Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/f565d7-32af-4be1-82ac-b602cedac36c/1/OUfSr-obqja2htAQodOdBecQwpM.roa
File: OUfSr-obqja2htAQodOdBecQwpM.roa (raw, json)
Hash identifier: kYEhvKSYnyjKX9d+IlHmBvClGZqsfdLMn/6qKgbrz/8=
Subject key identifier: 39:47:D2:AF:EA:1B:AA:36:B6:86:D0:10:A1:D3:9D:05:E7:10:C2:93
Certificate issuer: /CN=a3787d2be6eac36c1d2780f786b87c9e153e81f1
Certificate serial: 01954105043AD73B86BA1ED96316CEC347BE
Authority key identifier: A3:78:7D:2B:E6:EA:C3:6C:1D:27:80:F7:86:B8:7C:9E:15:3E:81:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o3h9K-bqw2wdJ4D3hrh8nhU-gfE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/f565d7-32af-4be1-82ac-b602cedac36c/1/OUfSr-obqja2htAQodOdBecQwpM.roa
Signing time: Wed 26 Feb 2025 06:50:02 +0000
ROA not before: Wed 26 Feb 2025 06:50:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213694
IP address blocks: 212.66.61.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:41:05:04:3a:d7:3b:86:ba:1e:d9:63:16:ce:c3:47:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3787d2be6eac36c1d2780f786b87c9e153e81f1
Validity
Not Before: Feb 26 06:50:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3947d2afea1baa36b686d010a1d39d05e710c293
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:6c:30:0a:56:41:94:0e:4e:3c:16:4f:09:75:
57:db:d3:39:5f:06:0c:a2:b3:f3:69:38:f7:66:65:
c5:1b:13:c7:59:de:82:be:6f:3f:4f:e3:aa:3e:f1:
d7:3a:d4:bf:65:0c:79:50:b3:34:2e:8e:81:11:68:
f3:a7:1c:ac:91:be:9b:5a:a0:d8:18:7e:c4:3d:1f:
6a:29:1a:1d:0d:97:a2:fc:96:62:80:f2:93:ba:fe:
89:d9:a6:de:8e:2d:1e:28:e8:b8:01:58:36:76:b2:
22:72:2f:81:32:19:4a:9a:75:be:2b:a3:aa:29:94:
be:5b:7e:ef:b0:82:70:f1:30:d2:2e:01:ef:c2:0d:
18:38:e2:55:eb:62:a2:d4:77:38:23:c9:56:1b:32:
ef:c7:19:f7:c8:ec:15:8a:74:1c:c8:b1:89:d7:b4:
78:5b:76:11:5b:46:38:d6:6a:5f:05:24:31:fd:64:
c9:e4:8f:3e:e3:8c:55:5f:3f:3e:28:bd:75:cd:1e:
88:96:b2:55:d7:3b:ae:a9:4a:1c:ff:67:21:78:34:
e7:a6:eb:2e:73:4f:50:82:18:68:54:d4:29:80:11:
d4:79:ff:b3:bf:97:43:c7:ab:96:59:8e:f1:3d:d4:
6e:d6:c3:8f:1d:b0:69:6a:00:4d:2a:d4:4c:fe:57:
64:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:47:D2:AF:EA:1B:AA:36:B6:86:D0:10:A1:D3:9D:05:E7:10:C2:93
X509v3 Authority Key Identifier:
keyid:A3:78:7D:2B:E6:EA:C3:6C:1D:27:80:F7:86:B8:7C:9E:15:3E:81:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o3h9K-bqw2wdJ4D3hrh8nhU-gfE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/f565d7-32af-4be1-82ac-b602cedac36c/1/OUfSr-obqja2htAQodOdBecQwpM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/f565d7-32af-4be1-82ac-b602cedac36c/1/o3h9K-bqw2wdJ4D3hrh8nhU-gfE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.66.61.0/24
Signature Algorithm: sha256WithRSAEncryption
48:97:08:f6:8f:08:64:cf:a6:47:f6:ca:33:a0:06:0f:3c:48:
4c:f1:06:fa:69:cf:4a:ba:b8:cd:91:d9:b9:a1:a5:4b:78:ec:
a7:f7:90:79:0e:58:78:af:13:4e:be:6e:a5:82:91:8f:94:cc:
62:bf:49:d4:83:79:ce:73:52:89:a4:35:b1:6d:f4:eb:c3:71:
c3:ec:26:50:85:d1:c4:0e:31:b1:22:92:12:83:2c:fb:95:18:
d9:e9:a3:57:89:c1:00:5f:09:df:fa:50:9b:7a:10:62:9b:0f:
55:7d:b1:00:e5:fe:93:a7:cd:01:39:92:15:69:36:dc:8a:46:
20:f1:9d:ec:b0:3d:ef:57:12:b5:4c:7d:d5:61:a9:34:b8:49:
48:f1:2e:7a:fd:2f:48:95:04:6c:a5:03:12:03:b7:6f:64:33:
cc:85:1e:88:3b:8c:0c:41:82:5a:42:2d:c6:65:a4:e8:c7:26:
73:e6:eb:7b:f6:33:26:a5:62:06:95:26:94:4f:cd:65:bb:36:
fb:63:94:95:f4:2d:d0:f5:b3:a0:f6:0c:0c:58:71:21:c1:9f:
8b:4f:e7:0a:fc:aa:d4:9f:3e:28:47:ff:03:e7:07:eb:20:2f:
95:0d:46:90:70:58:42:04:53:52:6f:65:70:0e:8c:88:e4:47:
24:0e:b3:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:31 2025 by rpki-client on console.sobornost.net