Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/d777e6-0e58-4345-b0a4-4cbd22917d65/1/vPSZGNLszHola-aE32fRdWDCw-Q.roa
File: vPSZGNLszHola-aE32fRdWDCw-Q.roa (raw, json)
Hash identifier: nE9CEsfxd7QnexQKpbRsasvakxwQXgvQt/2wyGB1J9k=
Subject key identifier: BC:F4:99:18:D2:EC:CC:7A:25:6B:E6:84:DF:67:D1:75:60:C2:C3:E4
Certificate issuer: /CN=4b8528b8acbc8742764a581a8d979a184295663e
Certificate serial: 01941F8C3783925F606B9DF1B7D85E4B78AA
Authority key identifier: 4B:85:28:B8:AC:BC:87:42:76:4A:58:1A:8D:97:9A:18:42:95:66:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S4UouKy8h0J2SlgajZeaGEKVZj4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/d777e6-0e58-4345-b0a4-4cbd22917d65/1/vPSZGNLszHola-aE32fRdWDCw-Q.roa
Signing time: Wed 01 Jan 2025 01:47:50 +0000
ROA not before: Wed 01 Jan 2025 01:47:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 39410
IP address blocks: 195.80.138.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:37:83:92:5f:60:6b:9d:f1:b7:d8:5e:4b:78:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b8528b8acbc8742764a581a8d979a184295663e
Validity
Not Before: Jan 1 01:47:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=bcf49918d2eccc7a256be684df67d17560c2c3e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:08:b7:06:45:26:ec:4e:fd:c8:71:fa:b5:22:
79:b5:b9:90:09:8b:9b:1b:cb:f4:ad:9c:79:c4:da:
c8:96:14:f6:bd:92:ce:26:4a:9a:07:95:aa:67:83:
42:55:85:0f:a7:de:b3:d1:4c:e4:f8:fb:bb:96:77:
82:e1:c9:8a:8e:01:b9:0d:ea:51:bc:c5:a4:b2:91:
f5:b6:0a:b8:40:2a:f2:0f:52:fa:d2:fe:18:c1:b7:
1e:3b:57:88:cc:20:7b:86:dc:6a:13:9e:13:51:e1:
1b:14:f3:ed:a2:be:e7:6c:d4:94:d4:6d:ce:db:ff:
f5:26:26:b3:4a:11:a1:c4:ba:30:80:50:31:54:94:
aa:74:5a:76:31:41:31:37:3f:6d:f3:df:ca:86:14:
6d:78:67:2b:ac:47:27:1b:26:64:51:a7:73:b4:11:
12:23:f6:64:c3:96:e6:62:99:fe:be:4b:e6:71:68:
79:f1:5c:fd:de:a0:f6:2b:64:ee:7c:66:4d:63:1e:
41:89:c9:89:97:a0:dc:40:34:22:d7:9a:14:dd:85:
0d:42:93:32:7b:b6:43:18:21:2f:49:81:f2:4f:d0:
90:03:85:d6:c5:03:e1:c2:53:9f:2d:6e:b8:24:e4:
5a:ff:10:0a:cf:60:10:45:1e:b8:54:37:c3:76:c0:
37:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:F4:99:18:D2:EC:CC:7A:25:6B:E6:84:DF:67:D1:75:60:C2:C3:E4
X509v3 Authority Key Identifier:
keyid:4B:85:28:B8:AC:BC:87:42:76:4A:58:1A:8D:97:9A:18:42:95:66:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S4UouKy8h0J2SlgajZeaGEKVZj4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/d777e6-0e58-4345-b0a4-4cbd22917d65/1/vPSZGNLszHola-aE32fRdWDCw-Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/d777e6-0e58-4345-b0a4-4cbd22917d65/1/S4UouKy8h0J2SlgajZeaGEKVZj4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.80.138.0/24
Signature Algorithm: sha256WithRSAEncryption
52:95:36:f6:9b:69:02:8f:81:4f:44:e9:fe:77:46:d3:a0:e2:
e7:4b:13:d9:8a:7d:06:0f:61:40:42:8c:9f:ea:78:a9:dd:cc:
92:ec:62:19:ca:a4:b7:c8:84:8b:b4:71:dd:16:61:37:dd:b9:
e9:a8:fd:d1:b4:18:2a:dc:22:7a:cb:3c:03:54:f0:42:37:e5:
19:15:80:de:28:6b:0a:c6:75:64:2b:10:a4:25:ac:fe:aa:c7:
ef:18:20:3b:4f:63:eb:10:12:35:9a:79:d6:42:fd:33:1b:2f:
34:a9:b1:68:3c:00:79:b4:a9:08:5b:26:72:83:d6:d4:d9:ac:
57:dc:14:3c:44:bf:a9:dc:21:aa:7f:f3:69:5f:02:69:80:bf:
8a:b0:9f:db:3a:d2:62:60:50:83:9b:c0:cc:00:19:bf:81:4f:
33:33:ce:5a:a2:38:b8:d3:e0:8a:17:fd:2d:b0:76:cf:62:c6:
59:2a:4e:f2:6b:4e:7c:3e:1a:ee:4e:bd:9a:b9:d3:a6:08:7e:
f2:c9:68:2a:77:43:60:d2:27:6d:d2:49:64:43:fd:d4:0d:54:
89:c9:a6:41:94:b5:6b:38:af:f9:6c:fd:84:57:25:ef:28:ca:
47:b9:0b:8f:79:91:44:34:8d:74:3e:41:96:7e:83:d7:5a:24:
bd:1e:5f:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:25 2025 by rpki-client on console.sobornost.net