Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/480f4a-a937-4149-aee8-e32924ac7b63/1/P0UPsrwwEpdQwdedOlBN_0JW76s.roa
File: P0UPsrwwEpdQwdedOlBN_0JW76s.roa (raw, json)
Hash identifier: XTTIfgwtO/hFYhC4hGvqLqbBL3XWX9y/VAMeHabMSVo=
Subject key identifier: 3F:45:0F:B2:BC:30:12:97:50:C1:D7:9D:3A:50:4D:FF:42:56:EF:AB
Certificate issuer: /CN=b78678bd654ca6b10a5c773bc269754dc234cfd5
Certificate serial: 019624C8295A636B32EF2506548C685C079D
Authority key identifier: B7:86:78:BD:65:4C:A6:B1:0A:5C:77:3B:C2:69:75:4D:C2:34:CF:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t4Z4vWVMprEKXHc7wml1TcI0z9U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/480f4a-a937-4149-aee8-e32924ac7b63/1/P0UPsrwwEpdQwdedOlBN_0JW76s.roa
Signing time: Fri 11 Apr 2025 12:16:59 +0000
ROA not before: Fri 11 Apr 2025 12:16:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214113
IP address blocks: 192.140.228.0/22 maxlen: 22
192.140.231.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:24:c8:29:5a:63:6b:32:ef:25:06:54:8c:68:5c:07:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b78678bd654ca6b10a5c773bc269754dc234cfd5
Validity
Not Before: Apr 11 12:16:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3f450fb2bc30129750c1d79d3a504dff4256efab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:8c:a8:e1:2a:d3:89:52:ca:b7:8c:e9:4c:25:
99:f0:0b:fc:2b:92:74:f9:d0:b9:90:73:22:28:cf:
af:cf:48:65:b2:a1:26:8a:97:01:01:a2:46:09:d7:
e8:63:97:fb:c6:6f:65:ba:ec:28:e1:4e:bd:35:fd:
68:74:6e:4e:1a:d5:dd:95:bb:7c:43:90:85:d4:31:
32:90:d0:d8:80:2c:88:9c:8d:87:db:17:6e:e0:3b:
86:da:ca:d0:07:51:13:86:47:f5:00:66:58:fa:9a:
92:76:d9:4e:0f:cd:01:eb:b6:cc:61:1b:53:f8:b0:
62:83:c0:ba:cd:47:5a:44:1b:0c:7c:eb:f1:72:b5:
ed:e0:bc:08:2b:ef:ae:8c:ac:5b:d9:83:3e:00:1b:
85:4f:95:25:d6:8d:ab:34:72:70:b5:5d:ad:bb:93:
50:0a:27:72:9a:a0:3d:22:67:e6:62:db:ab:6e:77:
47:a2:fc:9c:3c:15:09:17:40:f4:d2:a9:94:8d:2a:
6f:47:c3:7c:95:ac:42:0f:aa:e9:eb:7e:66:da:09:
b2:3f:9f:90:d7:7c:fc:b4:4c:83:5b:37:b7:98:e3:
1b:18:56:96:eb:da:78:50:f5:b9:0e:b4:81:83:f5:
4c:14:48:95:c1:5c:43:7d:e5:1b:9d:b4:25:a7:2f:
cd:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:45:0F:B2:BC:30:12:97:50:C1:D7:9D:3A:50:4D:FF:42:56:EF:AB
X509v3 Authority Key Identifier:
keyid:B7:86:78:BD:65:4C:A6:B1:0A:5C:77:3B:C2:69:75:4D:C2:34:CF:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t4Z4vWVMprEKXHc7wml1TcI0z9U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/480f4a-a937-4149-aee8-e32924ac7b63/1/P0UPsrwwEpdQwdedOlBN_0JW76s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/480f4a-a937-4149-aee8-e32924ac7b63/1/t4Z4vWVMprEKXHc7wml1TcI0z9U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.140.228.0/22
Signature Algorithm: sha256WithRSAEncryption
0b:ea:56:49:9b:a0:9c:39:27:4c:18:0e:62:96:88:f9:d5:3b:
9c:1c:ab:04:f3:fc:3d:47:21:7d:4e:d3:cc:2a:32:be:7f:62:
c0:83:bc:4a:8f:27:48:0c:a2:a0:ab:56:60:41:d6:eb:20:90:
89:90:81:bf:84:a3:c5:36:70:f7:43:95:ba:86:82:d2:f9:5c:
5a:5e:13:f3:b4:ac:6d:42:53:c1:87:f8:4b:2e:35:23:2b:54:
81:cc:30:19:88:22:0a:57:3d:b2:30:0d:23:26:52:39:98:6c:
19:3c:ae:65:73:43:40:cb:3d:e7:69:b8:91:b2:2d:99:01:a3:
2a:8d:79:d3:5d:5c:c7:0e:37:38:2f:51:01:8e:7d:b3:19:e7:
ed:4b:e2:b8:a1:7e:37:e7:1a:9c:3d:93:ea:37:22:53:b7:72:
ef:d3:53:c9:bd:2f:c2:ff:dd:3d:d3:d4:81:fb:2b:4d:f2:de:
12:c2:20:1c:2c:1f:d5:92:52:3c:68:ae:f8:aa:51:7b:a5:0c:
28:44:2d:eb:d8:ad:d4:2e:ee:aa:6d:92:2b:62:3c:ac:85:6a:
01:6a:43:dd:ed:99:5c:27:b9:77:e0:59:80:81:ed:09:7e:9a:
df:2a:32:8b:56:06:65:85:19:e4:81:c9:d4:87:eb:c9:6a:10:
f0:97:57:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:33 2025 by rpki-client on console.sobornost.net