Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/2geX3NsatMmhZ8tPpjkXmvgAi3c.roa
File: 2geX3NsatMmhZ8tPpjkXmvgAi3c.roa (raw, json)
Hash identifier: nk66uPQo1iFsfClydR1H/e1yuHMMYVE2MosZlO7QFGc=
Subject key identifier: DA:07:97:DC:DB:1A:B4:C9:A1:67:CB:4F:A6:39:17:9A:F8:00:8B:77
Certificate issuer: /CN=a4ce9640a3ef2fea19374ad8f99f423d7aa7c76b
Certificate serial: 0194221F89A977A3E50DCFE8EC11CB1F03BA
Authority key identifier: A4:CE:96:40:A3:EF:2F:EA:19:37:4A:D8:F9:9F:42:3D:7A:A7:C7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/2geX3NsatMmhZ8tPpjkXmvgAi3c.roa
Signing time: Wed 01 Jan 2025 13:47:59 +0000
ROA not before: Wed 01 Jan 2025 13:47:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 209588
IP address blocks: 81.19.135.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:89:a9:77:a3:e5:0d:cf:e8:ec:11:cb:1f:03:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4ce9640a3ef2fea19374ad8f99f423d7aa7c76b
Validity
Not Before: Jan 1 13:47:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=da0797dcdb1ab4c9a167cb4fa639179af8008b77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:88:ac:7d:62:79:d5:92:72:9a:78:a3:2a:15:
a1:16:32:e6:5c:d4:e0:0c:fe:6b:5f:8c:df:a0:27:
c3:27:6d:e3:96:b9:e9:bf:6e:f8:42:39:00:4b:b5:
c8:8e:c9:95:59:0c:12:2a:fb:41:d0:2b:77:d9:c3:
83:e8:ca:07:b1:c1:18:04:aa:cf:af:4f:f1:48:91:
d8:b4:dd:80:60:2a:d3:6d:a1:d7:90:d3:c3:36:46:
a4:97:97:9d:0d:f7:68:df:6a:b5:aa:be:e3:2d:ed:
57:2f:84:08:17:36:4e:e2:a0:02:e6:e6:bf:44:a9:
e5:f7:bd:2f:e9:ff:da:05:e2:39:65:66:37:bd:e5:
10:07:18:1c:49:a4:7d:91:fb:f8:9f:b1:75:a3:31:
60:9c:fd:6f:28:6f:e5:ac:44:55:65:56:f0:44:6b:
dc:eb:04:d9:29:d9:cb:2e:d1:8b:d3:e8:32:0e:42:
8c:5a:aa:a8:40:7f:aa:0a:7e:0e:91:3d:d8:bb:ff:
83:70:35:9a:c3:fd:b9:35:0a:d0:12:2d:e0:c3:63:
2f:b3:0a:e0:b4:14:75:dd:b6:c6:96:ae:5f:d9:46:
37:ce:44:4b:09:c3:6d:f3:76:66:74:70:4c:3e:8f:
d0:e5:e5:b0:c9:05:0f:ad:cd:64:27:f7:1f:b2:a8:
d6:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:07:97:DC:DB:1A:B4:C9:A1:67:CB:4F:A6:39:17:9A:F8:00:8B:77
X509v3 Authority Key Identifier:
keyid:A4:CE:96:40:A3:EF:2F:EA:19:37:4A:D8:F9:9F:42:3D:7A:A7:C7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/2geX3NsatMmhZ8tPpjkXmvgAi3c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.135.0/24
Signature Algorithm: sha256WithRSAEncryption
26:16:b7:7b:2e:c3:4c:59:46:e1:ad:43:20:f4:cd:69:33:14:
13:ec:41:3a:37:84:da:77:10:a1:fc:15:ba:e8:e5:04:92:d1:
7c:94:4e:aa:8b:09:c3:d2:09:15:60:f9:75:5b:74:c6:d8:70:
bc:bc:95:37:f8:0c:04:5b:80:70:d3:a5:a3:af:49:5d:3c:74:
6d:58:de:69:cd:20:f2:7f:b6:c0:71:37:04:d4:d1:cf:9c:45:
31:c6:dd:89:b4:c7:c3:f2:09:3c:1f:a0:6e:94:49:e0:a2:a6:
b5:17:1d:e3:d5:6b:2a:ba:e0:dd:40:2b:0d:ac:3d:98:8a:39:
dc:ee:d5:54:7b:2a:28:83:a3:bc:2e:db:5d:03:66:5d:28:87:
4c:21:aa:d4:e7:dc:c1:58:d5:79:96:7d:e9:c5:b0:06:7f:7c:
93:c5:4f:f4:83:0e:87:bb:5f:8e:d6:a5:ad:c5:8a:74:15:b3:
1e:36:f3:7d:74:00:41:b2:25:78:56:f3:6e:c6:bb:a5:6c:9f:
02:4d:16:ef:ff:73:97:c7:49:36:30:f4:fa:76:84:55:98:17:
09:35:72:85:af:e6:cf:ad:c4:07:6f:93:a3:71:aa:df:2e:45:
c8:96:2a:a5:51:ba:fd:f8:8d:49:f8:4e:06:1e:a5:89:c2:7a:
9a:3b:e7:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 23 16:01:46 2025 by rpki-client on console.sobornost.net