Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/745bdb-104b-49c7-99d5-cec33ba1bdf5/1/BzRg7cqbGCxPjaoZhAl0Moquf1Y.roa
File: BzRg7cqbGCxPjaoZhAl0Moquf1Y.roa (raw, json)
Hash identifier: 6kEaZouendLfYXdknvUfHV20sm02LURoxyHpm7Wn7AY=
Subject key identifier: 07:34:60:ED:CA:9B:18:2C:4F:8D:AA:19:84:09:74:32:8A:AE:7F:56
Certificate issuer: /CN=9d5de490ff874e9689cecf726cbb4e2f51f6c731
Certificate serial: 019421B1A0D2D9AF2DD8B4755814403A98D0
Authority key identifier: 9D:5D:E4:90:FF:87:4E:96:89:CE:CF:72:6C:BB:4E:2F:51:F6:C7:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nV3kkP-HTpaJzs9ybLtOL1H2xzE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/745bdb-104b-49c7-99d5-cec33ba1bdf5/1/BzRg7cqbGCxPjaoZhAl0Moquf1Y.roa
Signing time: Wed 01 Jan 2025 11:47:56 +0000
ROA not before: Wed 01 Jan 2025 11:47:56 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 49490
IP address blocks: 194.145.64.0/19 maxlen: 25
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b1:a0:d2:d9:af:2d:d8:b4:75:58:14:40:3a:98:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d5de490ff874e9689cecf726cbb4e2f51f6c731
Validity
Not Before: Jan 1 11:47:56 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=073460edca9b182c4f8daa19840974328aae7f56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:3a:c8:27:ad:47:f4:ea:44:3b:02:a7:51:28:
8e:01:79:80:a5:bf:04:49:40:b8:c3:aa:2b:39:c5:
a6:8c:c8:10:2e:e6:e1:ef:73:af:6c:0d:85:e5:5c:
c9:31:d9:3a:2c:32:df:24:9b:66:28:e9:38:0e:61:
be:36:94:83:6b:71:0d:6d:5e:68:7c:77:a4:46:25:
27:42:91:50:66:e0:0f:0e:c5:83:ca:7f:14:df:6d:
bc:aa:b9:c1:8a:25:0a:f6:5d:0f:ca:3c:02:1b:a6:
35:c4:2e:a4:32:a4:e1:42:6a:be:cf:b3:b5:ad:3c:
e7:b1:4b:85:95:f8:55:01:bc:a3:01:78:ff:85:c1:
8f:7e:51:72:d0:b1:60:49:b7:73:f6:8c:b8:70:8f:
3d:b4:f3:39:c9:a7:f6:6d:45:92:c2:9e:5d:75:05:
52:64:de:98:c4:a8:f1:74:bf:44:dd:04:a8:06:7c:
a9:39:dc:53:e0:be:41:70:7d:ee:60:db:29:6d:05:
68:15:0d:44:dc:e8:69:08:7b:60:0f:68:b5:c8:e5:
e3:43:cc:bd:48:e4:ba:da:01:00:46:15:01:4b:37:
20:a6:4f:a8:fe:cd:49:e5:ab:2d:8f:07:a5:c6:b6:
49:3b:ed:78:08:09:aa:8e:65:09:b3:fe:51:e3:47:
96:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:34:60:ED:CA:9B:18:2C:4F:8D:AA:19:84:09:74:32:8A:AE:7F:56
X509v3 Authority Key Identifier:
keyid:9D:5D:E4:90:FF:87:4E:96:89:CE:CF:72:6C:BB:4E:2F:51:F6:C7:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nV3kkP-HTpaJzs9ybLtOL1H2xzE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/745bdb-104b-49c7-99d5-cec33ba1bdf5/1/BzRg7cqbGCxPjaoZhAl0Moquf1Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/745bdb-104b-49c7-99d5-cec33ba1bdf5/1/nV3kkP-HTpaJzs9ybLtOL1H2xzE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.145.64.0/19
Signature Algorithm: sha256WithRSAEncryption
9c:02:3f:72:2b:11:ad:d8:3a:5f:5f:86:e6:09:c2:d9:fb:a7:
bf:11:01:97:0a:85:3f:5f:d7:6d:fb:e5:ac:32:66:10:b1:88:
b1:e0:4a:3e:ce:53:6b:82:27:3d:23:e0:6f:5f:5f:1a:65:5b:
57:2e:7d:1a:68:d8:30:f5:9b:37:84:67:6b:a6:3c:db:ae:5c:
b3:0d:14:3e:d6:48:e7:d4:7d:b8:ae:1a:28:a9:6d:13:a6:77:
12:fd:6c:f2:04:0c:c1:ae:b5:0a:7f:87:85:25:5b:97:17:e4:
94:8a:a5:ec:d3:27:8a:da:3a:1f:48:10:d1:2f:fc:b8:1c:2f:
7b:fe:52:12:9a:4c:15:cd:ab:4b:62:e0:bc:f0:d1:e6:cc:38:
46:96:13:2c:0e:c8:c8:55:d5:93:0a:76:30:23:99:b9:cd:67:
85:82:6b:89:4e:15:59:4b:a9:06:5a:b9:07:33:3e:d5:69:b4:
f6:bf:3c:57:14:77:b9:12:78:0d:2b:1b:95:37:dc:16:0b:f8:
a8:09:0c:62:de:fb:0e:e6:d9:98:de:b0:02:69:98:01:ac:d6:
61:33:a4:4a:80:48:0c:56:e5:fd:cb:84:b8:8d:60:84:6c:e5:
f2:71:64:b0:fb:51:56:61:3d:c4:9f:74:00:25:02:22:71:88:
89:ac:ff:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:49 2025 by rpki-client on console.sobornost.net