Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/47275d-5fa7-4bb2-99eb-1f00737cb2a2/1/irj1HjAurNUv-4zFYoq9zYDgdlE.roa
File: irj1HjAurNUv-4zFYoq9zYDgdlE.roa (raw, json)
Hash identifier: Q709g8riB8kWPE65HcwVtvNF/Lb15QFI8yUUJR0G7Y0=
Subject key identifier: 8A:B8:F5:1E:30:2E:AC:D5:2F:FB:8C:C5:62:8A:BD:CD:80:E0:76:51
Certificate issuer: /CN=9aeafa96c9d563e650ba592ffb06e2ceeb6a0859
Certificate serial: 019420D6099E4AA1339E0001D680079EFEF2
Authority key identifier: 9A:EA:FA:96:C9:D5:63:E6:50:BA:59:2F:FB:06:E2:CE:EB:6A:08:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mur6lsnVY-ZQulkv-wbizutqCFk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/47275d-5fa7-4bb2-99eb-1f00737cb2a2/1/irj1HjAurNUv-4zFYoq9zYDgdlE.roa
Signing time: Wed 01 Jan 2025 07:48:05 +0000
ROA not before: Wed 01 Jan 2025 07:48:05 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 5539
IP address blocks: 195.230.114.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d6:09:9e:4a:a1:33:9e:00:01:d6:80:07:9e:fe:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9aeafa96c9d563e650ba592ffb06e2ceeb6a0859
Validity
Not Before: Jan 1 07:48:05 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8ab8f51e302eacd52ffb8cc5628abdcd80e07651
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:b9:35:24:8e:57:db:6d:67:f3:53:ea:fd:53:
ef:87:fc:e5:7d:7f:f2:f6:97:ae:e1:9f:6a:62:6b:
19:9e:15:2f:f8:79:d2:d6:93:b3:43:c2:18:50:65:
d8:c9:d6:42:99:a8:9d:dd:b9:78:eb:63:f3:72:4c:
69:6a:ef:73:a2:e5:15:1e:71:2d:89:d9:31:bc:80:
64:28:05:26:14:49:07:98:e1:9d:ec:36:35:24:33:
d6:5b:bf:8e:df:a8:46:0b:f2:08:13:8b:0f:53:73:
74:ea:08:5d:a5:ff:1f:de:9e:25:74:fb:1b:e9:26:
80:8e:52:63:3d:74:09:b2:c9:58:9b:c3:51:08:fc:
4c:d7:e5:5c:e8:08:41:25:c2:17:3a:a6:a2:4e:aa:
0f:09:e8:87:f9:bc:8d:2e:65:91:fa:aa:03:a8:32:
f7:93:e9:94:a6:0c:cd:8a:66:42:53:f3:6c:a5:cc:
a6:70:08:e8:72:b3:3d:7f:aa:48:de:78:3b:ec:4a:
6a:3d:ca:a0:78:2c:ec:4d:63:f0:d7:70:d1:78:8a:
d9:d7:74:4e:31:33:ab:95:c6:e9:77:85:87:ae:54:
12:94:d0:d0:2e:d0:85:29:55:73:03:e9:e4:a4:f2:
c8:aa:11:12:4b:66:6a:4c:1c:48:53:c2:2d:43:cd:
db:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:B8:F5:1E:30:2E:AC:D5:2F:FB:8C:C5:62:8A:BD:CD:80:E0:76:51
X509v3 Authority Key Identifier:
keyid:9A:EA:FA:96:C9:D5:63:E6:50:BA:59:2F:FB:06:E2:CE:EB:6A:08:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mur6lsnVY-ZQulkv-wbizutqCFk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/47275d-5fa7-4bb2-99eb-1f00737cb2a2/1/irj1HjAurNUv-4zFYoq9zYDgdlE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/47275d-5fa7-4bb2-99eb-1f00737cb2a2/1/mur6lsnVY-ZQulkv-wbizutqCFk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.230.114.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:6d:15:ea:9c:a9:3b:b0:14:58:e5:55:9f:5e:e8:d6:b6:17:
5f:b5:12:8d:f7:a3:13:c6:66:43:70:4e:03:81:eb:01:1f:0d:
fe:2b:f2:99:3f:1b:bc:45:60:53:62:a5:24:e8:f8:cf:20:c3:
a6:46:6d:39:ef:eb:db:82:1d:ce:83:e3:0c:ef:b1:75:bb:2c:
56:49:36:70:30:7f:7f:80:c1:34:da:d9:eb:3b:54:57:f1:80:
63:ad:fc:6f:25:d0:73:88:6c:76:44:7d:60:b7:96:5f:7a:97:
15:79:ab:25:14:75:ad:d5:18:ef:5d:79:ba:4a:55:7f:b2:d5:
61:8d:fb:d5:bd:e5:8e:ee:f3:d6:6c:e5:44:52:30:3c:90:b6:
58:48:03:2a:28:c5:b3:fe:c8:32:25:a4:cc:2c:87:9a:55:f2:
35:1c:03:b8:97:3c:1f:86:d3:9f:4b:76:48:a7:63:c0:8d:56:
b0:90:46:d0:c5:92:8e:7e:ac:8a:44:ca:43:94:b6:70:9c:4f:
ce:f2:f4:38:e3:b1:77:d2:41:36:39:19:34:c3:75:0a:1d:45:
a0:29:3b:77:6f:55:b8:7e:2b:45:d6:7b:29:d2:9b:6a:1d:db:
83:a4:fd:f9:1f:ab:70:8e:d0:7b:ce:56:c0:e1:6a:51:ee:3d:
49:b6:ad:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:05 2025 by rpki-client on console.sobornost.net