Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/ba12cd-2e7e-40dc-ae88-248b59c3696b/1/nqDbjTD7-4bF8APAmv3q39AmNtk.roa
File: nqDbjTD7-4bF8APAmv3q39AmNtk.roa (raw, json)
Hash identifier: zWbRV6cXuufmhpJUA1tayT8JP8s9Ez0NcmTuvgMXFF8=
Subject key identifier: 9E:A0:DB:8D:30:FB:FB:86:C5:F0:03:C0:9A:FD:EA:DF:D0:26:36:D9
Certificate issuer: /CN=42c0959011627ddd0d057d731e8fa5a510296592
Certificate serial: 01942143D61EFF571923F3BF1428C14EA557
Authority key identifier: 42:C0:95:90:11:62:7D:DD:0D:05:7D:73:1E:8F:A5:A5:10:29:65:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QsCVkBFifd0NBX1zHo-lpRApZZI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/ba12cd-2e7e-40dc-ae88-248b59c3696b/1/nqDbjTD7-4bF8APAmv3q39AmNtk.roa
Signing time: Wed 01 Jan 2025 09:48:01 +0000
ROA not before: Wed 01 Jan 2025 09:48:01 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 137
IP address blocks: 156.148.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:43:d6:1e:ff:57:19:23:f3:bf:14:28:c1:4e:a5:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42c0959011627ddd0d057d731e8fa5a510296592
Validity
Not Before: Jan 1 09:48:01 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9ea0db8d30fbfb86c5f003c09afdeadfd02636d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:e2:52:5e:ef:e1:6a:52:45:75:43:7e:1b:9f:
d3:35:17:8b:b8:bd:c0:b3:04:12:e3:1c:51:15:fc:
7d:2f:12:b3:8c:4b:d6:ef:47:8c:15:61:af:78:b4:
f7:11:87:f8:77:d8:5d:b3:49:28:f2:43:d3:25:7d:
06:b2:63:1c:94:d2:40:18:b4:41:e2:9c:60:3b:fe:
e2:75:38:a0:87:93:9e:83:4d:fd:9b:ca:7c:43:21:
78:44:52:63:c4:95:e5:6d:13:a3:d8:2f:9f:f5:e1:
a6:d5:97:40:26:28:a7:ec:cf:c2:9b:b5:be:d7:51:
f6:69:f0:96:73:0d:b0:28:d2:ef:50:5a:71:88:3a:
11:1c:4f:e9:d9:9c:03:db:88:1a:da:95:69:3b:6e:
45:7d:b3:b8:70:62:64:48:9b:1e:2d:eb:75:af:82:
0c:c0:cc:71:65:a4:9c:1f:b8:7a:54:a0:d0:21:09:
35:3e:79:fb:d7:ef:42:be:df:94:49:9e:b7:9a:8e:
df:1d:b7:6d:98:84:b5:d1:9d:54:5c:55:1d:83:53:
a5:72:ef:02:45:8c:b7:49:bf:4c:a7:4a:ec:0f:16:
e9:dc:46:29:72:0a:cb:06:91:29:4b:2a:71:44:ab:
6f:23:80:73:f8:1d:ae:05:00:e4:30:72:f3:04:c9:
6a:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:A0:DB:8D:30:FB:FB:86:C5:F0:03:C0:9A:FD:EA:DF:D0:26:36:D9
X509v3 Authority Key Identifier:
keyid:42:C0:95:90:11:62:7D:DD:0D:05:7D:73:1E:8F:A5:A5:10:29:65:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QsCVkBFifd0NBX1zHo-lpRApZZI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ba12cd-2e7e-40dc-ae88-248b59c3696b/1/nqDbjTD7-4bF8APAmv3q39AmNtk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ba12cd-2e7e-40dc-ae88-248b59c3696b/1/QsCVkBFifd0NBX1zHo-lpRApZZI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
156.148.0.0/16
Signature Algorithm: sha256WithRSAEncryption
60:01:df:8f:1f:a0:07:42:04:cc:63:06:7c:68:1f:19:c6:86:
fb:0f:e2:2b:f7:dc:54:33:ff:a3:77:ed:77:b4:ea:a6:d7:28:
86:85:7b:19:fe:56:1c:a3:41:c4:36:7a:06:b7:4f:c6:e4:ff:
2f:b2:a2:b2:21:11:2b:a8:8b:0e:e6:c4:47:61:03:e0:11:bd:
e0:72:34:72:81:4e:f3:ac:05:1e:f8:21:db:09:87:c3:ef:e8:
33:19:07:26:93:3a:28:27:fe:92:48:86:1c:01:45:5b:64:93:
7c:1b:fe:db:ae:86:b4:c7:88:02:d1:ed:3e:e2:f9:f3:4c:d2:
08:ee:a9:70:3b:d9:26:b2:d3:da:6c:23:7e:f5:3e:90:c7:6f:
bb:45:4f:56:d0:00:c4:dd:39:ab:73:72:59:ba:5e:0e:f2:e1:
83:6e:70:4f:92:2f:36:1a:ea:db:2e:d8:c8:a3:3f:46:04:b0:
8c:52:48:71:f4:95:ad:8a:80:31:9a:ae:52:0c:d5:4d:b6:1e:
af:d0:75:0a:0c:b1:39:23:58:ca:64:04:96:84:a8:56:2a:13:
62:85:a1:10:c9:58:78:40:15:6b:d2:e4:34:39:78:e4:24:a2:
59:c2:a9:67:15:94:a1:12:a8:91:d5:3f:24:ec:7e:54:34:19:
7b:ca:e9:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:31 2025 by rpki-client on console.sobornost.net