Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/aa9e97-4001-48a4-bf80-3d25458b39ee/1/DjD9dQKu2fp9cHrAn1sIWGhC488.roa
File: DjD9dQKu2fp9cHrAn1sIWGhC488.roa (raw, json)
Hash identifier: fAPGT8GWJz86zGyzRAQmnMcTrszvTZhO+N/oXftz62E=
Subject key identifier: 0E:30:FD:75:02:AE:D9:FA:7D:70:7A:C0:9F:5B:08:58:68:42:E3:CF
Certificate issuer: /CN=d2cb5d181afea69f39e17112593be4b00e584b4d
Certificate serial: 0194266B2D0C3375FCC2793AF7E0344F7C14
Authority key identifier: D2:CB:5D:18:1A:FE:A6:9F:39:E1:71:12:59:3B:E4:B0:0E:58:4B:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0stdGBr-pp854XESWTvksA5YS00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/aa9e97-4001-48a4-bf80-3d25458b39ee/1/DjD9dQKu2fp9cHrAn1sIWGhC488.roa
Signing time: Thu 02 Jan 2025 09:49:05 +0000
ROA not before: Thu 02 Jan 2025 09:49:05 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214814
IP address blocks: 193.164.208.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:2d:0c:33:75:fc:c2:79:3a:f7:e0:34:4f:7c:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2cb5d181afea69f39e17112593be4b00e584b4d
Validity
Not Before: Jan 2 09:49:05 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0e30fd7502aed9fa7d707ac09f5b08586842e3cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:d5:f2:96:8e:6d:b2:de:b7:45:d7:84:b9:56:
4f:39:37:35:b1:79:44:0f:ee:78:53:bb:dc:a6:7f:
50:96:23:7a:56:07:03:00:06:ee:66:c4:31:a9:03:
d7:91:3c:94:6e:88:b7:8e:1f:4f:a2:c1:d9:69:57:
24:3c:c2:ff:1d:2d:0e:e7:73:81:07:82:b4:b7:5f:
90:8f:a5:1b:2d:0f:bf:35:2e:11:09:c1:88:3c:cc:
49:aa:cd:ea:95:ed:a4:d4:64:6b:cc:65:bd:00:93:
d3:83:1e:68:fa:88:16:bb:88:39:fa:7a:c2:8b:12:
a6:e1:88:1d:eb:e0:a8:fa:25:64:42:40:15:49:97:
bb:83:c2:e9:66:22:5a:13:dc:c1:63:22:5a:3e:cf:
59:9b:ad:09:04:6c:35:7f:68:80:cb:02:01:41:68:
9e:d6:81:de:eb:44:1f:44:a6:63:ca:52:fb:ae:ac:
5e:07:70:19:40:eb:55:37:4c:a8:41:3c:4f:cb:c1:
53:9b:fd:8b:5b:e4:61:0b:fb:14:15:59:0f:ba:52:
68:f4:67:65:01:17:45:7c:c2:37:e9:a1:21:0c:06:
80:36:8e:cc:87:c8:0a:13:e5:fc:3b:af:dd:3b:fb:
f1:a8:7d:03:c8:74:8e:6b:33:5c:35:55:ed:b1:34:
76:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:30:FD:75:02:AE:D9:FA:7D:70:7A:C0:9F:5B:08:58:68:42:E3:CF
X509v3 Authority Key Identifier:
keyid:D2:CB:5D:18:1A:FE:A6:9F:39:E1:71:12:59:3B:E4:B0:0E:58:4B:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0stdGBr-pp854XESWTvksA5YS00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/aa9e97-4001-48a4-bf80-3d25458b39ee/1/DjD9dQKu2fp9cHrAn1sIWGhC488.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/aa9e97-4001-48a4-bf80-3d25458b39ee/1/0stdGBr-pp854XESWTvksA5YS00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.164.208.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:44:f6:3f:4a:6b:44:39:7a:d3:f8:a6:0f:ae:26:f4:74:a3:
84:fa:57:ca:0b:f8:e3:40:54:74:16:83:6f:2a:0b:06:b0:05:
aa:ae:2b:61:17:2f:26:e4:c1:a1:39:5e:10:38:8b:70:11:2e:
ac:9d:0d:a7:ac:3c:c9:f0:35:8e:fe:89:99:1e:89:75:94:54:
57:75:c6:ed:54:ed:0c:98:c0:fd:1f:b9:18:72:f2:94:73:0d:
af:86:64:5b:1b:c5:9b:06:9a:c4:8e:74:29:79:ed:5f:37:66:
03:b2:e4:c2:c0:d4:71:ec:dc:e6:63:43:17:0e:d8:dd:e8:7b:
8d:12:de:a6:c1:19:d2:21:12:7d:af:89:b5:52:6d:c8:61:03:
9a:e2:35:d0:81:11:21:0f:3a:69:c5:0d:6e:ad:c3:6e:e6:a8:
ae:1f:98:d8:6f:c1:ce:62:6e:48:cc:ae:96:85:b0:6a:9b:56:
e0:17:f5:b1:60:7d:ca:83:db:73:f5:40:c9:5d:25:78:ea:8f:
31:26:dc:e9:7a:b6:c9:31:1b:c7:98:c1:19:52:48:1c:ae:22:
62:3b:7a:61:a1:43:7a:b2:60:de:e2:b8:ef:5c:08:de:e0:f3:
35:48:45:d2:b2:88:9c:65:3c:f7:e3:c2:12:69:59:44:e4:ee:
7d:ea:c7:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:04 2025 by rpki-client on console.sobornost.net