Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/745bdb-104b-49c7-99d5-cec33ba1bdf5/1/ftQQpBrk0ZFia4n99q7-wX-5E0M.roa
File: ftQQpBrk0ZFia4n99q7-wX-5E0M.roa (raw, json)
Hash identifier: U0GhDpZiZ5saXJRfz3p+tKxwcbveFdHD/WbcCpSo+CQ=
Subject key identifier: 7E:D4:10:A4:1A:E4:D1:91:62:6B:89:FD:F6:AE:FE:C1:7F:B9:13:43
Certificate issuer: /CN=9d5de490ff874e9689cecf726cbb4e2f51f6c731
Certificate serial: 019421B1A08883D55368049748AAE4EEDFAC
Authority key identifier: 9D:5D:E4:90:FF:87:4E:96:89:CE:CF:72:6C:BB:4E:2F:51:F6:C7:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nV3kkP-HTpaJzs9ybLtOL1H2xzE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/745bdb-104b-49c7-99d5-cec33ba1bdf5/1/ftQQpBrk0ZFia4n99q7-wX-5E0M.roa
Signing time: Wed 01 Jan 2025 11:47:56 +0000
ROA not before: Wed 01 Jan 2025 11:47:56 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 47696
IP address blocks: 194.8.96.0/19 maxlen: 25
194.145.64.0/19 maxlen: 25
2a01:8180::/36 maxlen: 42
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b1:a0:88:83:d5:53:68:04:97:48:aa:e4:ee:df:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d5de490ff874e9689cecf726cbb4e2f51f6c731
Validity
Not Before: Jan 1 11:47:56 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7ed410a41ae4d191626b89fdf6aefec17fb91343
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:8d:60:59:92:39:c4:3b:00:38:3e:09:f9:19:
0b:37:37:a5:e9:4b:2d:12:6b:55:81:bb:7f:c9:08:
ec:b1:91:2a:a9:8f:86:93:7b:43:d1:43:34:72:ef:
52:29:14:ea:bc:6a:70:44:66:a4:17:66:1e:44:f6:
5c:22:0c:24:e3:39:45:19:31:d7:30:35:e5:c7:4e:
2e:9e:67:c5:b5:05:38:4f:bb:f8:28:9c:b1:72:f8:
ae:6e:6c:de:35:48:2e:95:07:03:c2:eb:3d:77:42:
f4:a4:6b:63:bb:42:cc:60:23:e8:dc:ed:04:1e:24:
6c:19:04:32:a8:06:59:cc:8f:32:a1:63:25:28:a8:
a3:2d:fd:f5:01:8d:1a:f0:0f:2f:c8:f5:2e:a1:73:
db:6a:16:34:e4:4f:a4:cb:e0:69:98:a3:ac:b4:ec:
1d:26:63:e6:30:09:16:c1:bf:35:50:7f:99:bd:fc:
2f:59:7d:bf:1f:85:f1:24:1b:13:57:dc:fe:6e:8f:
fe:04:af:6a:af:5f:6e:01:12:dd:3b:f6:97:51:32:
dc:56:d5:f4:1c:d4:7c:4d:92:c7:a1:08:50:89:f3:
50:a6:67:c7:d1:a5:b4:c9:bd:f9:7e:ff:b7:a7:21:
a0:7d:f8:8a:7c:cc:3e:7b:24:17:e7:0a:5b:21:2b:
c5:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:D4:10:A4:1A:E4:D1:91:62:6B:89:FD:F6:AE:FE:C1:7F:B9:13:43
X509v3 Authority Key Identifier:
keyid:9D:5D:E4:90:FF:87:4E:96:89:CE:CF:72:6C:BB:4E:2F:51:F6:C7:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nV3kkP-HTpaJzs9ybLtOL1H2xzE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/745bdb-104b-49c7-99d5-cec33ba1bdf5/1/ftQQpBrk0ZFia4n99q7-wX-5E0M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/745bdb-104b-49c7-99d5-cec33ba1bdf5/1/nV3kkP-HTpaJzs9ybLtOL1H2xzE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.8.96.0/19
194.145.64.0/19
IPv6:
2a01:8180::/36
Signature Algorithm: sha256WithRSAEncryption
37:f4:44:41:4e:d5:28:dc:a9:0e:32:b4:6c:1b:cf:d7:dc:90:
0b:aa:95:96:af:0b:83:ec:08:e1:22:50:f0:15:1f:71:8b:2a:
1d:69:b4:b9:e2:76:04:24:a2:6d:bc:f5:99:ca:93:ac:75:b3:
e1:96:96:96:00:43:bd:23:e5:66:e2:fc:df:3f:10:d0:d1:8d:
bb:c8:e2:a5:b6:8f:41:38:79:e0:69:ee:fc:f6:8b:50:69:bd:
2e:24:7e:8d:4b:2c:a4:72:64:c0:c2:5b:bc:5d:de:2d:f7:62:
0c:71:ca:77:72:5c:77:e6:44:c3:60:e1:a2:45:ad:64:53:9f:
ed:85:b9:24:35:6b:68:5d:8f:b7:89:12:dc:56:73:51:bb:4f:
c3:3c:0c:80:ab:87:a3:55:9f:5e:28:b1:68:0c:a2:ac:ed:ba:
b4:b4:27:8c:1a:c8:ca:bc:4a:ba:bf:07:75:74:76:b8:2d:0a:
96:f7:bf:26:3d:ff:ae:3b:92:5d:66:f0:7e:97:ff:4a:9c:26:
eb:e5:30:e7:2d:83:85:9b:e5:c4:5a:f4:bb:9a:84:ca:9f:88:
01:ee:9e:b9:51:4a:ba:a6:b3:e7:0c:44:05:e1:a2:5d:5f:19:
ae:56:ff:51:fa:03:e9:42:e9:d9:03:b5:97:86:27:0f:63:a9:
03:ec:4e:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:49 2025 by rpki-client on console.sobornost.net