Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/18b690-c5ae-4fb4-8bf8-63a0be6a8e5f/1/I1hQSc_aI8nnk6g1vpjyTdXYNJI.roa
File: I1hQSc_aI8nnk6g1vpjyTdXYNJI.roa (raw, json)
Hash identifier: h2IeKZyMJz7T7nR3ubhVngPyKXqYp/CJM8eA4imhJCk=
Subject key identifier: 23:58:50:49:CF:DA:23:C9:E7:93:A8:35:BE:98:F2:4D:D5:D8:34:92
Certificate issuer: /CN=aee8e5dfec683ae5f1a0ebe0fb96fa256b304762
Certificate serial: 019423D7E841A3B92FFBB5AAD4AA0668879B
Authority key identifier: AE:E8:E5:DF:EC:68:3A:E5:F1:A0:EB:E0:FB:96:FA:25:6B:30:47:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rujl3-xoOuXxoOvg-5b6JWswR2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/18b690-c5ae-4fb4-8bf8-63a0be6a8e5f/1/I1hQSc_aI8nnk6g1vpjyTdXYNJI.roa
Signing time: Wed 01 Jan 2025 21:48:59 +0000
ROA not before: Wed 01 Jan 2025 21:48:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 210458
IP address blocks: 146.19.141.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:e8:41:a3:b9:2f:fb:b5:aa:d4:aa:06:68:87:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aee8e5dfec683ae5f1a0ebe0fb96fa256b304762
Validity
Not Before: Jan 1 21:48:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=23585049cfda23c9e793a835be98f24dd5d83492
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:0a:ba:32:95:67:ef:8a:98:39:98:95:a3:97:
33:82:a6:18:4a:a7:3a:75:91:29:c4:e9:02:88:e0:
a0:87:73:a4:d4:8a:bb:a8:e6:1a:c9:0b:ff:bf:c6:
ad:cb:68:eb:56:b9:53:ce:5c:e9:91:8b:a2:a1:a4:
ce:c7:ba:58:75:b4:8a:08:48:cb:4b:23:ee:6a:58:
55:b8:78:23:64:dd:05:f3:b5:04:f6:de:0d:d6:b6:
69:db:fa:d3:16:9e:ce:2f:5d:b9:77:9a:ab:ab:76:
2e:b7:1a:a2:5c:19:84:19:f5:9b:d5:6b:79:a7:1c:
38:0a:72:d4:d8:52:73:e0:9a:13:b3:43:4c:93:a3:
52:d2:43:b1:8c:fc:34:ed:dc:c7:f8:28:d7:73:06:
f1:c7:7a:3d:80:af:c5:35:24:39:f3:83:bc:8f:dc:
d3:40:ff:c1:7a:39:fd:6e:b8:6b:b8:10:dd:18:ae:
21:ca:a6:db:2f:85:56:35:38:f6:24:1f:5c:9f:2d:
e8:5e:e2:66:a2:f0:cd:40:88:45:14:5c:04:24:d5:
61:35:fe:b1:9b:d2:fe:f3:c9:4a:48:8c:42:52:6b:
2c:f4:e0:45:b2:67:a0:2a:09:eb:53:e0:4d:a8:6a:
ff:6b:41:03:cf:20:15:b1:e8:e0:ad:e2:f6:e1:27:
54:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:58:50:49:CF:DA:23:C9:E7:93:A8:35:BE:98:F2:4D:D5:D8:34:92
X509v3 Authority Key Identifier:
keyid:AE:E8:E5:DF:EC:68:3A:E5:F1:A0:EB:E0:FB:96:FA:25:6B:30:47:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rujl3-xoOuXxoOvg-5b6JWswR2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/18b690-c5ae-4fb4-8bf8-63a0be6a8e5f/1/I1hQSc_aI8nnk6g1vpjyTdXYNJI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/18b690-c5ae-4fb4-8bf8-63a0be6a8e5f/1/rujl3-xoOuXxoOvg-5b6JWswR2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.141.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:58:40:93:37:47:08:67:d4:f3:45:40:05:b7:10:6f:07:59:
78:e5:23:22:ea:8b:8b:5c:43:57:d1:33:2b:1c:b4:43:dc:28:
81:df:3c:a6:20:a5:4a:46:23:f2:ac:a7:24:e0:02:80:89:ac:
ce:a5:3f:29:00:35:77:a9:5d:7f:66:58:a8:bc:6f:08:b6:f8:
fc:24:ec:17:df:15:ea:48:e5:50:f2:82:e1:69:2e:95:73:cf:
f7:20:33:d2:75:20:61:46:17:66:30:00:ad:c8:49:7b:f9:29:
a6:af:62:7b:e1:45:10:ad:d3:78:04:b1:44:d5:e2:c5:52:77:
e4:ba:de:08:a2:18:9e:f8:73:4b:08:61:5d:81:3a:d1:21:58:
af:ec:a3:f3:cf:ac:7c:d1:22:0a:1e:19:b1:db:59:26:3e:9f:
e1:c0:dc:03:5c:0e:78:8b:91:f3:4f:6b:8e:4d:5c:13:b3:56:
36:38:3d:d9:b6:e6:d3:34:fd:4c:0a:22:65:2e:71:ff:4c:cf:
0e:c3:c3:62:b0:3d:a8:f3:ee:de:22:22:4f:62:23:09:99:26:
0c:a5:53:4e:8f:56:70:12:ee:a4:f4:98:00:54:2b:73:9a:a3:
d4:8a:4c:27:05:50:2a:9a:06:46:25:84:e7:37:12:d8:9b:2c:
93:47:67:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:12 2025 by rpki-client on console.sobornost.net