Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/2ad34e-b1e5-4d8c-948e-0f4dbb890bd0/1/Ov2ltNd3_GI0QKOtR9rEki5pLjE.roa
File: Ov2ltNd3_GI0QKOtR9rEki5pLjE.roa (raw, json)
Hash identifier: iFuAGy4E8LwCuPbJ6qoGTg8JfJxkYxMsbntoA7ssMKI=
Subject key identifier: 3A:FD:A5:B4:D7:77:FC:62:34:40:A3:AD:47:DA:C4:92:2E:69:2E:31
Certificate issuer: /CN=54b0bec8f58db0ce5b91f34505277e40bfd3ae11
Certificate serial: 019427481805D138912B6A2B5CACAB8E51CA
Authority key identifier: 54:B0:BE:C8:F5:8D:B0:CE:5B:91:F3:45:05:27:7E:40:BF:D3:AE:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VLC-yPWNsM5bkfNFBSd-QL_TrhE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/2ad34e-b1e5-4d8c-948e-0f4dbb890bd0/1/Ov2ltNd3_GI0QKOtR9rEki5pLjE.roa
Signing time: Thu 02 Jan 2025 13:50:23 +0000
ROA not before: Thu 02 Jan 2025 13:50:23 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43708
IP address blocks: 95.85.192.0/18 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:18:05:d1:38:91:2b:6a:2b:5c:ac:ab:8e:51:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54b0bec8f58db0ce5b91f34505277e40bfd3ae11
Validity
Not Before: Jan 2 13:50:23 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3afda5b4d777fc623440a3ad47dac4922e692e31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:2d:95:28:eb:af:39:1f:33:4e:94:ca:a2:14:
8f:f1:98:52:f2:55:e1:fe:d0:66:c4:84:6e:8a:6f:
05:20:79:dd:ef:59:74:de:06:67:d8:bc:66:10:60:
f7:8f:07:c4:68:7c:85:ff:aa:76:2d:48:2c:fa:e1:
33:92:82:25:48:4d:8d:c5:ca:90:1b:6f:64:54:3e:
62:d9:10:e3:4b:57:7b:b2:59:6e:9c:8e:07:32:f6:
26:2c:d1:94:21:f0:96:3a:fa:d0:52:6e:a1:f7:a8:
d1:b2:0d:29:f1:e1:bb:19:98:fa:a4:1e:3e:44:33:
52:65:2c:10:1a:8a:80:56:95:a3:79:1f:10:dd:5b:
b4:dd:0c:9a:37:cb:e1:b1:77:ae:b9:f7:ef:36:49:
85:09:87:cd:92:ea:08:ed:6d:2e:4f:7f:e3:2b:d4:
21:40:3b:60:74:81:0c:68:ab:98:f2:d5:8f:39:9c:
a6:29:05:47:b3:64:8d:44:02:45:ed:7a:f4:0a:b0:
da:3b:d8:22:a9:a4:ea:80:d5:52:70:60:ed:07:70:
17:1b:41:92:bf:5b:d4:1b:1f:51:bf:a9:08:fe:46:
0e:f8:b3:67:e2:ee:82:75:f9:21:e9:82:74:ae:27:
0c:e5:af:20:82:42:04:eb:19:e6:f5:3c:c4:fb:e9:
13:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:FD:A5:B4:D7:77:FC:62:34:40:A3:AD:47:DA:C4:92:2E:69:2E:31
X509v3 Authority Key Identifier:
keyid:54:B0:BE:C8:F5:8D:B0:CE:5B:91:F3:45:05:27:7E:40:BF:D3:AE:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VLC-yPWNsM5bkfNFBSd-QL_TrhE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/2ad34e-b1e5-4d8c-948e-0f4dbb890bd0/1/Ov2ltNd3_GI0QKOtR9rEki5pLjE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/2ad34e-b1e5-4d8c-948e-0f4dbb890bd0/1/VLC-yPWNsM5bkfNFBSd-QL_TrhE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.85.192.0/18
Signature Algorithm: sha256WithRSAEncryption
8d:6d:89:28:60:3b:24:1d:3e:64:a6:c9:88:a8:a0:36:0f:3d:
b9:c4:57:ea:1a:95:fd:e3:10:23:5c:b6:92:0c:ed:18:fb:58:
a7:6a:4c:1f:67:d9:ce:5d:56:28:cf:7e:39:04:aa:2c:71:cf:
34:4c:57:67:c9:a6:9c:0f:ce:4f:8d:9a:51:49:47:73:4d:ed:
50:17:70:5c:f4:86:35:8c:4c:48:69:24:df:93:8a:f9:05:73:
10:32:33:2a:21:93:3b:db:7b:82:56:63:c7:9d:14:84:07:16:
a0:ce:1b:61:f0:6f:cb:82:8f:fd:48:16:86:b4:2f:ab:2c:a3:
cd:94:f4:a0:65:21:4f:9a:e1:e9:57:f9:0c:c0:0b:c4:fd:f7:
2e:ff:dd:c9:86:fd:50:5e:7b:2c:9a:be:6e:93:53:98:91:b2:
80:0c:64:ae:4a:85:65:a8:16:b8:2a:42:32:e3:cc:55:e0:fd:
e8:0e:61:84:aa:ba:a5:64:69:62:b5:77:7b:51:bf:9a:72:30:
58:1c:83:43:f8:88:6b:ef:a3:cb:28:ab:0d:89:7d:35:7f:0d:
91:01:06:4b:bb:6b:4f:ef:77:29:53:7f:e0:c6:62:b1:86:76:
57:2d:5b:1e:6e:c3:c0:f1:d9:33:c8:2e:cb:dd:3b:d5:79:5b:
7f:d0:07:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:13 2025 by rpki-client on console.sobornost.net