Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/5f3e21-6b41-4964-bfda-cbbfda92419d/1/2wr3VnHPGzlL2arFNUC9_MLTdaY.roa
File: 2wr3VnHPGzlL2arFNUC9_MLTdaY.roa (raw, json)
Hash identifier: riabhN7uUC9dX01WplUZkRt4qxUdWnv+rCQJ9LvkhhE=
Subject key identifier: DB:0A:F7:56:71:CF:1B:39:4B:D9:AA:C5:35:40:BD:FC:C2:D3:75:A6
Certificate issuer: /CN=e15b90ffdfa0ab285485e78446b871998b24dcc0
Certificate serial: 01960F9C1675682F4ECED5CED45EE37BB31A
Authority key identifier: E1:5B:90:FF:DF:A0:AB:28:54:85:E7:84:46:B8:71:99:8B:24:DC:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4VuQ_9-gqyhUheeERrhxmYsk3MA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/5f3e21-6b41-4964-bfda-cbbfda92419d/1/2wr3VnHPGzlL2arFNUC9_MLTdaY.roa
Signing time: Mon 07 Apr 2025 09:36:49 +0000
ROA not before: Mon 07 Apr 2025 09:36:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 42831
IP address blocks: 94.232.254.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:0f:9c:16:75:68:2f:4e:ce:d5:ce:d4:5e:e3:7b:b3:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e15b90ffdfa0ab285485e78446b871998b24dcc0
Validity
Not Before: Apr 7 09:36:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=db0af75671cf1b394bd9aac53540bdfcc2d375a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:08:07:5d:09:fe:a3:d9:87:63:eb:7d:13:23:
ab:dd:4e:91:c2:7e:64:19:a4:a6:50:15:b4:23:ce:
ac:fd:23:92:69:6e:3e:e0:50:7e:11:4d:57:f7:13:
85:33:0a:69:05:32:55:97:df:31:aa:d4:7a:41:9e:
a7:d3:d5:b1:75:92:4c:2a:e0:65:97:09:f1:b8:9a:
dc:63:63:62:3b:07:88:9f:66:91:dd:74:49:d9:0e:
5a:c0:a5:15:92:09:cd:2d:be:69:5b:8c:a3:9d:90:
0e:fa:d7:d3:a0:eb:11:9a:ff:80:6c:5a:21:f6:a5:
62:aa:a4:32:fa:7b:7e:4e:c2:a0:cc:8a:73:5c:20:
61:33:5b:10:fa:06:66:d2:bb:d3:57:2d:9a:f9:d0:
c5:6f:d7:39:18:69:43:1b:df:a2:8b:72:01:3f:ae:
83:f6:79:81:b4:70:33:a2:21:2b:e9:64:3a:2d:c2:
c9:0f:e5:43:bc:2b:08:14:c0:84:48:59:90:fe:35:
10:7d:9f:55:f3:b8:66:a8:26:a5:b0:1f:32:cb:dc:
88:d7:ec:e7:e6:8c:0d:4c:b9:93:b1:81:68:cb:2a:
00:e8:50:34:26:10:9f:ca:0d:4a:9c:da:61:03:fd:
1b:6e:b4:8c:93:a6:e6:29:b1:e3:dc:37:1d:56:5e:
db:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:0A:F7:56:71:CF:1B:39:4B:D9:AA:C5:35:40:BD:FC:C2:D3:75:A6
X509v3 Authority Key Identifier:
keyid:E1:5B:90:FF:DF:A0:AB:28:54:85:E7:84:46:B8:71:99:8B:24:DC:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4VuQ_9-gqyhUheeERrhxmYsk3MA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/5f3e21-6b41-4964-bfda-cbbfda92419d/1/2wr3VnHPGzlL2arFNUC9_MLTdaY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/5f3e21-6b41-4964-bfda-cbbfda92419d/1/4VuQ_9-gqyhUheeERrhxmYsk3MA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.232.254.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:58:32:48:81:49:8c:db:ea:0b:6b:ba:b2:56:37:12:8b:b3:
c0:fc:d7:c7:69:ca:c2:0f:86:3a:ff:b2:e6:b9:4a:0f:5b:e0:
c1:bc:74:2d:30:c4:50:e0:a6:6e:91:00:a5:b5:d0:dc:ef:3b:
79:62:e5:5c:37:76:23:9d:25:89:dc:e8:2e:40:71:ca:e6:68:
c4:b9:6a:8a:ce:91:04:94:26:a6:3f:d1:77:56:24:07:40:67:
e8:67:cb:72:3e:79:29:a9:08:8c:cc:d7:77:b0:6c:b2:aa:a2:
d8:5c:65:a8:df:6d:d1:a2:10:23:d9:15:8c:3e:24:4c:d6:53:
07:3f:d0:c3:79:66:a7:f6:02:05:ca:8a:5b:d4:93:bd:d0:70:
e4:1c:44:1e:1d:a9:6e:11:ed:13:be:3e:c7:dd:08:73:87:15:
d0:5e:e7:10:00:56:c0:db:24:da:f5:60:de:a3:b8:42:c5:e7:
e9:b9:36:f3:e0:76:9a:ec:1a:bf:ee:ce:95:c7:f8:06:d8:77:
28:48:13:78:cc:62:17:b7:65:68:d3:02:59:08:30:cb:f9:a0:
ed:69:d1:ba:dc:58:19:d2:54:d8:2c:fd:be:b5:ae:44:7c:8c:
df:51:c3:af:88:fb:84:5a:8c:2a:1d:65:58:84:8c:f2:b1:2b:
89:7e:0d:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:06 2025 by rpki-client on console.sobornost.net