Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/2xOCedaAnbKcKNMkapjr0-xRU0U.roa
File: 2xOCedaAnbKcKNMkapjr0-xRU0U.roa (raw, json)
Hash identifier: 1AkAMO6XuRRkWK537SoyCbP4MBTHrJRSOO13VGIcmVk=
Subject key identifier: DB:13:82:79:D6:80:9D:B2:9C:28:D3:24:6A:98:EB:D3:EC:51:53:45
Certificate issuer: /CN=65b7d6699835bfe9a8081dfc114df1bf6d215da7
Certificate serial: 0195F198FB5DD4457CA9EF1A4CAB1C3A4435
Authority key identifier: 65:B7:D6:69:98:35:BF:E9:A8:08:1D:FC:11:4D:F1:BF:6D:21:5D:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZbfWaZg1v-moCB38EU3xv20hXac.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/2xOCedaAnbKcKNMkapjr0-xRU0U.roa
Signing time: Tue 01 Apr 2025 13:44:49 +0000
ROA not before: Tue 01 Apr 2025 13:44:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 20473
IP address blocks: 213.182.215.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:f1:98:fb:5d:d4:45:7c:a9:ef:1a:4c:ab:1c:3a:44:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65b7d6699835bfe9a8081dfc114df1bf6d215da7
Validity
Not Before: Apr 1 13:44:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=db138279d6809db29c28d3246a98ebd3ec515345
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:71:49:b2:a7:3c:07:f4:9d:aa:5c:48:0f:05:
83:a7:6b:10:af:e4:e2:30:60:2c:9c:a2:5a:dd:ee:
44:0e:22:8d:fa:ef:45:ab:bb:a9:75:db:3c:f3:f4:
ee:24:f6:ae:f0:8c:ba:66:d3:54:ce:2f:35:fc:34:
f8:e4:c0:35:80:3e:74:a7:7a:68:a5:7e:af:87:dc:
19:6f:56:65:60:2a:01:0d:2f:db:9c:41:5b:a7:7c:
0e:13:0e:3c:78:c1:5b:fd:b3:c4:4c:1d:f2:36:98:
df:36:90:2d:6e:ef:7f:7e:9d:f7:72:78:f3:22:46:
c5:86:ed:c4:cc:3e:3e:78:b8:cb:cc:62:53:ce:e9:
6b:38:0d:2c:66:ba:04:cd:65:46:ee:f4:07:1c:a3:
89:5e:97:8a:a7:b9:3a:00:42:42:da:c0:94:47:f3:
d2:cf:6d:28:bf:ff:bd:db:3c:de:4e:e9:f8:9e:34:
65:9b:ed:0a:bf:fe:ad:60:fc:5e:d9:41:c9:c0:76:
88:69:3c:5d:bc:eb:67:ce:c5:e0:ad:48:b5:2c:31:
b9:d3:18:2b:9b:99:35:67:61:d7:12:cb:5e:ce:eb:
70:9d:c2:dc:14:36:6e:9e:29:f2:72:36:b5:43:c2:
90:0f:c3:96:ef:5e:02:7a:ec:3e:97:dd:dc:e7:52:
16:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:13:82:79:D6:80:9D:B2:9C:28:D3:24:6A:98:EB:D3:EC:51:53:45
X509v3 Authority Key Identifier:
keyid:65:B7:D6:69:98:35:BF:E9:A8:08:1D:FC:11:4D:F1:BF:6D:21:5D:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZbfWaZg1v-moCB38EU3xv20hXac.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/2xOCedaAnbKcKNMkapjr0-xRU0U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/ZbfWaZg1v-moCB38EU3xv20hXac.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.182.215.0/24
Signature Algorithm: sha256WithRSAEncryption
09:df:f1:4a:15:07:75:c7:c3:d2:7d:65:28:86:e1:f2:b3:1e:
06:10:8c:d4:0b:0b:f5:30:e4:f8:46:fb:95:14:da:60:f7:ab:
ea:71:8c:6a:2e:f8:fe:ea:c1:50:2e:4c:ab:2a:7d:b4:b4:47:
be:7b:a1:41:b1:96:37:b8:d8:b8:4f:cd:8c:3d:9e:a8:d7:04:
5d:ef:d5:89:85:e9:2f:9b:d6:82:e5:cc:5f:a5:ac:df:ad:d5:
86:6a:93:4a:77:4e:d2:e9:83:24:a6:20:3e:00:f6:31:77:ad:
7b:dd:ed:a2:bc:da:51:be:e0:c0:5d:bd:53:34:6e:42:50:3c:
9e:de:ab:01:c5:67:45:2e:0e:da:e6:d4:b9:59:f5:b5:88:ce:
31:13:af:df:f7:4a:01:8d:14:bf:0a:11:84:5d:e2:d5:89:e9:
45:b8:cb:74:47:39:f0:9a:e1:47:cb:14:11:24:2e:2b:2d:27:
89:c6:aa:08:b2:f7:88:1f:83:c2:83:ce:fc:d2:23:b9:c2:aa:
45:0d:2e:74:2e:eb:1d:a4:93:04:73:9b:77:ee:b1:f2:3e:3d:
1e:81:f3:9e:b7:2a:c5:6c:4f:06:57:94:0f:27:4a:0f:c3:2d:
6d:cb:9d:94:46:2d:6c:c5:64:20:b9:47:fe:81:b7:98:d0:15:
67:8d:63:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:24 2025 by rpki-client on console.sobornost.net