Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/iAGwUWrEVrca0t0z94j3hDbv1ec.roa
File: iAGwUWrEVrca0t0z94j3hDbv1ec.roa (raw, json)
Hash identifier: nB+95Yn5gN8RZNQMbdE5gkNJTgCJUt7wm/yKCdT3QLg=
Subject key identifier: 88:01:B0:51:6A:C4:56:B7:1A:D2:DD:33:F7:88:F7:84:36:EF:D5:E7
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 0195E5E47753A095C7541D2F12818F2C9B70
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/iAGwUWrEVrca0t0z94j3hDbv1ec.roa
Signing time: Sun 30 Mar 2025 07:11:49 +0000
ROA not before: Sun 30 Mar 2025 07:11:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 135682
IP address blocks: 151.242.37.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e5:e4:77:53:a0:95:c7:54:1d:2f:12:81:8f:2c:9b:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: Mar 30 07:11:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8801b0516ac456b71ad2dd33f788f78436efd5e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:a3:cc:2d:17:b4:3c:5d:e3:ad:24:59:69:e7:
75:55:1f:8d:64:aa:32:8a:73:19:db:da:cf:a4:15:
21:7a:04:df:ec:35:aa:a9:b0:2f:4b:33:78:de:f6:
de:87:70:a1:14:aa:49:bb:2d:54:af:d0:7f:89:6a:
00:31:37:b7:60:98:cd:f3:a9:23:22:31:d6:60:5e:
a3:60:26:69:f8:24:93:2b:38:77:79:fa:c0:c5:d6:
a9:44:15:46:f2:b8:3a:0a:b0:c4:76:13:45:01:61:
07:9d:58:97:11:2c:80:09:f5:66:e4:9c:00:3e:e4:
bb:ea:ed:06:c8:d0:13:1d:45:3b:65:54:27:d2:c2:
bb:4e:3d:33:24:88:05:a0:8b:d7:e8:78:14:f0:63:
f8:c5:da:64:d9:91:56:cd:bd:6c:d0:3d:c0:eb:10:
90:40:c0:9f:e6:e2:84:f6:8b:11:80:1f:d3:8a:77:
a5:44:3e:48:d9:23:55:67:f9:2f:d4:8e:b7:28:59:
e1:53:bb:f8:2b:d9:3e:29:fd:d1:2b:ee:be:70:c2:
77:db:c0:35:65:72:96:d6:cb:d9:54:7b:12:8b:40:
f4:aa:a1:c3:cd:25:a1:f1:84:c3:b6:43:1c:50:9f:
c7:78:cd:2b:da:4d:44:e9:89:24:63:c5:fd:ea:dc:
46:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:01:B0:51:6A:C4:56:B7:1A:D2:DD:33:F7:88:F7:84:36:EF:D5:E7
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/iAGwUWrEVrca0t0z94j3hDbv1ec.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.242.37.0/24
Signature Algorithm: sha256WithRSAEncryption
05:32:4b:a6:47:69:66:9f:af:1e:ad:00:6d:47:d0:c7:07:48:
e7:14:df:2b:d7:97:97:82:b0:79:e4:d7:53:32:cc:15:ea:be:
19:99:3e:c1:82:bd:bf:1b:07:f0:0b:cb:d9:fd:25:d3:59:47:
e6:16:06:e3:e0:7d:c0:5c:a3:52:74:38:b9:8a:07:45:b5:ed:
f5:4c:24:bb:9f:30:5f:2e:f4:c7:9d:a1:c7:39:aa:9a:82:57:
8a:f0:72:21:64:d3:7f:72:d5:e3:87:f4:d6:57:3f:08:c7:21:
f4:9f:45:93:08:3a:2e:b6:ff:35:ab:9d:16:a8:9e:2b:d0:df:
ea:45:66:cd:a0:58:5b:cb:0e:6b:0f:26:f7:c5:d5:3e:4e:ca:
7c:52:5d:97:90:52:35:2c:86:13:1b:2c:36:c0:3e:fe:17:79:
8d:a5:b3:7c:a0:ca:a1:ec:2e:47:69:f7:6e:e6:e3:84:8e:4f:
c3:34:61:f1:6a:d3:0a:55:e7:82:50:26:2a:c4:26:31:a7:4b:
df:00:69:f1:08:c3:6b:a5:3d:c7:c8:c3:41:f1:bb:88:df:c9:
e3:3e:f5:92:35:b0:1a:5a:85:f7:ae:4a:59:12:51:03:e3:d1:
ce:a7:10:ea:a6:8a:c8:ee:7f:96:a5:1a:fd:cd:e1:31:0c:1b:
ae:aa:e9:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:23 2025 by rpki-client on console.sobornost.net