Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/4f9f9f-30a8-4370-94e7-38abfa4fa350/1/J7FeME6X_EaiBdjBEuAbDz0h-wk.roa
File: J7FeME6X_EaiBdjBEuAbDz0h-wk.roa (raw, json)
Hash identifier: Vo2/tm/C/KJ/j4K0JEVvCiIn5IsRx4PScob1tXJwJvI=
Subject key identifier: 27:B1:5E:30:4E:97:FC:46:A2:05:D8:C1:12:E0:1B:0F:3D:21:FB:09
Certificate issuer: /CN=9535462ebb2029a83d3eeab462ff052ecfa0e1c3
Certificate serial: 01942521281B624A0BAC9152987037D729B6
Authority key identifier: 95:35:46:2E:BB:20:29:A8:3D:3E:EA:B4:62:FF:05:2E:CF:A0:E1:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lTVGLrsgKag9Puq0Yv8FLs-g4cM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/4f9f9f-30a8-4370-94e7-38abfa4fa350/1/J7FeME6X_EaiBdjBEuAbDz0h-wk.roa
Signing time: Thu 02 Jan 2025 03:48:37 +0000
ROA not before: Thu 02 Jan 2025 03:48:37 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 137
IP address blocks: 193.43.101.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:28:1b:62:4a:0b:ac:91:52:98:70:37:d7:29:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9535462ebb2029a83d3eeab462ff052ecfa0e1c3
Validity
Not Before: Jan 2 03:48:37 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=27b15e304e97fc46a205d8c112e01b0f3d21fb09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:2a:8f:8a:7e:0f:b0:49:df:93:17:52:d2:64:
21:8f:05:d4:79:14:44:15:f2:01:d6:a6:f8:07:cc:
47:e4:7a:e3:32:df:36:bc:50:d8:0f:56:c4:08:93:
92:c6:1c:0f:f0:8f:65:03:4f:18:fb:4f:3a:b0:fb:
5f:24:31:fa:61:5a:15:2f:b5:a9:fc:73:56:b1:90:
0f:60:6c:21:ad:be:7c:b4:c1:6d:8a:a1:9b:38:e3:
98:f0:f7:81:e0:5a:17:a5:7a:8b:06:f1:86:ac:4e:
ad:47:99:a5:d7:fd:c3:d7:98:80:8f:ef:b1:5d:2d:
23:71:59:22:b9:aa:8b:f6:c9:02:08:f8:7d:72:6f:
9c:07:e5:13:d9:f3:ee:d2:48:6e:48:91:af:da:50:
08:b8:02:5a:34:2b:96:86:4e:91:0b:7f:a9:28:ac:
7d:d8:9a:1f:4b:d8:a6:f9:e8:94:ae:78:01:73:7d:
48:b7:eb:4d:54:e4:02:32:37:e4:c6:61:5a:e8:c5:
dc:7a:6d:bd:02:83:72:d8:a1:7f:4b:4b:24:47:c0:
11:f9:b0:d0:bc:4a:9b:21:13:67:87:36:df:33:01:
91:36:da:f2:18:bd:0d:fb:8b:11:3e:50:c7:93:03:
fe:05:23:75:64:21:ae:7b:47:e4:b4:bb:11:1b:8f:
50:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:B1:5E:30:4E:97:FC:46:A2:05:D8:C1:12:E0:1B:0F:3D:21:FB:09
X509v3 Authority Key Identifier:
keyid:95:35:46:2E:BB:20:29:A8:3D:3E:EA:B4:62:FF:05:2E:CF:A0:E1:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lTVGLrsgKag9Puq0Yv8FLs-g4cM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/4f9f9f-30a8-4370-94e7-38abfa4fa350/1/J7FeME6X_EaiBdjBEuAbDz0h-wk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/4f9f9f-30a8-4370-94e7-38abfa4fa350/1/lTVGLrsgKag9Puq0Yv8FLs-g4cM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.43.101.0/24
Signature Algorithm: sha256WithRSAEncryption
14:b0:62:10:ed:ab:20:d7:f2:56:57:71:88:3b:21:94:a0:97:
50:ca:37:75:21:32:c3:62:28:81:80:3e:f8:d3:ca:af:57:4c:
58:d2:c2:70:ae:c8:ea:e2:74:92:bb:6a:81:85:fc:b2:3e:bd:
ee:e1:8c:4e:36:01:f8:a6:21:f3:9a:b6:fd:d2:b7:58:be:65:
10:df:ff:25:cf:46:04:37:2b:7a:84:e1:8c:98:d9:c8:e9:9b:
3b:c9:8d:88:39:48:84:99:cf:3e:10:9d:be:6f:fa:3f:1a:49:
e7:88:9d:9c:e1:6c:64:57:52:13:23:c4:88:de:ae:e4:3d:cb:
06:84:fd:c8:cd:0a:4f:31:33:7f:30:65:98:3b:64:d6:ae:58:
93:05:cb:09:5b:c6:4d:1a:a1:f2:94:75:4a:5b:b7:ce:b6:34:
4f:90:b9:89:29:c1:bd:52:79:4a:ee:0e:73:3e:08:b5:8f:58:
e9:3e:02:63:03:cc:bf:8b:0e:c6:21:84:4c:a2:45:2a:a6:26:
8c:94:2c:fd:1b:88:a6:40:1c:b5:0b:ae:88:a5:73:b5:0a:1b:
a8:d2:a6:de:00:ce:dd:31:9f:4d:56:a5:86:1e:63:09:c9:10:
c1:87:6c:50:f3:05:97:76:e2:35:57:dc:63:93:58:2e:26:10:
c3:46:69:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:31 2025 by rpki-client on console.sobornost.net