Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/3c0785-b273-4072-a635-d2cd26b69df1/1/RB-kmvtWIZxfX4s_GWqpUMWBav8.roa
File: RB-kmvtWIZxfX4s_GWqpUMWBav8.roa (raw, json)
Hash identifier: mz77dGj7KT4Y12imMMdj/cXmV+eNEz+qEQ+Q1rCDxAw=
Subject key identifier: 44:1F:A4:9A:FB:56:21:9C:5F:5F:8B:3F:19:6A:A9:50:C5:81:6A:FF
Certificate issuer: /CN=626a28b7c63ef6ab214a52cfa7c3e78db9a40823
Certificate serial: 0194258F041FB93B81AC70F39E84F4AE9EEC
Authority key identifier: 62:6A:28:B7:C6:3E:F6:AB:21:4A:52:CF:A7:C3:E7:8D:B9:A4:08:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ymoot8Y-9qshSlLPp8PnjbmkCCM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/3c0785-b273-4072-a635-d2cd26b69df1/1/RB-kmvtWIZxfX4s_GWqpUMWBav8.roa
Signing time: Thu 02 Jan 2025 05:48:37 +0000
ROA not before: Thu 02 Jan 2025 05:48:37 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 31122
IP address blocks: 45.94.112.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:04:1f:b9:3b:81:ac:70:f3:9e:84:f4:ae:9e:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=626a28b7c63ef6ab214a52cfa7c3e78db9a40823
Validity
Not Before: Jan 2 05:48:37 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=441fa49afb56219c5f5f8b3f196aa950c5816aff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:4f:1a:a7:a1:6a:39:73:69:08:d8:28:d2:4e:
9a:da:a9:49:bb:b4:9d:c7:70:53:87:ac:d4:e2:ec:
b1:3f:b5:a7:04:90:b1:3a:cf:20:3a:f5:bd:71:57:
b1:84:89:bb:a7:8c:56:3e:ba:25:94:ea:ce:9e:e8:
5b:92:34:a7:7e:c2:8b:c1:25:22:d1:90:90:eb:fd:
ea:08:03:5d:84:70:bd:81:01:f6:e5:01:91:99:a4:
41:d6:c7:97:fc:e9:13:de:a3:ca:23:d7:b7:68:af:
84:44:84:2c:ec:f7:3d:fc:cd:b7:3f:a5:13:8e:88:
70:75:e7:40:24:6c:6b:cd:d9:fc:71:ac:21:74:c6:
6e:d2:1d:71:64:65:cb:f3:5f:73:64:47:5c:49:c3:
98:9e:d8:f7:43:e9:8b:c4:b2:4c:c2:40:4f:1b:b8:
1e:e9:24:2f:7a:d9:24:6d:4f:e4:7e:3a:69:45:e8:
c1:c1:7d:01:8a:21:a7:2d:08:bf:41:bf:3c:3f:88:
b7:84:1c:2e:78:00:54:fc:a7:f1:db:10:2f:6e:92:
4d:1d:3e:4d:9f:93:13:89:6f:01:5c:26:81:fc:3b:
64:71:0f:bd:b0:80:cc:21:39:1a:94:23:ab:64:7c:
d6:5a:90:96:6f:1b:08:69:df:2a:20:6c:c8:f0:71:
d9:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:1F:A4:9A:FB:56:21:9C:5F:5F:8B:3F:19:6A:A9:50:C5:81:6A:FF
X509v3 Authority Key Identifier:
keyid:62:6A:28:B7:C6:3E:F6:AB:21:4A:52:CF:A7:C3:E7:8D:B9:A4:08:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ymoot8Y-9qshSlLPp8PnjbmkCCM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/3c0785-b273-4072-a635-d2cd26b69df1/1/RB-kmvtWIZxfX4s_GWqpUMWBav8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/3c0785-b273-4072-a635-d2cd26b69df1/1/Ymoot8Y-9qshSlLPp8PnjbmkCCM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.94.112.0/22
Signature Algorithm: sha256WithRSAEncryption
20:a0:20:2b:02:27:f6:1d:4e:8d:ea:fa:cc:d9:87:58:12:40:
e5:79:b4:f3:da:0b:9d:ab:d6:a2:dd:71:86:1b:e6:ff:06:1a:
b3:38:9b:af:95:eb:ba:64:f7:d5:80:df:81:db:ae:fa:aa:21:
73:60:e0:15:65:f4:7b:64:a4:89:ba:25:95:6e:c8:0a:1a:f3:
49:d5:50:2f:c5:1d:66:87:28:b6:8d:02:ca:ae:61:5d:38:fc:
7a:54:2b:23:92:f3:fb:8c:c4:ee:55:ce:6d:d0:59:fb:4f:85:
bd:66:5d:0b:3b:8d:a8:7d:48:67:86:0f:62:26:31:2b:8d:fc:
09:86:a1:9b:f8:74:43:d3:3d:7d:cb:6f:98:d6:e8:7e:50:67:
83:b8:d5:53:c2:0b:a5:fd:b8:e5:f4:0a:d6:45:0a:2f:54:b9:
bc:0a:c6:19:4f:10:34:7f:40:f1:20:74:e0:fb:4b:50:c0:ab:
75:d1:be:7f:83:47:0a:9f:3a:e6:9b:f4:a0:fd:dc:b9:55:7c:
e0:78:d3:f3:35:f1:1a:24:9d:86:06:7c:59:aa:28:0a:b6:27:
36:d9:94:54:ea:eb:58:bd:e6:76:49:c0:8a:64:1a:ce:17:81:
00:69:47:d5:7f:5d:a4:7f:26:03:a2:ab:d1:41:cb:0d:ad:5e:
d2:66:13:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:06 2025 by rpki-client on console.sobornost.net