Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/7vYSmlk2u5zvZg_3ArmbDEY_sNU.roa
File: 7vYSmlk2u5zvZg_3ArmbDEY_sNU.roa (raw, json)
Hash identifier: Jq4Qzcnido1Bc85YICom1I+PBuMze7LAU9Wcp1OqdNY=
Subject key identifier: EE:F6:12:9A:59:36:BB:9C:EF:66:0F:F7:02:B9:9B:0C:46:3F:B0:D5
Certificate issuer: /CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Certificate serial: 01942747A47A20BBCEB3024EC7063580E07A
Authority key identifier: 27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/7vYSmlk2u5zvZg_3ArmbDEY_sNU.roa
Signing time: Thu 02 Jan 2025 13:49:54 +0000
ROA not before: Thu 02 Jan 2025 13:49:54 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 202798
IP address blocks: 2.189.58.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:47:a4:7a:20:bb:ce:b3:02:4e:c7:06:35:80:e0:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Validity
Not Before: Jan 2 13:49:54 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=eef6129a5936bb9cef660ff702b99b0c463fb0d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:8b:cf:e6:5a:33:26:59:b7:dd:8e:e5:6c:01:
4e:2f:d5:e7:c2:89:32:79:bd:75:69:61:f5:df:0e:
3b:8e:b1:6f:7e:1d:d8:cf:b3:60:64:87:aa:f0:2e:
71:0f:d2:a1:d6:3c:9a:48:29:26:59:5f:30:6c:40:
55:de:af:e7:5d:78:96:4a:a5:8e:0a:7d:a0:7a:0c:
1b:89:dc:b5:fe:aa:2a:d0:60:8e:f8:1f:f7:be:1d:
ea:e1:d5:cf:63:a9:c5:49:e3:53:4a:a0:04:14:8c:
48:59:f8:09:69:4a:bd:98:8b:a8:29:ab:78:fe:33:
51:90:5f:1d:68:bc:83:0f:b9:53:a4:56:6b:06:36:
7f:84:cb:ed:8b:f1:4f:19:f7:05:4b:d5:d3:36:63:
ac:dd:0a:99:e2:c1:f4:41:ca:1f:22:e8:bc:99:4a:
15:d2:56:8b:bf:10:9b:7d:bb:3e:7b:80:28:a5:85:
c1:7d:56:b8:64:da:c5:97:00:dd:5b:26:22:68:43:
27:b3:87:ce:12:51:ef:52:cf:a5:9e:f0:cf:57:c5:
73:0f:9c:ea:17:0b:94:e3:de:04:b0:82:4b:51:96:
f2:ee:fd:86:17:70:c7:08:40:df:5d:48:fa:9b:14:
54:76:11:2a:11:d3:55:75:83:ff:b6:05:30:21:91:
55:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:F6:12:9A:59:36:BB:9C:EF:66:0F:F7:02:B9:9B:0C:46:3F:B0:D5
X509v3 Authority Key Identifier:
keyid:27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/7vYSmlk2u5zvZg_3ArmbDEY_sNU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/J6OeR5TDRhLn8iVpsaaoFxAmCuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.189.58.0/24
Signature Algorithm: sha256WithRSAEncryption
38:70:e0:74:17:76:22:15:ed:b9:22:27:95:7d:5a:cd:19:3e:
73:16:70:6f:0b:b3:12:52:01:f8:6f:a8:20:57:ca:f1:cf:b3:
27:ad:8e:d7:15:47:9f:ee:bc:43:4f:6b:27:bc:de:35:45:97:
44:b9:fb:14:f7:36:3a:86:f0:b1:19:bd:28:cb:70:74:ae:9c:
14:a6:09:7b:c4:9a:86:29:6b:88:bb:82:29:20:b6:f9:de:3d:
00:c6:1a:cb:4b:30:d1:06:90:37:1a:37:ea:f5:86:ba:f3:31:
80:f2:97:65:0f:6b:01:f6:cc:f9:bc:2c:07:95:95:58:a0:10:
84:a9:57:59:f2:bb:d5:13:11:71:6e:ea:ff:7d:ee:32:ba:8f:
9c:4e:c3:bb:e2:4d:30:08:ef:85:8e:1f:d1:fb:15:94:d1:c6:
90:33:1b:70:2f:e4:d4:0d:3b:e0:33:1e:3b:1b:65:37:4d:ba:
5c:8d:bd:d2:c4:fa:f0:82:32:88:c2:20:e6:43:37:1f:14:bc:
7f:75:60:87:45:fa:dc:5a:fb:24:a2:87:8d:fa:0e:b8:96:fb:
49:5c:c8:5b:9b:8a:2d:50:03:de:c3:a8:6e:ff:d3:4e:29:52:
87:af:bc:75:14:94:79:4a:f7:80:57:26:70:76:8c:a7:80:52:
6b:0e:90:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:53 2025 by rpki-client on console.sobornost.net