Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/1d3cdc-d04b-4adb-b069-2a351ab3b8f6/1/XkoFzkhGOVU5LUerqTHh__leFZg.roa
File: XkoFzkhGOVU5LUerqTHh__leFZg.roa (raw, json)
Hash identifier: z0PB3OIVOF5qm40evjJvgBDDcdbv5T70mZxHdxYv7d4=
Subject key identifier: 5E:4A:05:CE:48:46:39:55:39:2D:47:AB:A9:31:E1:FF:F9:5E:15:98
Certificate issuer: /CN=b504bcceb9c363f13e3adaa4c0fa52780f064684
Certificate serial: 019423D7EE0201F771FCFAD895A2B7AD8119
Authority key identifier: B5:04:BC:CE:B9:C3:63:F1:3E:3A:DA:A4:C0:FA:52:78:0F:06:46:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tQS8zrnDY_E-OtqkwPpSeA8GRoQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/1d3cdc-d04b-4adb-b069-2a351ab3b8f6/1/XkoFzkhGOVU5LUerqTHh__leFZg.roa
Signing time: Wed 01 Jan 2025 21:49:01 +0000
ROA not before: Wed 01 Jan 2025 21:49:01 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213216
IP address blocks: 194.61.0.0/24 maxlen: 32
2a13:7fc0:4201::/48 maxlen: 48
2a13:7fc0:a42a::/48 maxlen: 64
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:ee:02:01:f7:71:fc:fa:d8:95:a2:b7:ad:81:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b504bcceb9c363f13e3adaa4c0fa52780f064684
Validity
Not Before: Jan 1 21:49:01 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5e4a05ce48463955392d47aba931e1fff95e1598
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:b4:22:c5:37:42:22:f1:45:e0:89:1e:c9:b7:
85:73:da:14:a2:04:63:c9:02:d7:c8:de:f1:a2:a4:
5e:cc:19:3b:27:5a:69:20:1a:44:64:43:fc:22:38:
84:ea:5d:8d:2e:0e:63:53:97:b0:da:f1:f7:36:b3:
47:a4:40:f3:f0:07:48:a2:5a:88:a8:99:4a:eb:73:
0f:45:ac:cb:37:51:55:76:b4:b6:6c:9a:18:6f:42:
40:08:9f:6b:a5:d3:22:19:37:44:e6:b7:48:2c:6c:
02:61:d4:72:88:13:8d:81:24:28:ab:6f:f1:2b:52:
de:1d:3a:27:b1:5a:5a:69:25:d3:c6:dd:a3:70:40:
81:64:5b:ec:02:22:f4:44:85:c5:52:0e:34:5e:bf:
be:db:36:bc:b9:b0:c3:ff:87:b3:b2:7f:68:dc:76:
94:e6:21:4c:d6:22:9c:46:2d:48:6b:1b:73:70:27:
a4:fb:f0:1e:91:d6:4c:6d:ec:ea:ec:e6:e2:df:e3:
e4:ba:9c:1d:a4:0b:f1:68:5f:41:1d:05:64:36:db:
8a:5b:15:5a:cc:00:71:0d:5f:21:42:aa:c0:b1:b3:
96:0d:e8:7f:c5:ca:8b:af:2c:32:51:ff:28:de:7b:
ca:57:26:41:60:87:fc:fb:19:20:33:73:e0:53:83:
89:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:4A:05:CE:48:46:39:55:39:2D:47:AB:A9:31:E1:FF:F9:5E:15:98
X509v3 Authority Key Identifier:
keyid:B5:04:BC:CE:B9:C3:63:F1:3E:3A:DA:A4:C0:FA:52:78:0F:06:46:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tQS8zrnDY_E-OtqkwPpSeA8GRoQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/1d3cdc-d04b-4adb-b069-2a351ab3b8f6/1/XkoFzkhGOVU5LUerqTHh__leFZg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/1d3cdc-d04b-4adb-b069-2a351ab3b8f6/1/tQS8zrnDY_E-OtqkwPpSeA8GRoQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.61.0.0/24
IPv6:
2a13:7fc0:4201::/48
2a13:7fc0:a42a::/48
Signature Algorithm: sha256WithRSAEncryption
05:5e:6b:38:4a:98:a5:cf:60:e1:17:00:68:80:13:fa:27:04:
82:29:00:51:66:32:45:8f:4b:ec:13:a8:62:32:22:2d:40:1b:
d3:03:ad:4d:06:41:46:ce:20:5a:21:0c:9a:22:f0:64:69:7c:
f5:51:e2:9b:3f:fb:f0:66:8f:f6:25:32:df:7d:16:00:b3:45:
29:49:5b:3b:8b:f1:db:78:32:73:cb:5f:69:b1:4e:52:20:01:
24:90:da:a0:97:f2:d2:3b:63:ed:ae:35:70:68:6e:1a:72:1b:
19:8a:c0:13:ba:b3:01:fa:98:c0:52:3e:c7:11:b2:95:c2:84:
ca:d1:5b:4c:a8:22:2c:59:6c:47:ee:61:fc:57:58:35:35:4b:
7c:cd:e3:be:3f:eb:24:b2:56:8a:cb:62:cb:e3:72:37:b2:04:
61:c0:45:58:87:43:4b:25:88:41:5e:a9:3d:87:15:23:ad:97:
28:a0:bf:03:60:b5:44:2e:c9:35:68:85:2a:a2:0a:59:91:31:
d7:78:27:ce:e5:43:cf:93:bf:8c:32:9d:a9:50:b8:f0:3d:18:
f4:b3:1e:11:e0:77:53:0d:3a:0d:62:3e:c6:5f:91:5e:d9:2a:
da:e2:dc:87:c5:15:ec:a9:62:9c:cf:8f:9b:1c:08:5d:6f:7b:
5f:db:0c:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:34 2025 by rpki-client on console.sobornost.net