Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/koXm2_p4F4KWKYlIu0UQERaNMQ8.roa
File: koXm2_p4F4KWKYlIu0UQERaNMQ8.roa (raw, json)
Hash identifier: zXAmEZonvu8xaYLE77bD6JgXELMdseALDrYiTNuQR1E=
Subject key identifier: 92:85:E6:DB:FA:78:17:82:96:29:89:48:BB:45:10:11:16:8D:31:0F
Certificate issuer: /CN=ba60a4d874d9601c8142c352f80c56a43276cd47
Certificate serial: 019423D7E62DE728FD02F14E9C5312FBF3F6
Authority key identifier: BA:60:A4:D8:74:D9:60:1C:81:42:C3:52:F8:0C:56:A4:32:76:CD:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/umCk2HTZYByBQsNS-AxWpDJ2zUc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/koXm2_p4F4KWKYlIu0UQERaNMQ8.roa
Signing time: Wed 01 Jan 2025 21:48:59 +0000
ROA not before: Wed 01 Jan 2025 21:48:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 49581
IP address blocks: 2.58.113.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:e6:2d:e7:28:fd:02:f1:4e:9c:53:12:fb:f3:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba60a4d874d9601c8142c352f80c56a43276cd47
Validity
Not Before: Jan 1 21:48:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9285e6dbfa78178296298948bb451011168d310f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:d3:63:70:78:7f:ed:2b:43:12:0f:25:d3:84:
1c:be:5a:34:c1:22:67:68:72:d5:51:a6:78:36:30:
b8:a9:e3:5d:cd:a4:f5:47:98:8a:5a:cb:b8:a2:e3:
55:b6:dd:bf:75:ec:eb:2e:36:b5:61:a6:b7:8b:76:
3d:39:a6:be:e9:44:4c:b7:89:02:58:67:db:a6:f2:
57:d2:a0:28:e4:de:07:5f:c8:ea:96:14:6d:03:db:
09:21:6b:5c:37:62:4b:a3:0d:b6:45:3d:27:9d:e4:
65:9e:f6:a3:6c:77:d4:a5:97:03:83:33:46:fe:4c:
0c:57:b1:e9:4f:03:07:10:1d:0d:56:60:8f:f3:29:
1a:90:54:a3:cb:55:85:03:fd:37:e9:fb:d5:f3:c2:
bf:b4:f9:6b:fe:32:68:f3:9e:a7:d0:7b:54:82:0e:
46:a0:30:dc:d3:94:8f:0d:80:67:17:7a:3c:53:92:
91:3e:25:25:bd:dd:8b:c9:d5:25:cf:4d:a5:8d:48:
10:4e:bd:e2:0c:f3:f4:37:1d:b5:5a:82:ba:76:05:
c8:99:4e:b4:0e:81:40:e2:1a:08:32:51:a7:92:d1:
7c:92:f4:b8:73:19:b6:68:b8:a3:5e:c0:a3:5b:7e:
36:63:ee:60:a5:30:4f:13:30:bb:07:9d:4a:66:a6:
f5:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:85:E6:DB:FA:78:17:82:96:29:89:48:BB:45:10:11:16:8D:31:0F
X509v3 Authority Key Identifier:
keyid:BA:60:A4:D8:74:D9:60:1C:81:42:C3:52:F8:0C:56:A4:32:76:CD:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/umCk2HTZYByBQsNS-AxWpDJ2zUc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/koXm2_p4F4KWKYlIu0UQERaNMQ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/umCk2HTZYByBQsNS-AxWpDJ2zUc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.113.0/24
Signature Algorithm: sha256WithRSAEncryption
51:e5:6a:65:d3:eb:b6:86:d3:43:ca:82:fc:d0:36:83:68:2e:
6a:0f:71:df:44:d6:df:39:37:55:bb:92:48:78:9c:6b:86:a2:
eb:7a:c3:31:d9:4f:35:98:b9:40:4b:0a:b3:2e:20:91:2e:bd:
72:7b:a9:0f:c3:a4:7b:ae:8b:6e:9e:1c:8a:c0:48:00:63:eb:
4b:64:ca:b5:f8:0b:4c:66:10:4b:30:fc:ed:84:88:09:49:a6:
d8:f3:63:d2:9d:3b:b5:33:9a:68:11:41:b7:99:bb:3d:ef:b8:
34:12:05:d0:ef:7b:c4:66:b1:fe:7f:d2:a6:e8:cc:4f:f2:4d:
b3:fb:45:42:29:b2:f9:8d:00:3f:f5:fe:d7:b4:99:68:87:fd:
3c:26:c7:b6:d0:85:b6:ab:1b:57:70:07:53:8a:1e:95:01:5f:
05:28:9e:4d:20:1a:c4:0f:d4:3b:f3:4f:2c:14:0b:7c:ec:bb:
59:07:00:9e:de:10:49:1f:18:72:7a:6c:62:1a:7b:63:b5:d9:
3d:ae:e6:2f:a2:b8:9f:5c:08:97:6e:65:fe:8f:6a:7a:e8:a0:
19:ab:59:d2:b4:da:d8:cc:62:cd:f2:11:19:88:af:54:b8:37:
b0:03:2a:21:52:ed:b9:c5:94:e1:19:f8:e8:03:df:88:1e:a8:
a7:8e:80:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:29 2025 by rpki-client on console.sobornost.net