Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/22d011-ed42-4d14-a670-d5d51d37949d/1/3wonzEuv12MMdqoQbAGhDT3YzPc.roa
File: 3wonzEuv12MMdqoQbAGhDT3YzPc.roa (raw, json)
Hash identifier: dajuIMLWo+SZXmFUF060/f20zcAO9itEEMxKmJRUhMM=
Subject key identifier: DF:0A:27:CC:4B:AF:D7:63:0C:76:AA:10:6C:01:A1:0D:3D:D8:CC:F7
Certificate issuer: /CN=522399c2789b1a5504f81671cff220c04eaf59f1
Certificate serial: 01959DCD431704AD3BC1493A5FC13EF8D050
Authority key identifier: 52:23:99:C2:78:9B:1A:55:04:F8:16:71:CF:F2:20:C0:4E:AF:59:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UiOZwnibGlUE-BZxz_IgwE6vWfE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/22d011-ed42-4d14-a670-d5d51d37949d/1/3wonzEuv12MMdqoQbAGhDT3YzPc.roa
Signing time: Sun 16 Mar 2025 07:13:49 +0000
ROA not before: Sun 16 Mar 2025 07:13:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213749
IP address blocks: 194.233.51.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:9d:cd:43:17:04:ad:3b:c1:49:3a:5f:c1:3e:f8:d0:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=522399c2789b1a5504f81671cff220c04eaf59f1
Validity
Not Before: Mar 16 07:13:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=df0a27cc4bafd7630c76aa106c01a10d3dd8ccf7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:5e:44:d4:9b:58:54:78:73:1f:53:74:d1:21:
d4:cd:6a:77:62:d6:ce:1c:11:6c:92:c3:fd:0d:33:
9f:3d:87:5a:43:7f:18:52:73:73:91:e4:51:d3:de:
24:2d:d3:9b:8f:f6:59:80:57:cb:a3:58:87:85:fa:
b9:38:c5:90:7e:7d:15:ed:ed:82:ca:26:b1:08:83:
6e:8e:51:2d:67:08:4b:4e:b3:7b:2a:52:49:6e:2c:
9e:8c:a8:40:53:7c:d4:f1:44:02:03:08:1c:f5:af:
62:63:b2:2c:c0:d5:b6:77:34:89:4d:6f:4b:be:39:
1b:13:28:c9:31:6b:30:0d:13:65:49:07:1a:51:71:
e8:58:12:d9:0e:64:20:e1:b2:a3:38:bf:3d:c7:e1:
ea:78:9e:d0:69:57:c0:3a:06:15:d9:5a:49:c4:81:
a6:6b:de:df:49:57:9d:c6:6a:89:c7:72:2d:89:ac:
2b:1f:33:7f:b3:4a:2b:00:b3:2c:87:a1:8f:76:5b:
02:52:5f:2f:e9:05:7f:e1:a4:e0:56:fa:d5:c8:d7:
1d:02:ae:f0:9a:fc:0f:48:96:18:a1:16:12:26:1c:
5a:27:76:55:d5:32:55:53:b5:86:43:be:64:1e:d2:
5a:a7:6b:65:a4:7a:9e:39:56:83:e2:44:df:99:1e:
1c:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:0A:27:CC:4B:AF:D7:63:0C:76:AA:10:6C:01:A1:0D:3D:D8:CC:F7
X509v3 Authority Key Identifier:
keyid:52:23:99:C2:78:9B:1A:55:04:F8:16:71:CF:F2:20:C0:4E:AF:59:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UiOZwnibGlUE-BZxz_IgwE6vWfE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/22d011-ed42-4d14-a670-d5d51d37949d/1/3wonzEuv12MMdqoQbAGhDT3YzPc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/22d011-ed42-4d14-a670-d5d51d37949d/1/UiOZwnibGlUE-BZxz_IgwE6vWfE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.233.51.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:2a:0a:7b:25:64:2a:87:dd:ae:5e:b8:db:87:5f:a5:19:6e:
02:9c:e6:34:9c:27:62:68:1f:7a:ff:e7:6e:65:14:5a:b4:7f:
bb:5e:5e:80:5e:3a:17:02:1e:bf:59:0f:12:52:4c:58:5b:5f:
72:ea:1f:ff:b2:c1:64:29:0d:7f:d8:9f:dd:75:aa:4b:0f:71:
cc:da:84:a3:a6:6a:28:19:2c:82:a8:45:f0:bf:86:f4:6c:f9:
82:2c:a0:2d:c1:4b:c4:0f:35:0d:b6:d5:4b:2f:5d:62:43:b1:
18:6c:4a:00:e5:4e:33:05:dd:8e:e6:b2:b2:a8:d6:d3:cf:30:
62:59:92:b2:b5:66:8c:56:88:4f:a3:4a:8a:a1:90:f4:ec:45:
4f:77:78:c9:0b:77:eb:0a:a7:be:96:b4:ec:72:85:9a:c4:81:
bc:bd:a4:7f:e8:1f:47:02:08:9d:77:f2:d0:e3:0a:ca:15:b1:
22:64:e2:69:65:9c:35:e2:b4:e3:5e:54:82:32:e9:a6:f9:08:
76:1b:e7:68:5b:78:da:a7:21:98:34:1b:40:e9:3b:1e:5b:b6:
5f:64:09:1a:1f:c3:9e:25:f0:61:15:e4:52:36:2e:b6:80:47:
d5:83:37:35:53:bc:a8:b6:c9:6f:f9:60:78:e7:7e:f9:52:69:
6f:da:2c:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:03 2025 by rpki-client on console.sobornost.net