Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/536431-9cbe-43a9-8c1f-68ad2d111bac/1/0nNYMJ2yluQoQ02pe7IRw8NkdfA.roa
File: 0nNYMJ2yluQoQ02pe7IRw8NkdfA.roa (raw, json)
Hash identifier: GkG/6rDrk9vq7Jp2NvQPyT4My5GzjO9oZQi+bOX75cE=
Subject key identifier: D2:73:58:30:9D:B2:96:E4:28:43:4D:A9:7B:B2:11:C3:C3:64:75:F0
Certificate issuer: /CN=8200596bbf382d498bc5ec2b3fd65339e85b98f2
Certificate serial: 01942747CE5B9944A74950A5CA32A1D21C86
Authority key identifier: 82:00:59:6B:BF:38:2D:49:8B:C5:EC:2B:3F:D6:53:39:E8:5B:98:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ggBZa784LUmLxewrP9ZTOehbmPI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/536431-9cbe-43a9-8c1f-68ad2d111bac/1/0nNYMJ2yluQoQ02pe7IRw8NkdfA.roa
Signing time: Thu 02 Jan 2025 13:50:04 +0000
ROA not before: Thu 02 Jan 2025 13:50:04 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43104
IP address blocks: 193.200.224.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:47:ce:5b:99:44:a7:49:50:a5:ca:32:a1:d2:1c:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8200596bbf382d498bc5ec2b3fd65339e85b98f2
Validity
Not Before: Jan 2 13:50:04 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d27358309db296e428434da97bb211c3c36475f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:80:03:01:a0:f0:d2:f4:41:3a:23:6e:68:fa:
61:7c:47:d0:aa:98:d7:d1:70:06:93:06:84:2c:24:
3c:33:b0:13:99:24:78:46:08:99:f7:a7:67:2f:84:
65:88:0f:79:06:19:42:d8:99:93:c1:ec:75:bc:8e:
18:87:cf:b4:5a:67:d8:71:5f:b3:c2:a7:6f:35:c2:
54:66:36:7a:e7:db:8e:48:e1:87:10:2a:30:c9:eb:
23:75:01:1a:b4:bd:7c:2f:04:11:2e:63:ec:e5:8f:
5e:dd:c2:fd:33:65:e7:ef:00:d9:9c:41:20:d5:66:
03:ca:39:09:a0:7e:86:e3:5d:07:63:a0:3d:a5:dd:
f1:dd:00:93:30:fe:63:6e:4d:3e:c1:20:52:2a:76:
8f:ac:fe:53:ff:e5:63:d0:02:54:28:f5:6b:5b:36:
e9:68:e1:e6:56:94:b2:ab:2f:13:c3:ae:c9:f0:63:
7a:25:47:7d:32:da:76:17:3b:77:f4:25:54:a8:6e:
76:42:56:7a:bf:b2:f8:81:90:9a:76:f0:ff:dd:6a:
51:88:40:b4:56:a4:71:32:a6:66:8c:4e:4e:c4:a0:
de:2a:e7:73:2f:4f:58:0f:20:da:c8:51:26:b0:fd:
cc:ad:86:88:16:40:95:58:9b:11:cf:f1:5b:8d:c3:
85:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:73:58:30:9D:B2:96:E4:28:43:4D:A9:7B:B2:11:C3:C3:64:75:F0
X509v3 Authority Key Identifier:
keyid:82:00:59:6B:BF:38:2D:49:8B:C5:EC:2B:3F:D6:53:39:E8:5B:98:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ggBZa784LUmLxewrP9ZTOehbmPI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/536431-9cbe-43a9-8c1f-68ad2d111bac/1/0nNYMJ2yluQoQ02pe7IRw8NkdfA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/536431-9cbe-43a9-8c1f-68ad2d111bac/1/ggBZa784LUmLxewrP9ZTOehbmPI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.200.224.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:65:17:23:c2:22:37:09:86:ac:97:3b:0c:e5:2f:eb:2e:57:
79:3a:72:1e:21:99:ac:58:7d:8b:4e:0c:36:f0:85:dc:73:de:
1f:f4:83:65:35:99:44:94:36:56:15:31:16:38:84:04:41:9a:
a1:c2:fa:36:76:a5:2f:25:3a:33:e6:cf:65:6d:d5:24:7a:06:
26:94:07:aa:c7:a0:6a:cf:08:4a:b6:33:1c:f6:64:4a:cd:96:
bd:ec:3c:d8:16:c4:1e:cc:77:c9:50:88:9c:87:f7:29:0d:61:
2a:a4:88:24:9e:73:66:20:16:d4:fd:10:c2:82:a7:0b:c6:05:
d6:54:9e:31:00:77:db:fe:d7:47:a0:f1:c0:87:e5:2b:54:7e:
b1:71:47:78:a5:8a:e5:68:f0:80:28:6e:b8:a2:3c:9c:69:2a:
04:c2:a2:e3:90:33:f8:fa:99:e3:43:ec:d0:c3:cd:13:2f:a4:
ed:28:e4:ed:99:14:01:08:5b:1a:88:c4:57:53:cc:4d:cf:de:
c4:ea:a2:15:af:35:f2:76:05:7d:94:bc:76:f6:53:de:c1:06:
d4:96:2c:3d:6b:3d:f4:1c:05:55:6b:6d:fe:e3:b8:71:55:e2:
82:80:88:56:2f:e2:2a:df:0b:7f:f2:76:11:09:3d:68:a5:86:
f7:ce:e4:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:33 2025 by rpki-client on console.sobornost.net