Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/126755-eedd-40b1-95e8-a4ca8b9c205b/1/pOQcSwzHhsavgvdyPP-Yyd3QzSo.roa
File: pOQcSwzHhsavgvdyPP-Yyd3QzSo.roa (raw, json)
Hash identifier: kyJLn6NibIN1SsKTyhob0Qol7Hb2cQEJbeMyZVAvoLM=
Subject key identifier: A4:E4:1C:4B:0C:C7:86:C6:AF:82:F7:72:3C:FF:98:C9:DD:D0:CD:2A
Certificate issuer: /CN=9da140e8028e6d537600e0888a9af5a971c5db46
Certificate serial: 01941FFA3F3ADE53F181D25268A83AA92811
Authority key identifier: 9D:A1:40:E8:02:8E:6D:53:76:00:E0:88:8A:9A:F5:A9:71:C5:DB:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/naFA6AKObVN2AOCIipr1qXHF20Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/126755-eedd-40b1-95e8-a4ca8b9c205b/1/pOQcSwzHhsavgvdyPP-Yyd3QzSo.roa
Signing time: Wed 01 Jan 2025 03:48:01 +0000
ROA not before: Wed 01 Jan 2025 03:48:01 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 8837
IP address blocks: 192.58.41.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:3f:3a:de:53:f1:81:d2:52:68:a8:3a:a9:28:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9da140e8028e6d537600e0888a9af5a971c5db46
Validity
Not Before: Jan 1 03:48:01 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a4e41c4b0cc786c6af82f7723cff98c9ddd0cd2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:01:cf:ec:b8:38:0a:da:bf:2a:6b:ca:07:eb:
5e:e8:23:47:ad:c3:15:ff:08:58:b3:9a:14:58:df:
51:a9:51:47:52:33:2c:a7:63:ad:d5:6b:5c:5e:a0:
4f:f0:92:6d:ee:7d:13:6c:b7:15:90:93:ee:75:63:
41:41:00:79:47:c5:5c:8f:52:20:d5:27:38:b3:22:
80:06:b1:9d:87:1a:af:00:ea:2c:cb:51:6b:9a:3c:
b4:11:ae:5e:88:40:26:38:94:32:06:69:b1:a8:a7:
06:b1:11:bb:0d:00:75:6b:0e:ad:22:1f:da:dc:b7:
9e:80:bd:a5:99:9f:fe:88:35:75:5d:be:5c:9a:e4:
6c:f9:31:ef:3b:42:50:16:84:df:72:8c:e4:0b:28:
c3:be:ad:24:69:8a:87:00:64:4e:30:1f:99:cf:96:
aa:36:88:22:c1:1d:9a:05:88:3e:18:d5:27:83:f7:
2a:3d:03:73:53:50:7e:56:8b:86:1d:e7:f3:e9:92:
ad:6d:86:95:9c:8e:fc:6e:40:5a:7d:fa:d7:33:b3:
ff:27:dc:8e:a1:bc:23:a4:2b:70:55:2a:34:c7:14:
e0:93:15:fe:af:e4:57:12:fa:87:df:50:8e:a4:18:
f2:92:e0:67:6e:97:32:39:65:40:34:3c:3d:6f:d1:
77:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:E4:1C:4B:0C:C7:86:C6:AF:82:F7:72:3C:FF:98:C9:DD:D0:CD:2A
X509v3 Authority Key Identifier:
keyid:9D:A1:40:E8:02:8E:6D:53:76:00:E0:88:8A:9A:F5:A9:71:C5:DB:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/naFA6AKObVN2AOCIipr1qXHF20Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/126755-eedd-40b1-95e8-a4ca8b9c205b/1/pOQcSwzHhsavgvdyPP-Yyd3QzSo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/126755-eedd-40b1-95e8-a4ca8b9c205b/1/naFA6AKObVN2AOCIipr1qXHF20Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.58.41.0/24
Signature Algorithm: sha256WithRSAEncryption
25:d9:5e:0c:f5:ce:42:c0:26:e5:e7:59:ea:a3:84:63:23:f0:
a8:34:a1:db:72:21:f1:7b:61:d2:94:f7:68:f0:b2:75:0a:df:
6a:2a:fa:03:fc:61:eb:05:32:05:31:bf:1b:2e:b6:11:26:50:
a9:c3:08:6e:92:a1:13:1b:54:30:b5:85:65:e1:ea:76:da:2e:
de:e4:d8:56:04:b2:31:13:ae:1e:79:e1:20:1f:0c:01:9b:a4:
02:40:54:41:e8:79:37:c8:1a:ab:27:98:71:27:ec:6d:d6:f8:
4f:56:94:53:b9:53:d2:b8:de:06:bb:69:77:c3:20:3f:33:60:
de:95:11:68:61:49:0b:df:20:f7:9f:7b:ea:4c:5d:6f:27:d8:
64:bf:75:33:7f:d0:c7:74:c4:47:e2:1c:d2:e6:4c:a9:34:0f:
a1:66:90:0c:65:e8:ee:ce:d6:11:87:13:c3:f8:e0:95:e7:77:
80:d3:e3:ef:8b:9b:b7:7d:63:fb:a2:87:99:18:1e:9f:2c:91:
d8:88:0c:8d:c2:4e:0f:95:07:d3:90:db:11:ba:20:d5:50:62:
de:63:f2:e5:31:66:0e:13:66:e0:05:18:1c:5c:04:af:65:5a:
98:01:14:2e:fe:9f:37:42:74:b2:a1:13:40:7b:d4:d8:07:ba:
22:ee:13:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:24 2025 by rpki-client on console.sobornost.net