Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/dShe1ipT6-Y_-edVr4eNtxtPKAo.roa
File: dShe1ipT6-Y_-edVr4eNtxtPKAo.roa (raw, json)
Hash identifier: 34QucPlafnV+iMZk3j4FDiUJFtGuS1f17YL6xBvVoIo=
Subject key identifier: 75:28:5E:D6:2A:53:EB:E6:3F:F9:E7:55:AF:87:8D:B7:1B:4F:28:0A
Certificate issuer: /CN=04d29211f92e560f0b7834bb2932ac63cabfa14a
Certificate serial: 0194266C471BA8FAF66C3CB1EF6E1E273A82
Authority key identifier: 04:D2:92:11:F9:2E:56:0F:0B:78:34:BB:29:32:AC:63:CA:BF:A1:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BNKSEfkuVg8LeDS7KTKsY8q_oUo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/dShe1ipT6-Y_-edVr4eNtxtPKAo.roa
Signing time: Thu 02 Jan 2025 09:50:17 +0000
ROA not before: Thu 02 Jan 2025 09:50:17 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 41590
IP address blocks: 195.34.88.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6c:47:1b:a8:fa:f6:6c:3c:b1:ef:6e:1e:27:3a:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04d29211f92e560f0b7834bb2932ac63cabfa14a
Validity
Not Before: Jan 2 09:50:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=75285ed62a53ebe63ff9e755af878db71b4f280a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:7b:13:20:1c:0c:0a:c2:98:02:53:bb:12:07:
23:15:9c:22:ac:9a:a2:a5:ac:9b:9e:a5:a4:06:8f:
63:16:54:58:e0:14:57:c4:c2:25:c8:67:ef:2a:c7:
34:7f:e7:bd:09:8e:04:2f:4d:4d:e0:b6:45:26:38:
fc:77:4a:67:f2:06:c1:a7:3c:dd:96:fb:e0:9b:06:
28:3d:93:c9:37:d8:80:8a:a4:28:46:c5:86:c8:7d:
b2:9b:7e:8e:bd:a6:2c:f6:98:e0:86:a0:eb:f3:05:
cf:25:7f:b1:90:0a:1c:e9:7d:b1:cd:c3:70:25:70:
2d:90:d7:a6:af:74:04:74:d4:cf:30:37:54:05:dd:
19:c3:7a:de:82:6e:4b:6a:d3:60:fb:69:67:25:89:
66:53:b2:ea:e0:55:47:88:40:56:22:30:d9:81:5b:
d7:ff:18:40:e9:e7:c8:fe:6d:bd:a4:6f:8c:6f:b8:
4d:1f:55:cb:db:c1:74:ad:1c:67:db:59:6b:6e:66:
51:4f:39:7b:17:d2:1e:03:4e:61:a0:e6:da:e0:fe:
27:7b:26:47:12:8f:bb:f4:b2:c7:18:ee:a5:6c:44:
3b:3f:94:e7:0c:08:38:1b:b7:11:6f:d1:c4:56:91:
89:1d:1f:bd:3b:16:03:12:23:2a:11:7f:0d:5c:47:
09:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:28:5E:D6:2A:53:EB:E6:3F:F9:E7:55:AF:87:8D:B7:1B:4F:28:0A
X509v3 Authority Key Identifier:
keyid:04:D2:92:11:F9:2E:56:0F:0B:78:34:BB:29:32:AC:63:CA:BF:A1:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BNKSEfkuVg8LeDS7KTKsY8q_oUo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/dShe1ipT6-Y_-edVr4eNtxtPKAo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.34.88.0/23
Signature Algorithm: sha256WithRSAEncryption
25:8f:0a:20:29:99:40:1b:ae:b0:54:5d:34:c8:03:64:7c:43:
70:10:8c:1f:12:9c:ce:99:d2:29:ec:d6:0e:f9:41:c5:dd:2c:
f0:29:0b:48:0f:53:e3:f1:ee:9c:47:cd:55:21:92:4c:67:4c:
87:6a:09:db:f8:93:23:35:40:70:0e:cd:33:72:ad:49:36:51:
6b:21:8f:8b:02:65:40:ff:52:65:23:dc:b5:88:d4:64:27:ea:
78:fd:99:0b:7b:42:f4:88:09:26:ef:66:c4:53:d7:31:d8:39:
fa:7b:15:7a:9f:d2:29:99:ed:db:a2:8e:0b:96:43:be:e7:3a:
2b:81:22:45:a2:39:9e:bf:9b:00:26:a2:06:48:9a:72:71:6a:
79:84:fb:55:1f:7a:7e:77:a9:42:4b:f8:89:97:67:57:91:8a:
fe:fc:ec:94:6d:64:3d:33:71:67:c9:be:18:9c:5a:9f:11:10:
b3:99:be:b3:7c:4c:50:9f:b9:82:6a:ef:66:ce:f9:bb:6d:00:
2f:7c:06:69:a6:f2:7f:e3:d4:3a:c6:62:fe:70:96:80:f2:50:
ee:cd:9e:6a:95:62:43:b4:c8:f1:a1:76:29:b1:b2:ed:1c:9d:
b3:93:25:51:eb:74:fe:12:66:cd:52:91:47:c5:83:78:21:96:
1c:5f:4d:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:42 2025 by rpki-client on console.sobornost.net