Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/f3f06d-4b27-4981-95c6-2f56a5a9a756/1/kl_zb47rnd8AaAP4vBoCuK61hPA.roa
File: kl_zb47rnd8AaAP4vBoCuK61hPA.roa (raw, json)
Hash identifier: e2T6+pFfv8tCYwWL0QcrJLWjz1NsTR4Qy2fxVQvCN8Q=
Subject key identifier: 92:5F:F3:6F:8E:EB:9D:DF:00:68:03:F8:BC:1A:02:B8:AE:B5:84:F0
Certificate issuer: /CN=a53272f37bee769fa23ea654b9e38fb023468d92
Certificate serial: 0194FECFDC17265FB471D65262CA6649E98C
Authority key identifier: A5:32:72:F3:7B:EE:76:9F:A2:3E:A6:54:B9:E3:8F:B0:23:46:8D:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pTJy83vudp-iPqZUueOPsCNGjZI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/f3f06d-4b27-4981-95c6-2f56a5a9a756/1/kl_zb47rnd8AaAP4vBoCuK61hPA.roa
Signing time: Thu 13 Feb 2025 10:17:02 +0000
ROA not before: Thu 13 Feb 2025 10:17:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213715
IP address blocks: 82.115.14.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:fe:cf:dc:17:26:5f:b4:71:d6:52:62:ca:66:49:e9:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a53272f37bee769fa23ea654b9e38fb023468d92
Validity
Not Before: Feb 13 10:17:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=925ff36f8eeb9ddf006803f8bc1a02b8aeb584f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:ec:32:ad:cf:a4:34:0d:73:41:09:7c:64:a1:
f6:17:d0:36:ba:e2:80:a1:56:3c:ef:32:b5:5b:70:
01:a6:95:58:19:e1:82:fd:a7:64:4c:65:f4:ac:1b:
6f:b5:0f:89:bb:aa:b5:a6:46:85:00:f9:48:ca:63:
67:a6:a5:ad:4b:ef:40:d5:7c:ac:71:92:24:69:17:
b9:94:83:23:6b:a8:ed:4e:56:4c:06:38:86:ac:6e:
e2:e8:c9:91:4d:86:60:50:7a:ef:ae:e1:23:99:55:
e1:01:3b:8a:e7:9f:6d:28:57:55:6e:15:5e:fd:e0:
4c:fd:f5:ee:45:8c:d4:dd:e0:c1:03:63:5f:ef:cb:
ac:cc:68:7a:cc:68:27:0b:5b:78:0b:ba:6c:87:65:
32:0b:38:33:d3:72:0c:84:db:dc:b8:9f:1e:54:d4:
96:01:2e:48:cd:ed:21:9d:0d:bd:05:73:51:59:4e:
3a:b8:3c:7d:cd:67:2c:d5:35:9b:d6:43:79:91:13:
27:79:5c:cb:7e:60:eb:ac:bf:a1:57:14:c8:9e:e7:
24:52:ac:13:09:6d:9a:81:d6:9f:37:61:ba:59:06:
66:fb:23:b2:0a:fc:84:6c:11:05:17:8f:d6:36:42:
91:3a:75:7f:ca:2d:e6:a4:b6:20:2a:87:30:a9:19:
4f:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:5F:F3:6F:8E:EB:9D:DF:00:68:03:F8:BC:1A:02:B8:AE:B5:84:F0
X509v3 Authority Key Identifier:
keyid:A5:32:72:F3:7B:EE:76:9F:A2:3E:A6:54:B9:E3:8F:B0:23:46:8D:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pTJy83vudp-iPqZUueOPsCNGjZI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/f3f06d-4b27-4981-95c6-2f56a5a9a756/1/kl_zb47rnd8AaAP4vBoCuK61hPA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/f3f06d-4b27-4981-95c6-2f56a5a9a756/1/pTJy83vudp-iPqZUueOPsCNGjZI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.115.14.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:ea:ce:13:b3:54:03:eb:e1:52:7c:6e:a6:e2:ad:d5:ef:07:
15:e5:3f:36:c3:03:a1:73:1d:2e:73:c4:ac:1f:b6:c9:19:65:
a2:ca:f5:67:e8:5a:8b:d6:62:e4:a2:25:1e:f0:da:46:3f:c0:
6e:77:14:15:88:f7:f6:bb:2a:ab:d5:b3:9e:ee:29:92:f9:90:
20:15:3a:ac:17:61:3d:3c:ea:31:02:5b:0c:cd:b8:a1:80:9e:
f6:7a:f7:8a:65:cd:52:2c:7b:d8:cd:7e:bb:10:f4:7d:f5:fe:
eb:68:c0:33:d7:b1:41:46:a4:6a:c1:dd:81:01:02:85:e3:db:
4d:d8:3a:cc:a6:f1:55:aa:3b:17:79:ca:25:24:31:9e:a9:a2:
ae:5b:85:09:88:da:f1:58:84:94:08:b9:cd:eb:2e:ce:f0:ce:
96:48:5b:d1:25:0c:88:66:61:9a:13:bb:33:d1:25:ff:96:45:
31:4c:14:7a:01:e8:3d:1b:c6:fa:2f:0f:f4:b2:df:23:a4:6b:
29:3b:11:db:79:4a:52:94:eb:c9:6b:ad:46:52:7d:76:f4:54:
fc:ca:ee:be:98:79:dd:92:fa:d0:eb:52:6f:cd:b3:6a:e1:9b:
0d:ac:19:4d:e9:be:7a:59:a0:6a:28:11:41:db:e5:46:da:fc:
36:3e:b8:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:43 2025 by rpki-client on console.sobornost.net