78:09:22:0a:cd:84:44:27:49:ed:
9c:dc:f6:8d:93:7e:29:d2:79:d0:3f:f2:bc:90:c6:
92:65:b6:46:e9:dd:af:11:15:77:63:f2:0d:29:ea:
28:a1:05:94:5c:92:63:a1:37:28:de:bb:61:4b:1a:
64:62:aa:08:34:be:15:6d:d4:a1:85:06:89:08:76:
fa:42:4e:7a:b3:0c:a0:f6:81:eb:ed:27:7b:c4:a7:
75:23:cf:7d:93:ee:61:e6:b4:17:59:16:29:b5:97:
93:e9:10:8a:0e:82:68:b2:ea:21:67:ff:f5:d1:7b:
b2:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:D9:D0:B0:6B:DD:92:12:CC:60:A1:E2:9A:62:18:6D:C9:AD:BB:FE
X509v3 Authority Key Identifier:
keyid:57:30:A3:2F:31:62:46:CE:0B:14:7B:B8:95:E8:CD:F0:AE:D4:3E:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VzCjLzFiRs4LFHu4lejN8K7UPtY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/f3c3b2-b64a-49e1-9a48-c93989cc9b67/1/JdnQsGvdkhLMYKHimmIYbcmtu_4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/f3c3b2-b64a-49e1-9a48-c93989cc9b67/1/VzCjLzFiRs4LFHu4lejN8K7UPtY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.188.88.0/21
IPv6:
2a01:9b00::/32
Signature Algorithm: sha256WithRSAEncryption
06:bc:0d:7e:83:f0:40:56:43:47:73:cd:9f:45:af:5e:77:6c:
c8:72:4d:5c:d8:2e:7d:4c:fc:be:92:ed:90:4a:94:ca:15:84:
d3:8e:dd:07:dc:71:07:e0:51:9f:af:01:d0:23:5c:0f:b5:61:
35:46:9a:51:41:dc:7b:9e:c4:c1:95:bd:0b:03:d0:48:d9:67:
8a:43:27:87:7d:01:2b:db:72:23:aa:92:7a:55:72:64:8e:48:
e3:87:ed:65:4c:8a:7e:c4:ee:57:a3:5e:96:a0:48:fe:d5:40:
3a:a4:fe:a1:cf:8c:b6:40:53:50:c9:77:e5:ac:27:c1:b8:d8:
70:ea:b6:44:d5:c7:14:9a:53:c0:ae:33:da:bf:0b:2b:9d:62:
96:d9:06:cf:00:84:32:da:84:23:4c:f9:c7:a0:b2:47:75:58:
4a:26:27:d0:b5:2d:dc:71:77:c4:71:94:54:85:e0:f3:36:4a:
ca:61:17:5d:ff:82:f5:25:eb:1f:17:86:93:5a:89:20:df:a3:
f3:52:b2:c8:7c:fa:64:48:3e:37:4e:65:08:4c:79:21:40:3e:
36:b7:e1:a3:65:e8:5d:bd:ef:d6:27:eb:e4:3b:17:f6:28:de:
7f:d8:4d:e0:3a:18:58:1a:8b:74:b4:b6:4e:4c:1c:59:fa:83:
93:c1:cb:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:52 2025 by rpki-client on console.sobornost.net