Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/d520db-bdf8-4f27-8dff-8c130e6841db/1/7x1Ss4505QNa0fMVELtO8LmLJeM.roa
File: 7x1Ss4505QNa0fMVELtO8LmLJeM.roa (raw, json)
Hash identifier: 9SZiDlSiFrfDTptEJc86ZTB/oJuky1dBcaDe8vDIhaU=
Subject key identifier: EF:1D:52:B3:8E:74:E5:03:5A:D1:F3:15:10:BB:4E:F0:B9:8B:25:E3
Certificate issuer: /CN=2ce2995058b3de9aed23a61f7fb7b5b7b193984a
Certificate serial: 019424455C16A04AE9EE849486CD4A2D0173
Authority key identifier: 2C:E2:99:50:58:B3:DE:9A:ED:23:A6:1F:7F:B7:B5:B7:B1:93:98:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LOKZUFiz3prtI6Yff7e1t7GTmEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/d520db-bdf8-4f27-8dff-8c130e6841db/1/7x1Ss4505QNa0fMVELtO8LmLJeM.roa
Signing time: Wed 01 Jan 2025 23:48:32 +0000
ROA not before: Wed 01 Jan 2025 23:48:32 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 29267
IP address blocks: 195.85.211.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:5c:16:a0:4a:e9:ee:84:94:86:cd:4a:2d:01:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ce2995058b3de9aed23a61f7fb7b5b7b193984a
Validity
Not Before: Jan 1 23:48:32 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ef1d52b38e74e5035ad1f31510bb4ef0b98b25e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:7c:de:ad:b3:50:28:0d:f2:22:3b:cb:0b:c3:
c1:57:6a:be:38:2a:b0:82:f1:31:b7:b9:b7:fd:1c:
4d:dc:74:d0:01:e8:f5:bc:11:3c:70:24:c9:a7:8d:
ce:7e:8b:ea:87:91:d0:25:eb:2e:d4:50:01:01:88:
96:d5:7d:9b:5c:d6:07:17:fe:1f:8f:8b:f6:be:b1:
48:cc:fe:63:d8:b4:bd:a2:4e:21:bb:66:eb:40:f0:
ab:53:22:87:9b:be:1c:1b:79:bf:d0:f5:5b:68:2b:
7c:76:70:b3:0b:99:ea:b6:f1:6e:66:cb:06:58:1f:
27:5e:c7:1b:07:79:43:2a:88:2d:07:d2:67:7f:11:
93:fe:09:7b:19:ee:5e:be:cb:f7:95:c2:13:82:2f:
53:8d:5e:cb:7e:72:52:a0:fc:2f:20:17:f6:36:0e:
9e:55:0a:cd:d5:49:6a:ef:e3:53:5a:ba:5f:17:dd:
2d:37:1f:b3:11:5b:d8:8e:21:5d:ab:73:53:fa:65:
79:f4:c0:6e:31:92:77:41:de:d7:14:78:28:5b:26:
7d:b3:ac:44:8a:17:a3:8a:15:92:79:57:2f:ef:3a:
91:00:58:a3:e2:03:5d:d3:30:04:d4:d1:0c:3e:8c:
40:f4:9f:78:c7:44:6b:29:3a:9c:aa:ae:6a:83:5f:
e1:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:1D:52:B3:8E:74:E5:03:5A:D1:F3:15:10:BB:4E:F0:B9:8B:25:E3
X509v3 Authority Key Identifier:
keyid:2C:E2:99:50:58:B3:DE:9A:ED:23:A6:1F:7F:B7:B5:B7:B1:93:98:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LOKZUFiz3prtI6Yff7e1t7GTmEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/d520db-bdf8-4f27-8dff-8c130e6841db/1/7x1Ss4505QNa0fMVELtO8LmLJeM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/d520db-bdf8-4f27-8dff-8c130e6841db/1/LOKZUFiz3prtI6Yff7e1t7GTmEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.85.211.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:1d:fc:d4:15:3d:ad:5e:5b:a0:08:b0:4d:9c:f9:08:c4:55:
a7:7a:53:89:18:82:35:57:82:38:f1:86:f3:bf:d1:d5:9a:0a:
ba:b6:20:e5:e9:bc:09:58:3b:6f:6f:ca:34:82:29:40:39:2f:
f4:12:cf:2f:30:6a:f9:91:94:17:86:94:0e:69:8b:30:e2:dc:
84:f8:05:16:f4:8e:14:f2:f6:a1:63:05:20:5b:0c:df:5a:9a:
d9:cb:8f:15:63:cf:91:c3:39:5c:98:c9:1a:0f:58:fc:ad:dc:
4c:4b:0f:a4:a4:48:4d:2f:af:cf:e2:0b:6c:60:63:0b:78:f3:
86:67:79:d3:97:d2:40:26:f2:e3:fc:b3:5e:97:4e:82:6c:e1:
b9:ca:1e:40:f1:5b:1d:08:fd:67:28:71:fe:ee:a3:e6:4f:b6:
b1:df:77:64:0f:aa:5a:62:0f:2e:30:46:17:16:ad:2e:55:18:
c2:3f:0d:98:1c:86:9b:74:ba:4b:0f:b4:f0:09:2c:76:be:f7:
c1:86:34:e9:57:06:60:c2:03:31:6e:34:72:1b:e9:6d:f7:06:
06:a0:e9:de:dc:1a:eb:bb:a7:c6:fd:7b:a0:ac:7b:d6:ed:c4:
1c:1e:4b:22:92:6b:71:b9:61:77:93:db:25:c8:1e:8f:02:48:
76:d9:1a:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:03 2025 by rpki-client on console.sobornost.net