Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/aa3805-c8a4-4f65-87cb-13ea56d1f63a/1/imECYFGKC-3y-aw_FjEqqGuMgCg.roa
File: imECYFGKC-3y-aw_FjEqqGuMgCg.roa (raw, json)
Hash identifier: W1gRIBzxFMrRJWBGFPIeo4wKyMzv3I/ninZ6Px3gAlY=
Subject key identifier: 8A:61:02:60:51:8A:0B:ED:F2:F9:AC:3F:16:31:2A:A8:6B:8C:80:28
Certificate issuer: /CN=340551ace81314829351a27e399aeddb33246155
Certificate serial: 019421B1BF21D60C65DC0F839205F3424C26
Authority key identifier: 34:05:51:AC:E8:13:14:82:93:51:A2:7E:39:9A:ED:DB:33:24:61:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NAVRrOgTFIKTUaJ-OZrt2zMkYVU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/aa3805-c8a4-4f65-87cb-13ea56d1f63a/1/imECYFGKC-3y-aw_FjEqqGuMgCg.roa
Signing time: Wed 01 Jan 2025 11:48:04 +0000
ROA not before: Wed 01 Jan 2025 11:48:04 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43341
IP address blocks: 194.113.144.0/22 maxlen: 22
2a07:e300::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b1:bf:21:d6:0c:65:dc:0f:83:92:05:f3:42:4c:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=340551ace81314829351a27e399aeddb33246155
Validity
Not Before: Jan 1 11:48:04 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8a610260518a0bedf2f9ac3f16312aa86b8c8028
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:0c:4c:f6:ea:2a:ce:6c:61:29:c5:e3:46:75:
9c:ed:19:cc:e2:f5:49:44:ca:c1:10:80:26:4e:1b:
d8:67:eb:d9:1a:43:89:8a:ad:bf:9d:6e:0c:4e:f0:
17:d1:72:63:b3:f6:98:a7:63:ed:fa:2a:ec:86:bc:
bb:8a:3f:8b:18:16:72:4d:b1:aa:ba:14:1f:bd:10:
75:2c:8f:89:24:d8:44:0d:88:3d:4f:e7:f9:fe:74:
5e:95:9c:ff:a0:d5:12:70:f3:24:d8:de:7b:c7:ea:
03:6d:a9:fc:57:28:a8:a4:ed:e3:07:86:a4:b1:6d:
f9:10:c7:12:84:a8:d4:4c:2d:09:d2:ae:80:99:65:
9b:2d:ab:f2:e1:e1:41:c6:e7:ce:c6:8d:9c:56:f2:
41:f4:60:8f:23:ce:46:28:17:59:9f:3b:cc:a3:48:
e2:d6:44:60:1d:fa:44:73:78:7d:a1:58:ba:72:f0:
0e:10:49:05:63:4b:98:63:82:b3:4c:fc:3f:f7:61:
e2:30:f8:5c:b2:69:19:a0:bd:9f:ee:b5:20:1c:a3:
9e:00:73:3e:6d:6f:12:9b:40:b3:99:a4:0d:d6:47:
7c:d5:01:06:4f:59:30:19:a9:7b:1a:22:c2:a5:20:
e1:7c:53:19:ff:ed:0c:6b:b6:c7:a5:8a:eb:f6:72:
14:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:61:02:60:51:8A:0B:ED:F2:F9:AC:3F:16:31:2A:A8:6B:8C:80:28
X509v3 Authority Key Identifier:
keyid:34:05:51:AC:E8:13:14:82:93:51:A2:7E:39:9A:ED:DB:33:24:61:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NAVRrOgTFIKTUaJ-OZrt2zMkYVU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/aa3805-c8a4-4f65-87cb-13ea56d1f63a/1/imECYFGKC-3y-aw_FjEqqGuMgCg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/aa3805-c8a4-4f65-87cb-13ea56d1f63a/1/NAVRrOgTFIKTUaJ-OZrt2zMkYVU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.113.144.0/22
IPv6:
2a07:e300::/29
Signature Algorithm: sha256WithRSAEncryption
2f:08:e1:43:64:8f:82:6f:60:c0:b4:a2:b5:93:51:c3:ea:5b:
9a:d0:ec:96:09:b7:09:66:53:07:e9:d9:7d:05:67:6c:a1:99:
73:75:03:8f:c1:fc:1a:1f:5d:9e:56:6e:9d:d9:9b:3f:fb:ac:
77:31:1d:a4:67:c5:b9:99:75:30:b4:4e:fe:50:b0:f4:bc:37:
0c:2b:af:53:89:f5:2f:97:17:50:b6:bc:d6:6d:b0:f9:18:5c:
52:40:39:45:39:f0:8a:e7:1f:13:8b:28:5b:46:43:ac:d9:ab:
35:49:2f:6a:8f:d6:93:f0:af:32:84:b3:db:94:ab:19:06:e8:
03:ee:24:6c:9e:91:9e:c3:1e:d9:74:64:7e:1e:67:1b:32:e1:
4e:7a:84:b8:82:4d:22:75:16:2b:29:76:28:8a:49:3e:15:23:
d8:18:62:1b:74:2b:cf:63:a6:99:2f:2c:6a:1c:d8:05:da:39:
49:46:b0:bd:65:d5:20:cd:4a:b3:7b:94:71:57:1a:f2:b7:2b:
fb:6e:cd:b6:e6:09:ea:c0:f0:88:6b:50:71:e2:c2:bc:d3:f3:
1d:7a:73:b4:87:8e:9f:3c:ba:3b:b3:d7:c4:3c:04:7a:37:94:
4b:69:81:fc:24:d1:a7:1c:0f:36:db:d9:2e:fb:a5:a2:29:ab:
b2:b4:08:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:32 2025 by rpki-client on console.sobornost.net