Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/7142b1-7091-4d3a-bd6d-9fe7ee9c0368/1/_MYdCgDWaO6XB5gVesQLpQpeOag.roa
File: _MYdCgDWaO6XB5gVesQLpQpeOag.roa (raw, json)
Hash identifier: nreKDXAy4j3D6W3Lae5rvKwQFMf1x+LsfYxvbzIyjhc=
Subject key identifier: FC:C6:1D:0A:00:D6:68:EE:97:07:98:15:7A:C4:0B:A5:0A:5E:39:A8
Certificate issuer: /CN=84db747b289717a0684cd6ac82307aa67bb2d7bb
Certificate serial: 019427B61619BBB473EE82DAF35B7AE840FE
Authority key identifier: 84:DB:74:7B:28:97:17:A0:68:4C:D6:AC:82:30:7A:A6:7B:B2:D7:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hNt0eyiXF6BoTNasgjB6pnuy17s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/7142b1-7091-4d3a-bd6d-9fe7ee9c0368/1/_MYdCgDWaO6XB5gVesQLpQpeOag.roa
Signing time: Thu 02 Jan 2025 15:50:32 +0000
ROA not before: Thu 02 Jan 2025 15:50:32 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206191
IP address blocks: 195.110.116.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b6:16:19:bb:b4:73:ee:82:da:f3:5b:7a:e8:40:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84db747b289717a0684cd6ac82307aa67bb2d7bb
Validity
Not Before: Jan 2 15:50:32 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=fcc61d0a00d668ee970798157ac40ba50a5e39a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:bd:31:51:f8:0e:e4:75:db:de:be:5c:4b:18:
b7:ee:86:49:49:59:fe:86:f0:a4:ba:06:83:ef:3c:
ff:5b:d4:d9:d7:32:13:20:3e:7c:5f:45:66:f6:2a:
82:23:1b:a1:e6:36:a6:c2:cb:30:d2:e9:27:75:c0:
40:68:bc:bf:d6:77:e8:76:ec:7b:52:1e:f2:b1:c9:
d9:8c:cb:77:18:3f:db:ad:d6:04:b4:30:69:4f:b1:
28:43:5c:7b:ea:ae:3d:08:2e:b4:4c:51:00:cf:62:
f1:ac:5e:8d:8a:d5:b7:cb:21:e4:3d:18:7a:6a:13:
c5:67:60:bc:d6:50:1a:48:ea:08:57:59:85:a4:90:
2f:88:4f:a7:fe:4c:b3:a3:6e:1f:35:cc:ca:5f:4b:
c6:d4:72:2d:b3:ab:b9:03:de:3c:3e:a8:dc:9e:68:
e0:12:e7:53:1d:24:91:d2:24:54:a6:03:5f:34:ac:
a1:06:12:c8:ae:a7:8b:8b:b8:db:d4:91:49:25:62:
5d:43:2f:26:b9:64:08:22:00:e8:a3:08:a9:0a:62:
62:f6:dc:fb:0a:4a:16:fa:d4:ff:f9:9c:ea:b7:2a:
fa:a2:de:e8:bb:b1:9f:18:ad:3b:bc:f7:9b:93:56:
34:fb:d7:db:60:ed:33:78:b7:29:1f:b0:42:6f:bd:
a3:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:C6:1D:0A:00:D6:68:EE:97:07:98:15:7A:C4:0B:A5:0A:5E:39:A8
X509v3 Authority Key Identifier:
keyid:84:DB:74:7B:28:97:17:A0:68:4C:D6:AC:82:30:7A:A6:7B:B2:D7:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hNt0eyiXF6BoTNasgjB6pnuy17s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/7142b1-7091-4d3a-bd6d-9fe7ee9c0368/1/_MYdCgDWaO6XB5gVesQLpQpeOag.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/7142b1-7091-4d3a-bd6d-9fe7ee9c0368/1/hNt0eyiXF6BoTNasgjB6pnuy17s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.110.116.0/24
Signature Algorithm: sha256WithRSAEncryption
80:6d:cb:d6:06:7b:5a:64:8e:8f:14:f3:de:f4:e6:a2:91:f8:
83:7b:28:36:43:e7:ed:fc:2a:6a:c4:61:95:7a:3d:cb:d1:ad:
60:67:fc:54:90:2d:17:c7:03:51:11:0a:7f:0c:5b:82:ec:57:
bc:d2:a4:7a:e8:26:ad:0e:38:12:66:1d:4c:51:53:bf:ef:f7:
a2:f8:9c:66:86:cd:40:66:e7:a4:46:d8:e1:c6:70:f0:d6:67:
2c:c7:64:51:c6:f0:bc:e4:90:5a:7e:e5:9a:0c:64:d7:c1:a4:
4e:b3:3e:c6:6f:ec:df:dc:e5:ea:09:bd:aa:fd:41:0a:8d:ee:
bc:2a:90:a3:6b:3e:7d:51:a7:16:74:1b:1b:81:be:9b:45:72:
2b:a8:3d:9d:59:1e:8e:3f:93:9e:a3:e7:31:8c:a1:26:47:28:
b9:05:d9:b5:c8:53:8c:a2:1e:1b:29:54:f0:95:7b:71:bb:ae:
2e:17:ec:3d:d8:5e:6a:4d:97:53:ae:e8:e0:65:66:8a:38:bb:
ca:53:57:1f:9a:39:46:bb:d4:34:49:bf:d5:4a:f5:d3:ae:92:
75:d5:a5:2b:a6:79:78:d1:11:9a:e3:c2:69:62:bc:02:a6:58:
96:f5:0a:5d:f8:50:0c:09:da:94:3e:13:0f:e2:f2:ec:47:79:
36:a0:52:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:32 2025 by rpki-client on console.sobornost.net