Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/6a54bf-f00f-467a-bf57-aab0e414cc63/1/Jhq91rxsv2WDUPAoN1fbsyaCM6g.roa
File: Jhq91rxsv2WDUPAoN1fbsyaCM6g.roa (raw, json)
Hash identifier: nybfHNUP7zn/KmMoeiwkEEs96tiChMxH1OSoiBocUXI=
Subject key identifier: 26:1A:BD:D6:BC:6C:BF:65:83:50:F0:28:37:57:DB:B3:26:82:33:A8
Certificate issuer: /CN=7d149f62447853689c12fb288afeb6b681cfebc1
Certificate serial: 0194266C196B43843990B23C2960B9CE3ABB
Authority key identifier: 7D:14:9F:62:44:78:53:68:9C:12:FB:28:8A:FE:B6:B6:81:CF:EB:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fRSfYkR4U2icEvsoiv62toHP68E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/6a54bf-f00f-467a-bf57-aab0e414cc63/1/Jhq91rxsv2WDUPAoN1fbsyaCM6g.roa
Signing time: Thu 02 Jan 2025 09:50:06 +0000
ROA not before: Thu 02 Jan 2025 09:50:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 50345
IP address blocks: 93.125.108.0/24 maxlen: 24
2a04:2e80:14::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6c:19:6b:43:84:39:90:b2:3c:29:60:b9:ce:3a:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d149f62447853689c12fb288afeb6b681cfebc1
Validity
Not Before: Jan 2 09:50:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=261abdd6bc6cbf658350f0283757dbb3268233a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:7f:5c:5a:fb:1a:f2:26:89:a6:f2:35:86:97:
29:ad:fb:af:37:dd:1e:a4:4d:dd:cc:5d:09:10:4e:
35:af:0e:59:b1:c6:7e:5a:e0:cc:7a:f1:75:75:53:
aa:aa:23:d9:dc:33:71:62:dc:92:f8:68:59:1f:bf:
a0:97:25:3b:5e:67:c7:04:a8:c1:65:41:f9:04:a9:
96:80:de:bc:a9:4b:87:10:5f:b2:a4:77:5b:8f:b8:
24:a8:90:00:40:3c:55:31:4d:e1:e2:a2:64:cc:a8:
cc:38:69:9b:94:2d:93:e1:1a:0c:c8:04:a4:7b:31:
b9:bd:c4:01:d9:1b:35:a3:f4:f5:a8:6d:04:03:80:
07:59:ab:73:af:ac:26:84:b2:4f:9e:aa:92:9f:96:
2d:b6:27:40:44:ff:03:58:e7:7f:90:84:e3:45:76:
04:47:ae:64:d9:74:b8:2e:7b:76:b6:9e:cc:69:c1:
4f:9b:75:d0:49:0c:70:80:29:03:32:ed:a2:67:07:
84:90:46:1d:03:92:85:fd:92:eb:51:3a:82:ee:ad:
98:12:17:6f:66:8a:4e:de:d4:7e:68:5b:de:02:49:
06:93:a3:99:e5:43:71:20:08:12:75:c3:e2:62:6a:
bd:08:38:a0:0b:b0:b2:56:af:a2:02:95:17:c3:60:
56:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:1A:BD:D6:BC:6C:BF:65:83:50:F0:28:37:57:DB:B3:26:82:33:A8
X509v3 Authority Key Identifier:
keyid:7D:14:9F:62:44:78:53:68:9C:12:FB:28:8A:FE:B6:B6:81:CF:EB:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fRSfYkR4U2icEvsoiv62toHP68E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/6a54bf-f00f-467a-bf57-aab0e414cc63/1/Jhq91rxsv2WDUPAoN1fbsyaCM6g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/6a54bf-f00f-467a-bf57-aab0e414cc63/1/fRSfYkR4U2icEvsoiv62toHP68E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.125.108.0/24
IPv6:
2a04:2e80:14::/48
Signature Algorithm: sha256WithRSAEncryption
46:ef:4c:fa:d0:b7:05:9f:04:9d:43:d9:9e:38:7a:89:21:2c:
7a:47:19:c6:87:aa:a9:30:bf:f6:51:47:b5:fe:17:53:ae:9a:
aa:9f:d4:09:24:bf:c2:1a:ec:60:a8:22:08:ed:8e:5f:45:a3:
11:d0:71:d9:df:14:97:bc:35:01:cb:a7:b2:48:87:f6:7c:4f:
3e:e8:d7:8a:21:45:a7:53:52:9b:4f:00:44:dd:47:0e:3b:fb:
80:6b:14:46:7f:33:85:af:74:52:12:f2:de:24:88:36:e2:dd:
5a:da:77:5f:40:60:c3:b1:34:5b:8e:e1:84:e5:b6:98:56:44:
dd:71:88:a9:6d:13:48:f1:7a:c0:80:85:0a:e8:33:ed:44:c3:
75:d2:c8:26:b6:f4:f2:83:b8:1d:ce:d3:d1:c2:57:29:e3:33:
7e:04:2d:b7:3f:82:26:f5:86:50:7c:72:cb:31:83:99:f9:e2:
0d:d0:dc:60:45:a6:44:b5:fa:bc:9b:7a:ec:23:57:36:98:03:
90:ee:9d:9a:62:db:ce:70:b4:46:fb:d7:f0:e8:53:f7:b1:8e:
a8:d0:db:f7:d4:bb:a0:af:5f:4c:a7:45:9e:55:54:d8:e0:58:
52:66:44:45:fc:ee:5b:0d:79:26:5e:cd:a0:04:f1:23:4a:59:
34:cb:7d:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:03 2025 by rpki-client on console.sobornost.net