Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/d3684a-4525-476f-8c48-69d71bf2d353/1/xGM69jz3lBB1TpIDVJ5nLe6CA9c.roa
File: xGM69jz3lBB1TpIDVJ5nLe6CA9c.roa (raw, json)
Hash identifier: SYU2Je8e6GjpcEI+Nr3BgTNyIlBoXqCEqRNdDn2ooEU=
Subject key identifier: C4:63:3A:F6:3C:F7:94:10:75:4E:92:03:54:9E:67:2D:EE:82:03:D7
Certificate issuer: /CN=f7c0ebd9ff7dc6e81f8c3548c7c2e8cdc7967d6f
Certificate serial: 019420686F5060AFD1659027AEAFA811B225
Authority key identifier: F7:C0:EB:D9:FF:7D:C6:E8:1F:8C:35:48:C7:C2:E8:CD:C7:96:7D:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/98Dr2f99xugfjDVIx8LozceWfW8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/d3684a-4525-476f-8c48-69d71bf2d353/1/xGM69jz3lBB1TpIDVJ5nLe6CA9c.roa
Signing time: Wed 01 Jan 2025 05:48:22 +0000
ROA not before: Wed 01 Jan 2025 05:48:22 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 50111
IP address blocks: 193.104.138.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:68:6f:50:60:af:d1:65:90:27:ae:af:a8:11:b2:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7c0ebd9ff7dc6e81f8c3548c7c2e8cdc7967d6f
Validity
Not Before: Jan 1 05:48:22 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c4633af63cf79410754e9203549e672dee8203d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:34:a4:f6:23:87:79:6d:a6:63:f3:7d:67:1e:
0c:17:27:02:a1:da:df:01:88:18:e4:8f:ae:59:05:
e0:8f:3d:bf:69:05:06:51:e7:75:b8:de:f8:ed:06:
f5:06:79:37:f5:e0:58:17:58:fe:b6:ed:92:6e:10:
2d:31:8d:c4:68:4c:fa:e3:c0:90:d4:57:c9:18:f2:
b0:50:9e:d0:e3:c3:3d:f4:0e:f7:4d:e0:d6:2d:35:
67:66:65:50:94:aa:c3:5f:e8:10:ef:c6:d3:6d:1b:
7f:91:f6:2c:7d:21:e9:c5:cb:83:0c:28:b7:43:b1:
e6:2d:d1:06:77:91:35:e1:11:8f:c0:ce:f3:4e:a6:
47:52:84:4e:b9:94:a4:58:3b:a3:90:2d:cb:17:93:
64:b6:b1:35:f6:16:e9:c4:9f:27:5b:cb:46:2b:b5:
f1:b1:38:2f:6f:20:b6:23:39:fc:72:36:d2:34:20:
39:6f:b6:50:a0:8c:47:dc:be:5f:6e:2b:86:6b:d2:
54:2e:b6:95:eb:2f:9d:2f:d2:bc:c7:7c:63:d8:83:
77:b4:82:ea:d3:b8:32:af:05:73:5b:44:ed:f3:4a:
61:9a:4a:a1:72:87:43:02:a6:8c:0c:00:02:0c:ca:
24:8d:55:70:4c:09:2e:24:8c:92:52:d4:08:1c:3c:
34:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:63:3A:F6:3C:F7:94:10:75:4E:92:03:54:9E:67:2D:EE:82:03:D7
X509v3 Authority Key Identifier:
keyid:F7:C0:EB:D9:FF:7D:C6:E8:1F:8C:35:48:C7:C2:E8:CD:C7:96:7D:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/98Dr2f99xugfjDVIx8LozceWfW8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/d3684a-4525-476f-8c48-69d71bf2d353/1/xGM69jz3lBB1TpIDVJ5nLe6CA9c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/d3684a-4525-476f-8c48-69d71bf2d353/1/98Dr2f99xugfjDVIx8LozceWfW8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.104.138.0/24
Signature Algorithm: sha256WithRSAEncryption
bf:7d:5b:b7:c5:1f:99:79:01:b7:5b:25:ad:78:76:d6:6e:06:
18:99:eb:e5:46:8c:7c:24:bf:c6:41:15:e7:f7:15:16:d0:e9:
a9:23:1d:b7:6f:95:22:8e:a3:a9:75:c7:61:8f:64:f4:15:0d:
fe:91:c8:30:ff:cd:ab:90:5a:68:d1:73:f6:76:88:81:f1:e3:
45:24:9d:4e:41:91:0a:95:e5:a1:8a:44:5f:88:b8:80:91:f0:
7f:82:f5:11:9b:98:f2:7d:e5:c2:e3:a4:a7:cf:cb:6a:72:54:
12:3e:09:22:ac:28:a3:9b:a4:27:2b:aa:e1:21:1f:0a:64:5c:
eb:2e:ee:f9:c8:dc:b9:06:f5:3b:1a:25:e6:1b:78:b7:7b:32:
a1:c4:29:e2:67:d1:99:e3:7c:7f:2f:57:f1:fe:ff:29:79:9a:
96:6c:c3:e4:e1:58:14:17:c1:40:fa:eb:02:39:73:5d:c4:0f:
65:c4:fd:b5:03:80:19:27:1d:03:3a:1c:41:0c:ca:31:4b:86:
15:d4:a6:0e:c2:20:67:00:b9:82:ee:12:34:64:9e:7c:ba:37:
5a:f5:87:66:e1:4f:f9:49:a4:52:8f:01:82:60:06:24:08:07:
2a:2b:6d:84:64:c7:c7:11:99:3a:f3:8c:09:7d:4a:a4:c7:39:
cf:27:45:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:10 2025 by rpki-client on console.sobornost.net