Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/SI6JcMkAdXeahj7NGt32DCzk_N4.roa
File: SI6JcMkAdXeahj7NGt32DCzk_N4.roa (raw, json)
Hash identifier: XmnPzPSkO2n35usGEIRF1Qz4ke4WyZ//abuJ7KDgxxQ=
Subject key identifier: 48:8E:89:70:C9:00:75:77:9A:86:3E:CD:1A:DD:F6:0C:2C:E4:FC:DE
Certificate issuer: /CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Certificate serial: 019427479FD01E568FF1684E8EE3B00B3970
Authority key identifier: 27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/SI6JcMkAdXeahj7NGt32DCzk_N4.roa
Signing time: Thu 02 Jan 2025 13:49:52 +0000
ROA not before: Thu 02 Jan 2025 13:49:52 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 59912
IP address blocks: 2.189.164.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:47:9f:d0:1e:56:8f:f1:68:4e:8e:e3:b0:0b:39:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Validity
Not Before: Jan 2 13:49:52 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=488e8970c90075779a863ecd1addf60c2ce4fcde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:11:b0:8e:1a:28:8e:ee:96:ac:eb:84:eb:7a:
4e:3f:4a:33:ed:0e:2f:94:81:98:04:ec:f1:6c:89:
22:28:71:0b:d0:9e:c1:e4:ec:fc:b9:cc:9e:37:3f:
43:f5:3b:64:9b:e8:84:b6:aa:e4:fa:cf:1c:32:85:
30:91:08:f0:ab:77:c5:ee:5e:81:ff:1c:92:d1:4d:
e3:ef:09:fa:80:59:d2:b1:55:9c:77:c2:b2:e5:73:
d6:6b:0a:57:c0:55:c5:a5:ab:2a:b3:03:99:b5:81:
44:fd:6a:9e:b5:46:00:3f:3c:a0:3a:78:d1:ba:90:
05:9d:81:87:60:c4:4f:3f:d4:e0:9f:20:01:e8:17:
e3:f6:17:51:6e:c9:fb:09:fe:7d:c8:7a:27:fa:6b:
38:7f:7e:6e:34:2d:d9:7d:89:d6:84:30:bc:2f:03:
5a:5b:13:95:40:69:15:a5:21:3e:51:ba:93:20:1a:
37:18:81:9b:09:9d:43:98:de:98:62:58:ea:40:25:
83:7b:90:cc:fa:86:b2:96:45:8d:aa:fe:aa:81:7d:
df:d5:4a:73:87:ed:38:28:dd:12:d1:af:7f:6a:16:
05:08:2d:d5:89:d2:c8:9c:cc:7e:e1:7c:df:5a:b0:
d0:66:a9:b7:27:a4:78:8b:1a:1e:17:3c:15:99:06:
4a:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:8E:89:70:C9:00:75:77:9A:86:3E:CD:1A:DD:F6:0C:2C:E4:FC:DE
X509v3 Authority Key Identifier:
keyid:27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/SI6JcMkAdXeahj7NGt32DCzk_N4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/J6OeR5TDRhLn8iVpsaaoFxAmCuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.189.164.0/23
Signature Algorithm: sha256WithRSAEncryption
76:2c:8b:6b:22:27:27:22:4a:2d:7c:7e:78:3c:68:ed:d0:53:
b0:89:7f:62:72:d7:3e:72:46:77:b9:fb:67:ce:96:30:e4:a5:
c7:90:bb:75:47:18:48:65:98:90:29:1b:84:7f:67:85:a8:7c:
81:27:9a:bd:e0:50:8b:ee:ca:0b:9d:0b:50:11:6e:ef:9d:c9:
37:6e:34:44:7a:0f:10:3d:18:78:35:65:14:f0:ee:39:f6:d4:
0c:56:ca:56:22:31:33:a9:63:c0:82:7c:36:bf:af:bb:61:70:
27:b7:06:ee:57:05:65:6f:e2:34:6a:40:2c:f5:89:96:f2:4a:
25:85:a8:d7:33:60:9f:f2:86:b7:b9:60:2f:5b:56:d4:4b:a3:
db:d4:d2:13:a9:67:c6:37:9f:c0:35:e1:0c:82:bd:62:63:7c:
5f:b9:23:75:39:56:28:26:72:16:a3:d1:fc:9d:d5:5c:c5:ba:
ef:90:89:cc:05:d4:10:99:4f:b8:61:20:c3:54:a5:43:64:59:
b8:eb:3e:5d:fa:5d:1a:b3:6e:ce:84:c5:97:27:4c:85:65:ff:
2a:f6:af:58:19:6a:e5:25:8a:c4:0d:e1:59:db:30:e2:31:6e:
35:f0:2d:9a:45:15:01:81:7a:c1:ed:08:49:79:8f:8d:a6:ae:
ee:48:e1:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:53 2025 by rpki-client on console.sobornost.net