Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/XNLU8qoxsRXpQnmwz4ctSe-cqyE.roa
File: XNLU8qoxsRXpQnmwz4ctSe-cqyE.roa (raw, json)
Hash identifier: JQ5L08jadmyYilDYeIqvPylZ8SNDZ1MGMwYpTLmwoLo=
Subject key identifier: 5C:D2:D4:F2:AA:31:B1:15:E9:42:79:B0:CF:87:2D:49:EF:9C:AB:21
Certificate issuer: /CN=2378a4a9c52325a85920809ba1a4d89e21c02f17
Certificate serial: 0194274818C56D1A02113D380D62A1BE5AC6
Authority key identifier: 23:78:A4:A9:C5:23:25:A8:59:20:80:9B:A1:A4:D8:9E:21:C0:2F:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I3ikqcUjJahZIICboaTYniHALxc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/XNLU8qoxsRXpQnmwz4ctSe-cqyE.roa
Signing time: Thu 02 Jan 2025 13:50:23 +0000
ROA not before: Thu 02 Jan 2025 13:50:23 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 205364
IP address blocks: 195.230.148.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:18:c5:6d:1a:02:11:3d:38:0d:62:a1:be:5a:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2378a4a9c52325a85920809ba1a4d89e21c02f17
Validity
Not Before: Jan 2 13:50:23 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5cd2d4f2aa31b115e94279b0cf872d49ef9cab21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:8c:ce:ef:1a:31:c3:ae:18:0f:42:c3:71:bf:
1d:b7:a1:4e:59:51:29:1d:26:43:a6:0a:40:c6:ca:
94:be:4b:d3:ce:ce:4d:41:59:7f:43:e5:7c:60:b1:
fb:38:d7:73:11:73:dd:f8:84:e8:aa:a0:4f:b4:6e:
4d:9a:0c:a5:e2:c6:7d:fe:29:22:65:54:d5:af:f7:
4c:ae:3a:c2:f5:42:88:a1:cd:c2:9d:08:4b:a1:c1:
42:de:f3:3e:9d:95:4a:97:95:6b:b7:9e:f8:78:f1:
74:12:04:1f:af:be:89:fb:b8:da:f6:12:19:0b:fe:
d1:4a:fe:95:c8:c7:85:f4:d3:8f:e5:44:bf:bb:e2:
53:58:e5:68:84:ff:89:ff:c0:af:29:70:21:3b:eb:
14:7c:cd:c8:ca:1a:86:57:a4:2b:d2:a9:37:89:6f:
09:80:16:ff:d0:85:c6:14:dc:bd:51:84:da:f4:c0:
8b:fe:6c:d1:70:6f:ef:7f:5b:6d:4b:95:86:e1:90:
ba:58:04:f4:04:fe:44:72:3e:22:9f:e9:13:dd:d5:
6e:2f:c9:8c:4d:8a:ac:4b:bb:d0:b8:10:03:39:3e:
09:92:3f:1b:ed:7f:40:ef:76:a0:6e:fe:44:92:bc:
87:c5:cf:55:4b:ed:a8:50:ed:b9:9d:c8:99:4e:f9:
f3:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:D2:D4:F2:AA:31:B1:15:E9:42:79:B0:CF:87:2D:49:EF:9C:AB:21
X509v3 Authority Key Identifier:
keyid:23:78:A4:A9:C5:23:25:A8:59:20:80:9B:A1:A4:D8:9E:21:C0:2F:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I3ikqcUjJahZIICboaTYniHALxc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/XNLU8qoxsRXpQnmwz4ctSe-cqyE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/I3ikqcUjJahZIICboaTYniHALxc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.230.148.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:81:46:f5:1e:f3:15:18:7e:42:8a:c7:2a:86:ce:36:88:d5:
ed:9a:6a:0f:18:34:41:82:0a:b6:e4:fd:5d:39:35:cc:0f:43:
b2:53:ab:60:9f:5c:91:fc:9b:38:5c:f4:17:5c:b6:2d:ea:e0:
35:5e:05:57:d9:5c:f2:04:f3:53:04:90:14:f2:e6:65:bc:ae:
e3:90:88:7b:62:17:b9:ec:c4:45:b1:3f:d7:17:82:96:75:da:
e6:13:04:7b:cf:48:9d:c0:2d:37:8e:10:88:ce:cc:57:d1:51:
cf:20:e1:c9:88:8d:bb:eb:62:75:4f:87:3b:d2:1a:a2:b7:d3:
69:0c:6f:bd:49:55:72:35:91:e9:bc:15:85:65:2f:70:8a:63:
92:5c:bd:f3:0c:4a:fa:ef:9a:1d:d8:a0:98:c5:22:b1:75:b0:
8f:bd:ca:90:54:85:f5:a5:94:83:44:9f:48:d1:a9:72:63:39:
39:41:96:a5:33:c6:55:b2:05:58:ac:8b:07:51:54:f3:50:77:
e0:77:99:7f:70:66:e3:32:5c:7b:7b:c3:67:04:1a:60:bd:5e:
77:af:d2:14:42:63:3b:e7:00:e2:67:36:90:81:dd:97:72:bf:
28:6e:9f:d5:c1:e7:5c:c3:4d:c6:64:69:01:56:5c:b2:ff:0b:
bf:9d:6c:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:18 2025 by rpki-client on console.sobornost.net