Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/b3rqS0EvC_jCScFYa9awhxbd7Ds.roa
File: b3rqS0EvC_jCScFYa9awhxbd7Ds.roa (raw, json)
Hash identifier: P5eAx4XTDQmXmYUIP8AvOUJrnmOTb9u5r3mYb+hm6cY=
Subject key identifier: 6F:7A:EA:4B:41:2F:0B:F8:C2:49:C1:58:6B:D6:B0:87:16:DD:EC:3B
Certificate issuer: /CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Certificate serial: 01960F7ECAB272EB47E3889B691666D9E583
Authority key identifier: 17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/b3rqS0EvC_jCScFYa9awhxbd7Ds.roa
Signing time: Mon 07 Apr 2025 09:04:49 +0000
ROA not before: Mon 07 Apr 2025 09:04:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 30860
IP address blocks: 194.120.144.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:0f:7e:ca:b2:72:eb:47:e3:88:9b:69:16:66:d9:e5:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Validity
Not Before: Apr 7 09:04:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6f7aea4b412f0bf8c249c1586bd6b08716ddec3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:e0:9a:99:3d:d8:0b:ec:af:6e:a8:b5:60:7d:
fe:ac:19:78:ea:82:41:9c:79:34:bf:21:8c:5d:91:
04:2b:96:44:7b:aa:8f:bf:bb:ed:01:95:0c:61:f5:
32:9a:17:6a:a5:92:7c:60:4a:59:d8:da:5d:ce:f4:
9f:5c:ae:ea:82:ca:5e:a2:28:eb:bc:3b:c0:22:de:
32:7b:9e:28:c5:0f:11:09:df:d2:35:36:5a:8d:ac:
0e:c3:9b:c3:7c:11:5f:29:47:a1:78:49:cd:4f:a5:
f4:61:f6:fd:ee:6d:9d:9c:2b:d2:e8:61:f1:56:ed:
cf:46:7e:ab:85:41:1a:e3:32:2e:2b:d2:03:51:19:
41:82:2b:df:85:25:3b:18:bd:fa:fa:b7:47:7f:0a:
66:79:ce:7f:ee:f9:4f:47:a3:03:02:f3:de:cc:1f:
02:7f:26:e8:8b:45:39:a4:05:f7:8c:6f:d8:28:ae:
fb:9a:78:ee:d1:24:5b:8b:a4:25:72:f6:47:5e:b4:
90:91:26:7a:46:4b:46:31:73:10:84:4e:9c:00:34:
f5:af:c2:a7:e6:37:45:a6:c6:bd:e6:b8:0e:30:ba:
ca:09:2b:8f:c1:e5:ad:dd:25:8f:db:42:13:be:60:
a0:30:ac:b4:bb:d1:01:7c:ef:ab:88:67:9d:22:cd:
7c:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:7A:EA:4B:41:2F:0B:F8:C2:49:C1:58:6B:D6:B0:87:16:DD:EC:3B
X509v3 Authority Key Identifier:
keyid:17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/b3rqS0EvC_jCScFYa9awhxbd7Ds.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.120.144.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:d3:b4:31:1c:00:c2:1d:dd:3c:e1:9e:8d:6f:39:5d:18:c0:
9b:14:42:d4:62:8e:a3:6d:7e:dd:db:ca:39:66:bb:56:47:bf:
6e:1e:ce:cf:56:15:3b:54:c0:70:c4:34:16:f3:7c:93:3f:c6:
92:d9:7a:4f:66:a7:f0:47:ad:68:43:4a:dd:9d:6d:90:0e:bb:
1c:90:5b:66:9f:7e:2f:10:ca:aa:db:32:33:d3:7b:9c:f4:99:
80:07:c2:63:68:b6:33:5e:e0:90:ea:6c:8b:6e:1b:f4:ef:f5:
03:9b:6c:5c:e7:d1:dd:b1:97:30:5d:7d:2f:d3:5d:0d:52:da:
ed:e2:25:19:b6:13:af:9c:0e:63:4b:e2:74:d1:38:bf:60:3e:
33:cc:1f:27:d0:99:b5:13:b2:ca:44:bf:d4:ee:82:69:14:91:
6c:16:e1:d7:f7:57:4a:dc:e3:74:9e:99:67:a4:96:25:bc:46:
32:37:87:3e:02:93:6f:22:f9:d3:e6:b6:c3:1c:dc:31:57:cf:
ba:12:0b:5e:69:64:02:e5:cd:92:06:a8:b6:98:f1:76:f5:54:
0c:f7:9a:ef:f5:0f:a3:61:26:2b:78:0b:da:53:c8:ad:f4:65:
1b:50:8f:0e:31:1a:a0:80:41:83:b1:c7:ee:12:89:01:7b:80:
a4:93:52:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:53 2025 by rpki-client on console.sobornost.net