Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/jKxUfIwpkUzIcgXlFEUk2kBWAmg.roa
File: jKxUfIwpkUzIcgXlFEUk2kBWAmg.roa (raw, json)
Hash identifier: WJoEcYpUVeKISFrz4E00MkBmgxjugZ6PlKXzSag3JOw=
Subject key identifier: 8C:AC:54:7C:8C:29:91:4C:C8:72:05:E5:14:45:24:DA:40:56:02:68
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 0196210A1A3A8266EA37A8BB106CCEF5361D
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/jKxUfIwpkUzIcgXlFEUk2kBWAmg.roa
Signing time: Thu 10 Apr 2025 18:50:32 +0000
ROA not before: Thu 10 Apr 2025 18:50:32 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 135027
IP address blocks: 151.242.130.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:21:0a:1a:3a:82:66:ea:37:a8:bb:10:6c:ce:f5:36:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: Apr 10 18:50:32 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8cac547c8c29914cc87205e5144524da40560268
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:f6:f3:5a:d1:41:08:16:84:e6:77:0b:0e:93:
85:9b:4a:cd:b5:cc:22:22:99:13:ab:4e:53:ce:33:
53:0a:e5:8b:49:9c:e2:f0:a2:74:0c:fa:61:77:c9:
e4:6d:29:7d:4e:cc:64:64:93:c2:76:cb:6f:9c:60:
d3:8f:57:7f:1d:51:84:e4:dc:f2:47:1a:1c:9a:63:
2a:0b:02:23:e0:37:fb:23:f4:15:14:2b:a7:5e:b1:
f9:27:55:e5:98:54:45:c3:75:2c:5c:ee:fa:ff:ba:
41:7a:2f:6d:89:a3:dd:38:12:5e:73:ba:54:b5:ed:
8b:7d:05:d1:11:30:06:37:a8:de:83:15:95:3a:ea:
88:d4:f1:fa:d0:2e:8e:4e:a5:68:88:96:7d:5a:be:
51:d6:3b:84:ca:9e:5d:98:f1:62:78:0a:a0:68:75:
80:70:9a:1e:03:a5:aa:4d:f7:38:a9:b0:d3:cb:9e:
e7:e6:99:d6:61:f6:2d:4e:20:62:5d:d0:3e:33:0a:
75:7f:9e:18:54:9f:cf:e5:b9:86:05:8d:f7:cb:78:
90:1c:57:6c:f3:95:57:a9:7d:49:42:08:ba:b9:95:
b1:bd:d0:69:a5:cf:30:c2:ab:26:28:42:38:1e:22:
e4:47:40:2d:a5:57:52:37:8d:19:b8:aa:51:b0:f4:
87:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:AC:54:7C:8C:29:91:4C:C8:72:05:E5:14:45:24:DA:40:56:02:68
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/jKxUfIwpkUzIcgXlFEUk2kBWAmg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.242.130.0/23
Signature Algorithm: sha256WithRSAEncryption
0c:17:ed:7d:aa:a7:ad:5e:98:e6:26:9e:3c:78:1b:bd:2c:ec:
5e:54:a5:6f:d0:63:c3:4d:87:84:27:57:4b:8a:ba:d7:88:6e:
9f:10:94:d7:bf:be:6f:ff:90:2b:c4:4e:c5:65:69:87:44:a5:
c5:d4:61:7b:dd:aa:8f:fb:5b:a7:0e:81:ee:01:42:52:96:1b:
0b:9a:50:06:d4:e4:4a:67:09:fd:86:0a:f6:15:22:e9:46:9e:
38:e8:32:50:44:fe:a8:4d:01:97:0d:9e:03:82:80:80:7d:eb:
d3:08:cd:06:48:98:34:20:98:11:8e:e0:90:1f:f9:ac:f6:ad:
a6:8c:e1:d7:ec:6d:52:fd:64:88:c1:32:3c:a5:1c:11:91:0d:
e7:ef:41:dd:36:e9:1b:38:04:2a:b4:f1:3b:eb:ef:df:81:98:
44:9b:52:a5:6f:b6:ee:41:37:dc:c5:f8:e3:2b:52:7b:e4:0b:
1d:a1:b8:0d:88:a6:75:f4:de:01:2d:87:a7:f4:e7:1b:31:36:
5a:4b:43:8f:75:66:49:37:21:97:b5:8b:47:79:7b:ef:dd:d7:
61:46:6d:61:ac:b6:4a:b2:23:30:07:d2:27:e3:dc:7f:c6:dd:
0e:9a:11:2c:b3:a0:f0:c8:73:a0:fe:a5:1f:f4:38:47:62:59:
3a:db:03:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:23 2025 by rpki-client on console.sobornost.net