Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/BcTRmH6BmmlSz8rh3pMxnCQXpBs.roa
File: BcTRmH6BmmlSz8rh3pMxnCQXpBs.roa (raw, json)
Hash identifier: xmk+1c+FLynSNXKfYDQ/lfjoeA1RsSdHXQaf1l1+6Ak=
Subject key identifier: 05:C4:D1:98:7E:81:9A:69:52:CF:CA:E1:DE:93:31:9C:24:17:A4:1B
Certificate issuer: /CN=3ca447fd0979b8a989355c354d304d114d20727a
Certificate serial: 0194228D25DB739C9556B5BC322DE5C0C13C
Authority key identifier: 3C:A4:47:FD:09:79:B8:A9:89:35:5C:35:4D:30:4D:11:4D:20:72:7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PKRH_Ql5uKmJNVw1TTBNEU0gcno.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/BcTRmH6BmmlSz8rh3pMxnCQXpBs.roa
Signing time: Wed 01 Jan 2025 15:47:43 +0000
ROA not before: Wed 01 Jan 2025 15:47:43 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 205425
IP address blocks: 194.49.92.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:25:db:73:9c:95:56:b5:bc:32:2d:e5:c0:c1:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ca447fd0979b8a989355c354d304d114d20727a
Validity
Not Before: Jan 1 15:47:43 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=05c4d1987e819a6952cfcae1de93319c2417a41b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:9c:98:db:a8:38:15:71:a1:5e:08:78:d1:d6:
79:73:04:fe:d3:38:47:b1:80:30:17:72:ff:cf:a7:
bd:5d:af:df:47:c0:55:64:16:c7:31:70:4f:48:30:
f3:d8:c3:03:00:d8:e3:94:2f:4f:bf:cc:a0:40:47:
05:6b:ac:bb:a6:6e:09:a7:10:69:f9:6c:88:8c:e4:
0f:a6:68:8b:0b:80:7f:1a:43:c6:86:5d:30:07:c1:
63:0d:ec:6d:40:fe:86:b8:50:88:96:2b:3c:de:3b:
b6:95:30:2b:9b:73:82:f4:f9:f8:db:3b:8d:1f:79:
7d:ec:0c:47:53:eb:27:78:f4:0e:11:09:dc:b3:2d:
2b:67:4c:23:07:01:2b:7d:e5:e2:0a:f5:e7:1a:fc:
d3:77:43:57:d0:f8:d5:8c:2d:db:42:35:1b:58:78:
7c:49:ae:ef:b3:6d:93:5e:0a:20:92:59:c5:ad:92:
f6:1a:a2:a3:24:27:92:2d:be:c5:ec:80:50:dd:ee:
c2:2a:38:63:7e:da:21:ae:4b:b2:74:fb:11:ae:b4:
bd:ff:3c:7f:fd:d2:61:dc:f0:a3:01:b4:07:30:5d:
1a:05:27:61:21:62:e5:3f:da:68:77:0c:a2:b0:7a:
10:79:2f:02:00:67:b3:16:91:76:cf:e6:9d:4f:c6:
5e:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:C4:D1:98:7E:81:9A:69:52:CF:CA:E1:DE:93:31:9C:24:17:A4:1B
X509v3 Authority Key Identifier:
keyid:3C:A4:47:FD:09:79:B8:A9:89:35:5C:35:4D:30:4D:11:4D:20:72:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PKRH_Ql5uKmJNVw1TTBNEU0gcno.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/BcTRmH6BmmlSz8rh3pMxnCQXpBs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.49.92.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:49:e4:0d:bd:37:07:7c:da:11:1d:2f:0b:b5:3a:e8:ae:85:
c5:e3:c2:29:76:18:67:47:c7:28:c7:27:a5:1d:21:57:0a:ec:
8c:09:e0:b4:c8:c4:df:8f:08:98:d9:e6:94:58:c9:5f:86:51:
8c:e1:10:40:ac:eb:c2:84:52:3a:7c:6d:da:ea:7b:40:77:f8:
7d:ab:a6:aa:db:24:4b:c3:70:46:ad:a5:c5:f5:eb:2d:c1:25:
45:66:db:51:22:1a:3f:36:c2:e0:7c:69:af:a2:94:f9:17:d4:
3b:b6:8c:73:db:93:e5:98:b6:43:db:0e:c7:e2:fc:8d:38:90:
d3:35:ff:b2:57:90:5f:d9:10:ef:63:03:2b:55:ad:9e:f1:45:
73:82:ea:b0:e8:d4:e9:16:0a:07:df:f8:b2:50:b4:17:f1:bb:
a8:15:cf:6f:6e:c0:58:2d:84:58:7b:e7:e4:50:11:82:5e:dd:
da:5e:1f:86:dd:21:71:31:35:02:ca:7f:05:cb:92:c7:19:c1:
2b:f1:15:d4:c3:aa:e4:ee:c0:ab:7f:45:68:a7:27:05:e3:af:
3e:b8:91:1f:21:17:93:84:01:c1:ed:a2:14:c3:92:1e:31:ff:
c7:ab:cf:48:26:da:58:77:66:ea:14:af:87:36:f6:6c:af:a4:
e7:15:3f:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:31 2025 by rpki-client on console.sobornost.net