Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/a33b29-bef3-461d-8878-2155126b1643/1/BuFdaMS1qY4jt-i_y_cN4QOcG_g.roa
File: BuFdaMS1qY4jt-i_y_cN4QOcG_g.roa (raw, json)
Hash identifier: ltXbKfkdHFu9ibmOqMdLpCxXbbDufLPF6M4KyVnL37o=
Subject key identifier: 06:E1:5D:68:C4:B5:A9:8E:23:B7:E8:BF:CB:F7:0D:E1:03:9C:1B:F8
Certificate issuer: /CN=9cfc62ecdc91d11979cc1d21a47c6ec378dfa436
Certificate serial: 0194258F18EEC4C26D477467F34F5D3AB7E0
Authority key identifier: 9C:FC:62:EC:DC:91:D1:19:79:CC:1D:21:A4:7C:6E:C3:78:DF:A4:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nPxi7NyR0Rl5zB0hpHxuw3jfpDY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/a33b29-bef3-461d-8878-2155126b1643/1/BuFdaMS1qY4jt-i_y_cN4QOcG_g.roa
Signing time: Thu 02 Jan 2025 05:48:42 +0000
ROA not before: Thu 02 Jan 2025 05:48:42 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 41582
IP address blocks: 195.138.201.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:18:ee:c4:c2:6d:47:74:67:f3:4f:5d:3a:b7:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9cfc62ecdc91d11979cc1d21a47c6ec378dfa436
Validity
Not Before: Jan 2 05:48:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=06e15d68c4b5a98e23b7e8bfcbf70de1039c1bf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:22:db:89:4a:c8:8e:8f:7e:97:42:38:7e:71:
e8:60:c1:db:c2:1c:81:16:0b:84:a5:f9:eb:4e:40:
5d:6c:9a:56:b3:c6:af:e7:cc:88:10:c5:01:0c:fd:
18:21:dd:62:b4:18:c0:19:4b:2d:98:21:49:54:20:
71:34:74:13:6e:15:31:0c:ab:5c:e3:75:01:f2:af:
f5:ee:ea:b3:5b:0d:86:ea:bd:a1:b7:e3:72:d6:cc:
e6:cf:4f:24:bc:a9:fa:00:24:35:62:51:e3:b5:f5:
2f:e8:48:74:2e:7e:91:f5:fb:0e:46:01:59:4f:2f:
dc:55:3f:86:04:16:a6:c1:af:ab:a4:d5:0e:e7:5b:
89:89:5d:e3:e2:ce:d0:25:0b:30:3e:45:19:47:9e:
35:94:66:e4:3f:2b:0b:45:bf:09:91:10:48:a7:2a:
5e:2e:b1:1e:23:4e:99:6d:b1:7c:4c:3a:bc:f5:ee:
76:48:c1:9c:ad:cf:d2:f9:52:3c:04:e9:3f:76:56:
fb:a4:a1:65:b6:a7:b1:60:08:a3:62:3f:95:43:12:
5f:29:99:73:34:0b:47:94:9d:b6:11:37:90:c7:34:
fd:3e:46:f3:f0:cf:5b:63:5a:48:1b:c5:07:32:83:
93:59:ca:cd:b6:d5:41:3a:d1:29:b1:8e:f8:29:6d:
bb:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:E1:5D:68:C4:B5:A9:8E:23:B7:E8:BF:CB:F7:0D:E1:03:9C:1B:F8
X509v3 Authority Key Identifier:
keyid:9C:FC:62:EC:DC:91:D1:19:79:CC:1D:21:A4:7C:6E:C3:78:DF:A4:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nPxi7NyR0Rl5zB0hpHxuw3jfpDY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/a33b29-bef3-461d-8878-2155126b1643/1/BuFdaMS1qY4jt-i_y_cN4QOcG_g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/a33b29-bef3-461d-8878-2155126b1643/1/nPxi7NyR0Rl5zB0hpHxuw3jfpDY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.138.201.0/24
Signature Algorithm: sha256WithRSAEncryption
00:99:00:39:e2:c2:87:66:3a:f9:4f:e7:fe:c8:a8:53:ba:e1:
f4:c4:88:e8:ad:83:a1:77:7a:30:1e:58:7e:f7:6b:10:1c:8a:
42:95:a2:cd:c5:e0:65:98:6f:41:cb:50:4f:4f:f4:96:fe:3a:
cb:ca:82:a9:cd:ca:7a:90:a7:ad:b1:7b:30:52:c9:5d:80:e9:
44:0a:2c:80:7f:60:7c:b8:90:3a:e4:29:ec:45:c2:8f:44:60:
bf:20:c2:cb:74:70:4f:76:58:44:fb:c5:71:b5:ab:a2:29:ad:
4f:79:12:a1:05:9e:89:81:d0:70:f6:b7:b6:df:b7:7f:60:cf:
95:34:71:96:94:72:97:f9:24:f6:6d:f5:79:d2:79:f4:0c:1a:
3a:2b:af:59:c5:dd:ae:87:f8:28:ca:8a:e9:b8:08:96:f1:1c:
db:80:c1:df:da:93:5f:df:88:7d:54:2f:13:30:23:cb:0a:c7:
28:ec:d7:17:53:56:a6:72:5b:ee:4e:a9:ca:62:4d:f6:fd:75:
68:79:fa:f7:7f:20:3a:fa:d6:d1:5d:7b:2b:63:b3:7f:68:f6:
a4:c3:36:36:24:4f:f4:13:f9:43:90:7d:cc:21:86:96:b1:ea:
a1:5d:f1:71:0e:4e:bb:e0:e0:04:31:b6:6b:8e:ea:62:33:4e:
e2:69:54:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:26 2025 by rpki-client on console.sobornost.net