Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/33d226-7c43-4c83-94ad-218289d81c53/1/P1m93kQnbl9hCPZ7gjvBSz2QduY.roa
File: P1m93kQnbl9hCPZ7gjvBSz2QduY.roa (raw, json)
Hash identifier: Vw3jwkUFPb+4FTO/pTKFTwQSjK1reP+BMicWKiuZXfs=
Subject key identifier: 3F:59:BD:DE:44:27:6E:5F:61:08:F6:7B:82:3B:C1:4B:3D:90:76:E6
Certificate issuer: /CN=8a698a14fb61a687af0a63f7c655c001f6701282
Certificate serial: 019424B28A230D29849A2AB4C3BD088DB453
Authority key identifier: 8A:69:8A:14:FB:61:A6:87:AF:0A:63:F7:C6:55:C0:01:F6:70:12:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/immKFPthpoevCmP3xlXAAfZwEoI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/33d226-7c43-4c83-94ad-218289d81c53/1/P1m93kQnbl9hCPZ7gjvBSz2QduY.roa
Signing time: Thu 02 Jan 2025 01:47:48 +0000
ROA not before: Thu 02 Jan 2025 01:47:48 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 34730
IP address blocks: 195.238.245.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b2:8a:23:0d:29:84:9a:2a:b4:c3:bd:08:8d:b4:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a698a14fb61a687af0a63f7c655c001f6701282
Validity
Not Before: Jan 2 01:47:48 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3f59bdde44276e5f6108f67b823bc14b3d9076e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:31:12:10:f6:84:c9:fb:89:7f:58:14:42:23:
88:7b:a8:5b:98:5b:62:27:cd:43:15:ab:0a:20:be:
d5:1b:5d:63:94:44:c8:91:c5:66:09:7b:c8:cd:d0:
05:ea:c7:b4:ac:6e:bf:42:7d:b9:29:f1:8a:14:1b:
6e:de:f0:49:fd:13:57:10:29:b8:3a:58:ca:a7:39:
db:92:b5:57:0f:21:1c:3a:30:80:fd:88:ea:fe:19:
47:7d:88:30:b5:bf:13:22:30:88:df:bb:74:30:75:
95:fb:46:d6:c4:dc:f8:ba:3a:aa:46:8a:60:c9:c3:
5d:00:78:2c:4c:dd:c0:ba:60:a7:43:c7:e9:56:b4:
70:4f:9f:fb:38:55:cd:1f:42:c4:29:36:a2:08:3b:
d5:d0:6b:47:1a:22:4d:2c:ea:33:73:2e:a8:42:71:
0e:53:36:7f:72:6c:d6:ec:05:22:5a:0d:f2:9d:63:
f9:8e:ec:b6:c2:07:18:87:44:9b:89:1f:b0:f7:4d:
da:14:ab:63:10:bd:33:9c:ac:b3:a4:e8:49:db:92:
87:10:ba:64:b2:da:bf:40:50:3a:e0:f5:cb:dc:ce:
95:ed:ac:f0:9b:40:19:70:94:00:7d:5d:fe:88:46:
74:37:8f:f4:61:77:84:08:30:54:fb:57:14:b5:54:
bd:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:59:BD:DE:44:27:6E:5F:61:08:F6:7B:82:3B:C1:4B:3D:90:76:E6
X509v3 Authority Key Identifier:
keyid:8A:69:8A:14:FB:61:A6:87:AF:0A:63:F7:C6:55:C0:01:F6:70:12:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/immKFPthpoevCmP3xlXAAfZwEoI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/33d226-7c43-4c83-94ad-218289d81c53/1/P1m93kQnbl9hCPZ7gjvBSz2QduY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/33d226-7c43-4c83-94ad-218289d81c53/1/immKFPthpoevCmP3xlXAAfZwEoI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.238.245.0/24
Signature Algorithm: sha256WithRSAEncryption
29:21:46:c0:0b:f6:72:be:93:2d:cf:35:d1:7a:da:cc:12:56:
ee:58:41:c3:5a:ac:58:4b:7c:37:e3:1c:83:f1:48:36:a9:93:
72:5b:a0:14:89:19:ea:e0:99:e5:53:8a:69:b0:1e:8c:2d:3d:
1e:2b:ea:fe:5f:9d:f0:79:54:e1:42:d6:81:5d:b8:28:dd:98:
bc:ec:30:59:f8:7d:1a:a2:59:b2:c0:c5:2e:db:12:8f:08:dc:
43:84:cb:a0:70:39:bb:50:f9:4b:5c:28:1c:ec:4b:d0:fe:de:
87:2f:54:89:c7:fb:67:f5:55:1c:b9:33:86:fd:95:97:5a:81:
0a:5d:ff:ae:c0:4a:8c:72:da:7e:80:f8:a3:b5:39:54:e4:07:
d6:3f:91:3f:88:54:ea:5c:ea:35:ab:84:69:15:96:e0:ff:c8:
64:90:d2:81:77:b7:e3:a5:c3:e3:6a:ae:9c:83:d2:9c:29:fa:
63:aa:6b:78:cd:8e:e2:da:97:20:0a:2e:88:a2:42:89:bb:53:
e6:fd:64:f2:6e:20:11:14:c6:6d:00:1a:64:07:ed:75:ed:a0:
5b:9c:8a:73:cf:e6:2f:2f:87:19:e1:2d:04:6d:ae:27:fb:64:
01:d0:e9:29:33:8d:d5:e6:d2:15:83:b1:e9:ea:df:ef:7d:30:
4f:4c:d5:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:06 2025 by rpki-client on console.sobornost.net