Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/94622d-c26d-4376-b059-bd405419b00d/1/Uxu1JjHkshCCeiHLHxVp_E0lRZs.roa
File: Uxu1JjHkshCCeiHLHxVp_E0lRZs.roa (raw, json)
Hash identifier: YvTnmumvwq+sxP66uResD/jRGFZs7Uiz5KOMG1wGYVo=
Subject key identifier: 53:1B:B5:26:31:E4:B2:10:82:7A:21:CB:1F:15:69:FC:4D:25:45:9B
Certificate issuer: /CN=d38579e4c7da01df0465186236e9af27eb7312ed
Certificate serial: 0195DE4BE20F019669128FE4F284E401CA5E
Authority key identifier: D3:85:79:E4:C7:DA:01:DF:04:65:18:62:36:E9:AF:27:EB:73:12:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/04V55MfaAd8EZRhiNumvJ-tzEu0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/94622d-c26d-4376-b059-bd405419b00d/1/Uxu1JjHkshCCeiHLHxVp_E0lRZs.roa
Signing time: Fri 28 Mar 2025 19:47:49 +0000
ROA not before: Fri 28 Mar 2025 19:47:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 41820
IP address blocks: 194.9.71.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:de:4b:e2:0f:01:96:69:12:8f:e4:f2:84:e4:01:ca:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d38579e4c7da01df0465186236e9af27eb7312ed
Validity
Not Before: Mar 28 19:47:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=531bb52631e4b210827a21cb1f1569fc4d25459b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:c6:de:9f:a0:c1:1a:3e:71:57:47:36:7f:b6:
27:82:dd:72:c2:8c:37:7c:53:47:34:ab:56:bf:30:
60:55:4a:17:c0:fb:79:fc:e2:3d:51:2d:04:d0:41:
18:49:71:0d:c7:e4:ae:22:91:13:7c:34:40:83:cf:
cd:96:01:8d:cc:23:53:ae:a3:b4:d8:5b:ce:4e:fb:
48:c2:a3:df:2e:f5:c3:24:48:f5:31:bd:53:45:c6:
36:89:ca:00:2d:ca:77:67:cc:48:dd:97:e2:40:05:
6a:77:94:5a:3a:77:7c:61:dd:88:cf:bf:47:4a:5c:
73:66:02:46:0d:0a:e4:cd:cf:7d:93:83:2d:b2:29:
50:66:75:bd:38:b8:64:f2:3d:37:51:41:33:02:97:
9f:df:2d:3b:34:39:38:9e:62:e1:ce:08:14:f8:dc:
fb:6d:d9:34:5a:f8:d1:26:07:3d:22:aa:90:95:fa:
7a:54:47:50:98:3e:b5:c0:0d:84:28:b1:10:8b:20:
62:b7:74:be:a6:84:f9:5a:c7:f5:ba:71:ab:20:a8:
b8:91:a9:1f:61:50:1b:b2:b5:9a:d9:ea:06:cf:05:
e0:b9:4f:4f:7a:8f:44:32:4e:5a:98:df:a6:6f:e4:
52:2b:29:55:34:70:b8:8b:53:e3:1d:18:92:c1:55:
ff:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:1B:B5:26:31:E4:B2:10:82:7A:21:CB:1F:15:69:FC:4D:25:45:9B
X509v3 Authority Key Identifier:
keyid:D3:85:79:E4:C7:DA:01:DF:04:65:18:62:36:E9:AF:27:EB:73:12:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/04V55MfaAd8EZRhiNumvJ-tzEu0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/94622d-c26d-4376-b059-bd405419b00d/1/Uxu1JjHkshCCeiHLHxVp_E0lRZs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/94622d-c26d-4376-b059-bd405419b00d/1/04V55MfaAd8EZRhiNumvJ-tzEu0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.9.71.0/24
Signature Algorithm: sha256WithRSAEncryption
11:9b:51:55:b9:71:e6:bd:c2:b0:32:c2:e6:da:37:2a:43:ca:
64:94:10:66:aa:fe:ab:e2:07:1d:2c:d7:46:8b:6f:d5:ae:d4:
82:13:e6:86:d2:37:bc:cd:53:fc:d9:2c:d1:12:e6:08:7f:7e:
45:fa:af:1f:2d:55:c2:19:7d:f7:a0:f9:92:91:5f:50:3e:fd:
6b:78:e1:67:ea:f9:21:a5:60:70:39:7d:1c:f8:47:3d:30:21:
4b:ed:ec:3b:36:9c:44:d2:59:4e:ed:eb:97:18:31:36:e0:a1:
0c:aa:55:d2:8b:b7:ab:59:15:f9:5c:6f:a4:49:9f:d2:e4:6f:
67:37:05:0b:dc:0a:81:d3:eb:a4:01:59:0d:d7:13:03:ac:71:
c4:0c:ec:aa:38:71:5a:29:1d:2f:fe:a8:04:d1:74:15:6f:0a:
c9:84:c9:2d:84:d1:ee:ce:a2:df:21:4f:51:da:fa:1c:73:3f:
83:dc:89:0a:3a:0e:55:57:65:bd:c8:6f:46:2c:b4:e5:18:88:
27:0c:be:7b:59:4c:22:c8:71:b3:31:80:ce:f9:18:c8:67:fd:
dd:f3:28:fe:ca:d1:7a:2c:90:14:0b:f8:14:a4:e5:e3:34:6e:
6a:b7:82:85:85:13:3b:a3:8a:41:4a:15:b1:5c:ee:03:94:c5:
a7:71:c1:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:09 2025 by rpki-client on console.sobornost.net