Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/70c477-a8cd-4a72-b669-1f93c239a012/1/jLqRq9df1G6zlawXTbhxNybx_aU.roa
File: jLqRq9df1G6zlawXTbhxNybx_aU.roa (raw, json)
Hash identifier: U7jgU6c2HeS0w5bhwmU3yd/cT+TakYFUUagP3qrZf9A=
Subject key identifier: 8C:BA:91:AB:D7:5F:D4:6E:B3:95:AC:17:4D:B8:71:37:26:F1:FD:A5
Certificate issuer: /CN=1bd2d463ae15346d5edd7937b8bfa8e09b14376d
Certificate serial: 01941FFA05C55DB4C860494679C32F7D0712
Authority key identifier: 1B:D2:D4:63:AE:15:34:6D:5E:DD:79:37:B8:BF:A8:E0:9B:14:37:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G9LUY64VNG1e3Xk3uL-o4JsUN20.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/70c477-a8cd-4a72-b669-1f93c239a012/1/jLqRq9df1G6zlawXTbhxNybx_aU.roa
Signing time: Wed 01 Jan 2025 03:47:46 +0000
ROA not before: Wed 01 Jan 2025 03:47:46 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211270
IP address blocks: 194.61.34.0/23 maxlen: 23
194.61.34.0/24 maxlen: 24
194.61.35.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:05:c5:5d:b4:c8:60:49:46:79:c3:2f:7d:07:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1bd2d463ae15346d5edd7937b8bfa8e09b14376d
Validity
Not Before: Jan 1 03:47:46 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8cba91abd75fd46eb395ac174db8713726f1fda5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:ed:f3:7e:18:bf:5d:e0:58:73:34:c0:1b:57:
cf:b7:36:7b:5c:44:78:d9:b9:f1:95:e0:e8:c5:1c:
05:2a:0c:c3:47:79:1e:c3:db:e6:19:c5:7e:43:03:
ce:67:5a:27:7f:52:18:16:ef:f1:db:0b:6a:50:79:
50:7c:01:0a:ed:9c:22:a8:3e:4b:2e:3b:b2:be:48:
0a:60:52:dc:f8:9e:34:4a:c8:b8:7d:ef:6d:84:0f:
ad:13:8a:86:b3:1c:6c:fd:7b:ea:e6:f3:e6:3c:5d:
89:39:0b:5d:b2:88:1f:34:32:9d:89:37:c9:d0:56:
57:27:d9:13:7d:14:39:32:53:85:e0:ae:79:fb:27:
2e:fd:1c:f6:7b:d3:d7:cb:dd:8c:cb:02:8b:b2:d2:
08:f2:83:68:00:86:3e:14:01:c1:7c:27:2b:f4:36:
c8:bc:f6:b9:b1:ab:b2:ff:f3:55:95:b8:e7:ac:3a:
dc:29:2f:a7:c3:bb:b4:73:78:2d:8f:b0:80:6f:f6:
3f:15:11:57:8e:a3:87:d9:39:41:6b:8b:ae:b1:ec:
d9:c2:98:97:3c:bd:9e:3c:2d:e8:a6:67:3b:80:15:
25:2b:85:fc:a5:ef:fe:44:4c:d5:c9:c9:81:99:88:
31:d8:6a:1a:06:e2:1f:53:ae:fa:c4:fd:45:c2:82:
54:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:BA:91:AB:D7:5F:D4:6E:B3:95:AC:17:4D:B8:71:37:26:F1:FD:A5
X509v3 Authority Key Identifier:
keyid:1B:D2:D4:63:AE:15:34:6D:5E:DD:79:37:B8:BF:A8:E0:9B:14:37:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G9LUY64VNG1e3Xk3uL-o4JsUN20.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/70c477-a8cd-4a72-b669-1f93c239a012/1/jLqRq9df1G6zlawXTbhxNybx_aU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/70c477-a8cd-4a72-b669-1f93c239a012/1/G9LUY64VNG1e3Xk3uL-o4JsUN20.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.61.34.0/23
Signature Algorithm: sha256WithRSAEncryption
9b:77:64:8e:e3:98:98:4a:82:fc:9d:55:ad:e6:6c:38:f5:1e:
0c:4e:8f:ea:7d:fe:d5:0d:a8:48:85:29:7a:53:d7:1b:8e:39:
10:2f:57:24:de:af:8a:1d:99:1d:3a:32:ff:67:df:4f:e1:60:
ed:9b:48:6b:31:8d:61:84:d0:62:c9:bf:2f:c5:8f:2f:c8:a5:
4a:0c:a4:4e:80:43:45:02:af:ba:5a:33:f7:8f:4b:39:8b:38:
48:23:4e:bc:87:e2:8a:07:37:64:49:37:d0:50:64:e4:b0:79:
b6:5f:83:91:c5:e4:a1:34:0d:ab:ad:56:04:61:f5:27:f8:c1:
8e:59:7a:a4:52:95:e1:6f:c9:6e:8c:53:63:b4:6d:ae:07:e9:
8f:81:16:5b:41:09:eb:24:7a:f9:06:07:3d:25:57:58:5a:40:
76:d4:c1:de:e2:79:fe:a1:4b:c0:73:15:ce:e5:99:b4:c0:9a:
5f:45:b2:90:0d:47:1e:fd:82:b6:93:ef:11:0a:f1:33:f2:80:
39:ef:f4:cd:02:f6:59:33:d7:82:7a:c2:19:dd:b6:0a:56:ed:
3e:0d:ff:11:b4:38:93:a9:12:03:fc:24:0c:a8:f0:ef:1f:97:
ba:01:6d:b7:4c:71:13:0b:45:d3:d5:5f:11:9b:0e:18:df:cd:
78:ed:6a:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:14 2025 by rpki-client on console.sobornost.net