Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/2f1207-ea0a-4507-9a54-94ef19707382/1/aiBcm3D6wHHlC6vHB-exsaM_690.roa
File: aiBcm3D6wHHlC6vHB-exsaM_690.roa (raw, json)
Hash identifier: LAnxiJTfEjvrFFWLDvGVFBVlcyz2HNW6k9eA095nvFU=
Subject key identifier: 6A:20:5C:9B:70:FA:C0:71:E5:0B:AB:C7:07:E7:B1:B1:A3:3F:EB:DD
Certificate issuer: /CN=ad4f879f3f97ad8cd73193d8069e49b01b6baddd
Certificate serial: 01942D01FDA478766A72968FD5F524647599
Authority key identifier: AD:4F:87:9F:3F:97:AD:8C:D7:31:93:D8:06:9E:49:B0:1B:6B:AD:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rU-Hnz-XrYzXMZPYBp5JsBtrrd0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/2f1207-ea0a-4507-9a54-94ef19707382/1/aiBcm3D6wHHlC6vHB-exsaM_690.roa
Signing time: Fri 03 Jan 2025 16:31:32 +0000
ROA not before: Fri 03 Jan 2025 16:31:32 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 20648
IP address blocks: 194.164.218.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:2d:01:fd:a4:78:76:6a:72:96:8f:d5:f5:24:64:75:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad4f879f3f97ad8cd73193d8069e49b01b6baddd
Validity
Not Before: Jan 3 16:31:32 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6a205c9b70fac071e50babc707e7b1b1a33febdd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:a8:9c:55:ed:3a:ec:4d:31:f5:08:df:97:df:
17:0e:06:23:58:af:7e:30:d5:8b:aa:40:96:07:d6:
e9:6a:b6:0a:f3:98:8a:ca:ce:81:6b:e5:9c:e4:52:
59:08:c9:65:6b:84:39:84:98:c3:28:9d:4e:b2:94:
0b:25:f5:25:79:d3:d4:7e:76:0c:4a:79:53:34:dc:
84:fa:2f:87:39:08:e4:97:11:48:02:25:05:0c:6a:
b6:7a:67:2b:fd:4a:51:aa:88:a3:80:14:16:fb:14:
65:5a:95:3b:e1:0d:6e:05:b3:65:2e:2f:67:2c:c8:
00:ba:bc:b4:e0:ea:0b:91:42:3d:4a:77:0b:7f:d7:
5a:de:55:72:34:58:e5:2a:41:25:b8:ce:e7:d7:c4:
50:8d:6d:78:04:4f:e4:10:5a:4d:2e:99:60:b3:19:
03:88:e9:df:52:6d:a3:e2:9e:4e:7b:89:1a:33:87:
ae:f0:bd:42:70:c1:6f:b8:c3:90:08:5d:d7:49:fa:
05:29:1c:02:2b:51:46:f4:f2:22:1a:88:01:8a:bc:
a4:47:f9:e1:ad:f2:09:8d:aa:5a:7e:52:de:3b:e4:
01:7f:65:4b:91:57:f3:12:1e:b1:8c:b8:31:07:d4:
20:ff:f2:59:5d:34:c1:9f:03:88:4c:9e:fa:2a:d5:
6e:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:20:5C:9B:70:FA:C0:71:E5:0B:AB:C7:07:E7:B1:B1:A3:3F:EB:DD
X509v3 Authority Key Identifier:
keyid:AD:4F:87:9F:3F:97:AD:8C:D7:31:93:D8:06:9E:49:B0:1B:6B:AD:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rU-Hnz-XrYzXMZPYBp5JsBtrrd0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/2f1207-ea0a-4507-9a54-94ef19707382/1/aiBcm3D6wHHlC6vHB-exsaM_690.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/2f1207-ea0a-4507-9a54-94ef19707382/1/rU-Hnz-XrYzXMZPYBp5JsBtrrd0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.164.218.0/24
Signature Algorithm: sha256WithRSAEncryption
32:3c:a0:b4:cb:14:ee:cd:72:7d:28:97:b9:50:07:ca:a5:6f:
9a:03:d9:e8:bd:45:07:f0:5a:a1:0e:28:39:58:1c:85:b7:48:
2b:24:b8:67:f4:1a:bf:1a:8c:2a:fc:a5:54:36:4b:12:91:7c:
76:36:02:c5:48:42:f2:98:e6:e7:43:1c:37:91:c1:33:5c:a5:
82:24:14:33:85:15:54:a2:d4:21:81:35:fa:e4:3c:dd:c1:6f:
74:d1:ac:17:ef:b3:d2:0a:e7:ba:8e:36:58:d7:4d:d9:f3:bd:
7e:87:b1:05:0f:75:99:44:da:d9:6f:61:3b:12:78:b5:ba:8b:
73:5b:e7:79:f6:3a:c4:2a:58:cf:a5:17:a1:65:78:e6:02:1e:
53:40:8f:0f:05:63:c2:2a:05:73:5f:6a:bd:b7:1b:9a:04:a0:
3d:3f:d2:75:b8:4f:53:7c:ce:95:fd:df:b0:64:a1:3f:cb:e0:
88:5e:2f:b3:94:9c:66:5d:12:55:06:5b:24:77:90:1d:ca:c8:
53:33:0b:ac:cb:bd:86:30:1a:7d:c1:60:f4:ac:52:16:e8:d7:
f9:82:6f:d2:f9:3c:a0:1b:d5:e8:5c:ff:9e:4e:93:51:70:6c:
2b:00:76:a5:de:10:1b:b9:72:2b:8e:8e:32:98:0a:f5:a8:7d:
cc:30:d4:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 21 15:03:00 2025 by rpki-client on console.sobornost.net