Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/c6d984-6bfc-4602-9d58-ab2d5e7d4a7b/1/1-clNUolPp_tHK-YnMn1XJMAOUjs.roa
File: 1-clNUolPp_tHK-YnMn1XJMAOUjs.roa (raw, json)
Hash identifier: KJW40p6GcC71WhI5WuddxJyJBJzYeaQczvMIzcE32ao=
Subject key identifier: F9:C9:4D:52:89:4F:A7:FB:47:2B:E6:27:32:7D:57:24:C0:0E:52:3B
Certificate issuer: /CN=9a393ef16027fc03bc5c045ff9289d4bbb7ff364
Certificate serial: 019423693B2E491DF226A272CB6764D7C9AE
Authority key identifier: 9A:39:3E:F1:60:27:FC:03:BC:5C:04:5F:F9:28:9D:4B:BB:7F:F3:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mjk-8WAn_AO8XARf-SidS7t_82Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/c6d984-6bfc-4602-9d58-ab2d5e7d4a7b/1/1-clNUolPp_tHK-YnMn1XJMAOUjs.roa
Signing time: Wed 01 Jan 2025 19:48:06 +0000
ROA not before: Wed 01 Jan 2025 19:48:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212424
IP address blocks: 138.195.128.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:69:3b:2e:49:1d:f2:26:a2:72:cb:67:64:d7:c9:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a393ef16027fc03bc5c045ff9289d4bbb7ff364
Validity
Not Before: Jan 1 19:48:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f9c94d52894fa7fb472be627327d5724c00e523b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:87:3b:db:8e:15:82:38:9c:3c:a4:c5:2c:73:
f2:58:9b:47:83:4e:12:7d:f7:b4:9e:dc:4b:e9:18:
2b:aa:7c:ed:2e:4b:70:15:e8:3d:8c:b0:8b:59:46:
f0:5a:db:75:2b:2d:b3:1d:9d:2d:db:40:2f:c8:45:
fc:c1:06:37:ae:ab:e8:97:49:ba:39:47:cc:63:97:
1b:07:92:38:ec:79:87:00:56:3e:8d:fc:81:23:1a:
db:ac:02:36:71:81:77:e4:b8:ca:06:42:37:0d:3d:
ee:3b:3e:7a:57:8c:f5:83:18:9c:03:01:72:da:8d:
10:54:4f:be:17:48:9a:0f:95:c4:b1:12:ba:b6:08:
a3:fa:e3:6f:06:65:0a:3b:3d:7f:d9:46:a2:ba:d5:
24:3c:91:5f:b7:11:a6:db:be:e4:48:7c:23:58:0d:
30:2e:84:9e:a1:6c:61:b9:01:87:1a:59:b8:4e:a6:
47:99:9e:06:65:2f:ad:16:a2:a2:62:d2:09:15:bb:
2c:ee:85:9b:12:6f:47:6d:7f:1e:17:f1:52:e4:a0:
5b:1d:39:6c:2f:bf:82:3e:e4:86:9d:ab:27:7b:31:
f5:08:88:76:33:d9:02:f2:80:e0:a1:9f:86:e4:16:
a2:74:81:2c:e9:d6:ac:68:42:35:82:53:9a:30:13:
57:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:C9:4D:52:89:4F:A7:FB:47:2B:E6:27:32:7D:57:24:C0:0E:52:3B
X509v3 Authority Key Identifier:
keyid:9A:39:3E:F1:60:27:FC:03:BC:5C:04:5F:F9:28:9D:4B:BB:7F:F3:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mjk-8WAn_AO8XARf-SidS7t_82Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/c6d984-6bfc-4602-9d58-ab2d5e7d4a7b/1/1-clNUolPp_tHK-YnMn1XJMAOUjs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/c6d984-6bfc-4602-9d58-ab2d5e7d4a7b/1/mjk-8WAn_AO8XARf-SidS7t_82Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.195.128.0/19
Signature Algorithm: sha256WithRSAEncryption
e6:73:4b:c8:71:61:d5:7e:31:3e:b0:9e:b3:9e:e0:71:b7:b4:
d7:e4:db:4c:1a:8d:3c:ba:30:45:d9:58:2d:68:fc:7a:af:b5:
2e:9e:26:bc:56:2c:c1:c6:c7:83:09:d2:0e:2d:0a:1c:e8:0d:
f2:f8:7c:48:2b:12:2c:74:67:ca:9e:97:b8:79:f8:a7:d2:e6:
7b:8c:56:61:e2:4c:54:ea:81:78:76:ed:e5:1d:e0:e8:69:cc:
c6:60:5d:b8:d7:84:ed:53:21:01:8f:2f:c8:d3:b3:42:85:4c:
46:6b:99:02:37:8a:4c:83:da:ba:ad:d6:d9:9d:95:c8:33:3d:
ca:93:6e:89:50:69:f6:ea:2b:ef:ee:a8:0a:8f:df:ad:d3:1d:
ba:3f:f5:36:8c:92:ff:40:46:50:82:93:2c:f0:e6:52:20:df:
6c:42:26:b5:ff:15:ab:2d:d2:8d:9a:af:c3:26:64:c9:70:b1:
67:35:e7:df:ab:ee:53:97:c0:f0:bc:be:0b:e4:36:56:f6:27:
8d:b7:df:00:c5:37:46:38:8e:4b:ca:63:1e:f4:2a:1e:3d:d7:
70:9d:6b:f3:72:86:45:4d:29:55:c8:b3:63:5a:0d:ca:dc:c9:
c2:5e:66:60:87:a6:66:38:58:6b:96:b7:e3:8f:d5:98:e7:65:
8f:3b:a5:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:26 2025 by rpki-client on console.sobornost.net