Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/ac5fdf-5b66-4850-963a-f9b73b3e3eee/1/_TX8C92dziQpbg1kfvVVdJSGVvw.roa
File: _TX8C92dziQpbg1kfvVVdJSGVvw.roa (raw, json)
Hash identifier: M6n2mPn45LSDUrpQyadpeXypeAt/8VqRu1J7jMmEfG8=
Subject key identifier: FD:35:FC:0B:DD:9D:CE:24:29:6E:0D:64:7E:F5:55:74:94:86:56:FC
Certificate issuer: /CN=3d98a3b62d5abb1dcaf68ae23f531ee82240f203
Certificate serial: 019427481FFCC0D122511E5DCA9427C4E86D
Authority key identifier: 3D:98:A3:B6:2D:5A:BB:1D:CA:F6:8A:E2:3F:53:1E:E8:22:40:F2:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PZijti1aux3K9oriP1Me6CJA8gM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/ac5fdf-5b66-4850-963a-f9b73b3e3eee/1/_TX8C92dziQpbg1kfvVVdJSGVvw.roa
Signing time: Thu 02 Jan 2025 13:50:25 +0000
ROA not before: Thu 02 Jan 2025 13:50:25 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 9022
IP address blocks: 193.21.251.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:1f:fc:c0:d1:22:51:1e:5d:ca:94:27:c4:e8:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d98a3b62d5abb1dcaf68ae23f531ee82240f203
Validity
Not Before: Jan 2 13:50:25 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=fd35fc0bdd9dce24296e0d647ef55574948656fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:10:08:50:65:27:c4:47:f7:ea:63:c6:17:49:
11:52:1f:2d:80:77:79:ac:8f:cc:c3:70:11:35:49:
51:35:18:0b:fe:ae:2e:f1:ec:2d:65:e8:8a:33:fd:
9f:1e:88:ed:72:b0:a3:e1:5f:2f:4d:14:01:c4:1a:
68:a9:74:f8:66:52:b7:55:a3:43:8e:f5:5d:9d:7b:
73:e3:5e:1d:06:66:c9:82:4c:eb:a7:17:09:4d:fb:
60:21:01:ef:e4:cd:0c:7a:04:55:4c:b1:b9:a8:94:
73:be:55:56:10:b7:ba:c0:c9:18:14:ec:46:ad:ab:
16:33:70:53:10:72:29:c4:fd:4b:13:d7:cf:c0:67:
19:55:e1:62:6a:56:17:8e:7c:60:6e:c9:52:52:56:
c9:19:1b:88:af:4d:bb:14:8a:d5:60:58:c9:83:07:
ec:ac:cc:cb:5f:30:45:1b:d4:9a:34:b6:75:e9:04:
57:4b:9d:80:6d:0b:28:49:40:05:b5:e9:cd:ef:a1:
5f:a7:52:3e:3e:4b:92:7f:79:2f:50:fb:6a:4b:68:
d2:46:80:2b:93:a4:d8:40:d5:a0:6e:2f:6e:e1:21:
c0:55:00:0f:d3:e6:13:9e:96:65:11:8d:93:95:cf:
6c:93:21:36:85:04:8d:d1:86:e5:35:3a:3d:7d:00:
9e:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:35:FC:0B:DD:9D:CE:24:29:6E:0D:64:7E:F5:55:74:94:86:56:FC
X509v3 Authority Key Identifier:
keyid:3D:98:A3:B6:2D:5A:BB:1D:CA:F6:8A:E2:3F:53:1E:E8:22:40:F2:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PZijti1aux3K9oriP1Me6CJA8gM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/ac5fdf-5b66-4850-963a-f9b73b3e3eee/1/_TX8C92dziQpbg1kfvVVdJSGVvw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/ac5fdf-5b66-4850-963a-f9b73b3e3eee/1/PZijti1aux3K9oriP1Me6CJA8gM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.21.251.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:01:e7:33:42:24:93:6b:0b:23:50:35:6d:af:db:a0:ee:fb:
56:a7:5a:0d:f3:7d:a7:10:21:a6:b4:29:87:76:eb:91:d3:e4:
b7:d9:78:ec:06:0b:96:60:db:50:aa:10:5e:35:c8:c6:ea:22:
9a:3a:ef:a3:b5:4f:cc:31:fc:86:de:31:72:02:fa:a8:35:f4:
6c:7b:71:a6:64:a6:8c:b1:74:8e:d9:cf:d0:43:a8:4e:d0:53:
be:da:2c:fe:8b:b2:09:9f:f8:98:1f:3c:3d:ff:24:b4:51:ee:
2f:5a:07:2f:fc:90:aa:00:34:a9:7e:ee:41:04:40:0b:51:fa:
0e:c8:93:0a:2b:f9:3a:c5:10:21:0a:b8:61:17:9a:90:0f:d2:
c6:f2:32:a2:0c:70:45:64:4d:4a:6d:fa:6d:bc:3a:d0:68:e2:
3f:0e:13:0b:aa:f1:e7:72:3b:ac:2e:b0:56:5f:38:1c:8a:d4:
fd:86:48:6d:7d:fd:33:3c:cf:2f:a6:de:8d:12:95:ae:a3:63:
d3:e1:0c:3d:d8:0f:b0:8c:fd:d0:e5:1b:0e:32:68:e9:aa:e6:
19:57:4d:43:ca:51:6e:30:56:8d:dc:25:83:5b:6b:28:12:b5:
d6:16:c4:78:29:d1:94:fc:3d:00:d5:3d:60:31:91:45:b2:fa:
3b:96:e8:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:34 2025 by rpki-client on console.sobornost.net