Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/a0c9ac-3a47-4d6c-aa15-a42ec8776fbb/1/L9AVUKjVgjcjBjCh3XKgvGTA1hk.roa
File: L9AVUKjVgjcjBjCh3XKgvGTA1hk.roa (raw, json)
Hash identifier: MRdftqqKSbxUqqyJAk4X82kFe7zRmWPvMYuMjvwKsdI=
Subject key identifier: 2F:D0:15:50:A8:D5:82:37:23:06:30:A1:DD:72:A0:BC:64:C0:D6:19
Certificate issuer: /CN=7f3e0b27b8e4d798f92b9de157f1da5a43cd49e5
Certificate serial: 0196106581E4D864E1E9CB7B2AF4E1F47FEE
Authority key identifier: 7F:3E:0B:27:B8:E4:D7:98:F9:2B:9D:E1:57:F1:DA:5A:43:CD:49:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fz4LJ7jk15j5K53hV_HaWkPNSeU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/a0c9ac-3a47-4d6c-aa15-a42ec8776fbb/1/L9AVUKjVgjcjBjCh3XKgvGTA1hk.roa
Signing time: Mon 07 Apr 2025 13:16:49 +0000
ROA not before: Mon 07 Apr 2025 13:16:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 208316
IP address blocks: 193.168.212.0/24 maxlen: 24
193.168.213.0/24 maxlen: 24
193.168.214.0/24 maxlen: 24
193.168.215.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:10:65:81:e4:d8:64:e1:e9:cb:7b:2a:f4:e1:f4:7f:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f3e0b27b8e4d798f92b9de157f1da5a43cd49e5
Validity
Not Before: Apr 7 13:16:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2fd01550a8d58237230630a1dd72a0bc64c0d619
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:1b:42:2e:97:a5:ca:87:6a:07:19:13:76:4a:
1e:89:67:ef:ac:80:94:8d:7e:61:16:36:46:d0:8b:
c1:ed:13:4d:30:a1:a9:cb:de:ff:5d:62:43:8f:e8:
42:ec:b7:b9:ca:70:4c:9f:3d:de:34:76:54:4a:9b:
76:39:05:22:0a:60:93:c6:cc:7d:b9:7c:ea:72:41:
cb:81:18:2e:30:af:4d:56:88:3e:52:a3:d1:d5:d7:
65:6d:0e:e6:d7:6a:62:ff:f4:01:11:1b:c8:95:b6:
5a:2a:b2:41:1d:54:6d:e4:69:4b:ca:52:a4:5f:b6:
be:76:f5:df:01:08:86:c5:72:47:13:c2:c8:5a:3d:
5a:18:b0:67:4d:ab:8f:26:47:a3:0a:4e:85:c3:c4:
f1:8f:5a:e8:85:37:20:16:df:36:9d:c1:6b:33:06:
58:74:b0:70:a3:b5:36:e0:14:a2:05:cf:65:89:20:
24:c6:66:2f:c0:05:fe:4d:f2:6b:b7:85:62:6b:a4:
ee:25:38:a4:1b:d9:30:18:7a:b1:eb:fa:96:9b:e7:
54:b2:8b:aa:bd:3d:44:29:4f:67:be:e8:db:0f:fe:
c4:9c:0d:9c:50:00:27:f3:5c:d7:b0:f2:a0:c2:09:
90:d7:50:3f:bb:e2:46:65:67:78:3a:1e:8b:16:60:
e6:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:D0:15:50:A8:D5:82:37:23:06:30:A1:DD:72:A0:BC:64:C0:D6:19
X509v3 Authority Key Identifier:
keyid:7F:3E:0B:27:B8:E4:D7:98:F9:2B:9D:E1:57:F1:DA:5A:43:CD:49:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fz4LJ7jk15j5K53hV_HaWkPNSeU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/a0c9ac-3a47-4d6c-aa15-a42ec8776fbb/1/L9AVUKjVgjcjBjCh3XKgvGTA1hk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/a0c9ac-3a47-4d6c-aa15-a42ec8776fbb/1/fz4LJ7jk15j5K53hV_HaWkPNSeU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.168.212.0/22
Signature Algorithm: sha256WithRSAEncryption
76:1e:3a:7d:21:d5:32:3d:0d:ee:6a:00:c2:db:5c:40:cf:69:
5b:75:9a:d4:82:e7:7f:28:c6:4f:b8:8f:1d:cd:12:67:f9:ee:
86:34:4a:fa:78:34:97:32:5c:26:c8:c1:59:af:c5:50:01:e4:
7d:1f:31:d9:9d:0a:e7:a5:f6:c9:e6:4d:ea:51:9a:eb:03:1a:
08:15:57:f1:2b:83:de:13:3e:36:98:c8:02:72:3e:01:98:4a:
ea:8f:6d:d6:c8:6c:33:07:aa:78:df:36:cf:19:5c:7f:1a:2c:
3b:42:4f:10:3a:ec:df:35:d2:13:b8:dc:a3:c0:79:21:e6:c7:
08:e0:ba:82:3d:20:ac:a7:e6:f1:fb:ee:ca:48:4c:94:25:73:
4c:e6:73:6b:85:bd:2e:03:05:4c:d6:a1:fd:27:1a:31:02:2a:
89:87:63:e9:38:a4:8a:53:47:9b:d4:95:cd:d1:0f:54:44:4d:
35:bb:60:99:27:e8:56:07:04:d9:a2:99:2b:b0:5f:1c:db:90:
b4:79:31:dc:76:24:5a:e7:14:c6:0f:49:99:ec:ab:2b:e7:c1:
10:47:1c:2d:6d:6b:24:0b:15:6f:a9:00:d4:54:8d:e7:e8:2a:
1f:3c:e6:d7:65:de:4d:75:44:e8:2b:9b:03:02:0d:96:45:74:
0c:cf:4d:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:32 2025 by rpki-client on console.sobornost.net