Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/91cfe7-5c2d-474a-b587-c45852c7be20/1/526G98YrX5YRgU8kSVFlOR-68SU.roa
File: 526G98YrX5YRgU8kSVFlOR-68SU.roa (raw, json)
Hash identifier: EfmIyH+1frBE08mLPE+N4lUdJCEbw7QSSljLZgrUP1M=
Subject key identifier: E7:6E:86:F7:C6:2B:5F:96:11:81:4F:24:49:51:65:39:1F:BA:F1:25
Certificate issuer: /CN=60096e374092cc300bd0bb06c41640932ecf8b49
Certificate serial: 019423698EA440ED23E6E7150F0E97AA5D18
Authority key identifier: 60:09:6E:37:40:92:CC:30:0B:D0:BB:06:C4:16:40:93:2E:CF:8B:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YAluN0CSzDAL0LsGxBZAky7Pi0k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/91cfe7-5c2d-474a-b587-c45852c7be20/1/526G98YrX5YRgU8kSVFlOR-68SU.roa
Signing time: Wed 01 Jan 2025 19:48:27 +0000
ROA not before: Wed 01 Jan 2025 19:48:27 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 15598
IP address blocks: 193.238.27.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:69:8e:a4:40:ed:23:e6:e7:15:0f:0e:97:aa:5d:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60096e374092cc300bd0bb06c41640932ecf8b49
Validity
Not Before: Jan 1 19:48:27 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e76e86f7c62b5f9611814f24495165391fbaf125
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:41:e9:56:ce:45:52:74:d1:bc:ed:84:92:81:
ee:47:b9:7e:49:64:3a:60:63:58:2f:5c:af:00:cc:
6c:64:e2:d2:a0:ac:6b:73:e0:10:69:ce:9b:e7:39:
4c:8e:68:38:c9:8a:c4:dc:fd:41:96:e8:f2:f7:f1:
ff:1e:c3:4a:46:46:28:9a:c7:83:7c:ff:a0:f1:c4:
ad:42:1a:cb:f4:ea:8b:27:56:de:0f:1d:64:01:2d:
12:f1:c1:0c:25:92:26:b1:84:32:7e:26:51:e0:e3:
84:32:94:c1:f3:55:27:9b:92:58:ee:f1:18:68:d2:
fe:8f:b3:a9:3e:c0:41:65:75:7a:ac:fa:6e:9b:0b:
9d:4b:17:a7:c8:f7:75:3d:b4:90:a3:00:ed:a4:d5:
2d:16:ea:18:d9:0d:69:78:85:c6:8e:e3:b6:7a:69:
2b:87:53:75:b3:e4:0b:4e:2a:e6:fd:e7:1b:bc:b3:
00:4f:f2:59:15:fa:d5:3e:c2:35:40:51:a2:e3:78:
ce:76:24:61:4e:c7:ed:be:c8:9b:d6:cb:be:44:a2:
5f:98:a2:8c:08:4a:ce:e0:2c:70:13:cc:e5:2c:0a:
2d:fc:ab:96:d8:9d:65:cb:35:71:15:86:f0:83:b5:
b9:48:59:ab:d6:41:41:96:9c:aa:05:7b:eb:3d:7c:
18:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:6E:86:F7:C6:2B:5F:96:11:81:4F:24:49:51:65:39:1F:BA:F1:25
X509v3 Authority Key Identifier:
keyid:60:09:6E:37:40:92:CC:30:0B:D0:BB:06:C4:16:40:93:2E:CF:8B:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YAluN0CSzDAL0LsGxBZAky7Pi0k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/91cfe7-5c2d-474a-b587-c45852c7be20/1/526G98YrX5YRgU8kSVFlOR-68SU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/91cfe7-5c2d-474a-b587-c45852c7be20/1/YAluN0CSzDAL0LsGxBZAky7Pi0k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.238.27.0/24
Signature Algorithm: sha256WithRSAEncryption
be:7a:ac:70:e5:31:91:e0:a1:64:c8:9a:d5:48:58:af:0d:58:
09:20:71:3e:fb:21:f4:29:d2:ef:f9:8f:36:f6:51:37:2c:bd:
df:08:d4:36:1c:f1:bf:71:f7:8e:9a:97:1f:b3:66:85:28:e3:
e0:51:81:26:f8:2f:c8:85:85:c0:1e:00:0f:95:95:cd:4c:50:
9e:ca:d0:d2:8a:44:0c:12:4a:b0:ec:ab:6c:70:44:8b:42:5d:
69:b9:25:7d:66:6e:da:ea:ff:2f:61:34:a5:16:2c:e2:77:03:
a3:31:4e:30:93:05:36:e3:fe:b2:be:31:b8:4d:6d:50:15:d1:
76:0b:ac:5c:ba:4d:44:60:15:fa:07:c3:a8:70:8c:94:70:84:
7e:a5:96:c9:65:0e:df:5f:41:8b:5e:17:b6:e5:55:34:81:d1:
a7:79:c6:9d:80:0e:92:ef:ea:8e:61:11:61:16:89:92:df:ff:
5e:e6:81:6d:6a:00:48:74:86:26:23:6b:37:e9:50:d0:1c:ea:
44:40:87:fa:fa:37:e6:0b:e1:32:92:25:ff:70:fe:5b:0f:25:
f8:9c:09:bb:5f:ff:e3:75:c0:b5:71:fb:0c:20:0c:9c:db:74:
59:02:cb:97:6d:8f:bd:e2:9e:0a:28:93:58:c4:2c:43:21:fd:
07:a3:c5:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:12 2025 by rpki-client on console.sobornost.net