Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/5c92d1-41e5-443e-a250-01baf78ec73f/1/TVu5aQ7CXqbPlsSn9wNLY8tYilE.roa
File: TVu5aQ7CXqbPlsSn9wNLY8tYilE.roa (raw, json)
Hash identifier: B5zfotvyVUd7f8T5ZgXVly2iMRkx4aTHfTXgfsPh/CI=
Subject key identifier: 4D:5B:B9:69:0E:C2:5E:A6:CF:96:C4:A7:F7:03:4B:63:CB:58:8A:51
Certificate issuer: /CN=b6321eebf4f95be9f81f0f233f89f3602d2f0074
Certificate serial: 019422FC24A80964DF4F7FE10AF37E8EB101
Authority key identifier: B6:32:1E:EB:F4:F9:5B:E9:F8:1F:0F:23:3F:89:F3:60:2D:2F:00:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tjIe6_T5W-n4Hw8jP4nzYC0vAHQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/5c92d1-41e5-443e-a250-01baf78ec73f/1/TVu5aQ7CXqbPlsSn9wNLY8tYilE.roa
Signing time: Wed 01 Jan 2025 17:48:57 +0000
ROA not before: Wed 01 Jan 2025 17:48:57 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 39326
IP address blocks: 193.151.124.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fc:24:a8:09:64:df:4f:7f:e1:0a:f3:7e:8e:b1:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b6321eebf4f95be9f81f0f233f89f3602d2f0074
Validity
Not Before: Jan 1 17:48:57 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4d5bb9690ec25ea6cf96c4a7f7034b63cb588a51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:62:f7:50:32:40:ff:6a:98:db:07:46:ec:19:
f1:fd:c5:0f:97:01:29:3c:3c:70:50:b8:b0:de:8d:
d5:6c:f9:a0:e5:c4:6f:4a:c1:57:be:72:62:fe:70:
37:fd:55:eb:a2:d5:d2:e3:8c:c3:58:ce:c0:5a:a2:
7c:56:6d:36:22:93:fe:c4:8c:6f:d7:4c:16:a2:e7:
4b:24:a4:5d:9e:77:e5:a7:4e:fc:b5:4c:33:c5:8b:
b0:2d:12:d1:58:ea:36:8c:89:1c:4e:cd:3a:bd:4c:
d7:cb:54:d5:a8:77:cc:f7:b5:83:f3:d2:3e:e5:86:
a6:bc:03:c5:ad:e3:f5:8a:b2:03:85:dc:9f:c5:13:
61:b6:fd:a3:03:85:99:8b:33:59:5e:58:69:67:33:
5a:c8:42:04:57:db:a8:e3:30:18:41:fa:e6:3b:8c:
82:cc:e9:1b:cf:17:80:2f:0a:37:01:64:1e:e7:d7:
07:01:c1:a6:bf:8f:0d:18:21:71:3a:12:2a:b8:d6:
39:48:86:5b:8b:76:5c:0d:9e:8d:19:bc:70:b1:95:
1c:8d:66:8b:6a:83:ee:ce:9d:52:0e:0f:f1:74:f4:
99:20:29:54:35:de:68:09:31:81:53:5e:9d:bd:91:
45:c5:c9:67:38:70:f4:ae:03:65:ae:35:c0:ff:4b:
57:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:5B:B9:69:0E:C2:5E:A6:CF:96:C4:A7:F7:03:4B:63:CB:58:8A:51
X509v3 Authority Key Identifier:
keyid:B6:32:1E:EB:F4:F9:5B:E9:F8:1F:0F:23:3F:89:F3:60:2D:2F:00:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tjIe6_T5W-n4Hw8jP4nzYC0vAHQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/5c92d1-41e5-443e-a250-01baf78ec73f/1/TVu5aQ7CXqbPlsSn9wNLY8tYilE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/5c92d1-41e5-443e-a250-01baf78ec73f/1/tjIe6_T5W-n4Hw8jP4nzYC0vAHQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.151.124.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:96:af:c8:01:48:4e:a6:15:68:72:95:fc:9c:73:5b:d6:a9:
af:3b:8f:63:cf:3e:91:ea:57:55:4a:37:a8:49:41:e5:08:85:
7b:ef:4f:3f:cf:a9:27:00:3f:09:43:ec:e7:bf:8a:e1:a1:78:
8c:89:92:ce:e7:7f:2f:85:fb:86:07:f8:6c:f2:22:fd:9f:6f:
74:06:44:a7:13:b1:b7:27:b3:81:91:6c:16:fe:c4:45:ee:3a:
05:b9:e9:30:6c:fd:a0:95:a8:f0:ce:70:92:16:35:2b:59:e3:
14:1e:d8:0b:be:37:0d:1a:5d:10:c2:b1:ba:42:56:da:80:ba:
96:60:cb:a6:e4:68:7b:66:9c:73:8d:f4:2b:d0:b7:45:28:5f:
a0:c9:79:35:e9:01:af:25:c8:da:ae:f6:d0:5d:28:a1:f7:49:
bd:55:c2:89:b4:8b:02:8f:a4:60:8e:1a:e2:40:7e:b7:62:f2:
cf:d7:33:75:14:68:a5:df:9e:05:18:32:65:23:59:85:18:db:
ec:b9:41:b0:30:09:67:0e:83:64:9c:1b:50:6d:62:28:d1:bc:
71:27:f3:bb:85:69:d5:72:e2:fb:9e:e5:77:0e:05:ec:ff:7e:
3e:44:96:f0:5f:bf:43:a6:b2:e7:70:b8:4f:b8:29:4d:f7:48:
e8:2d:8e:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:30 2025 by rpki-client on console.sobornost.net