Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/a9bfb5-162d-4c7e-b700-191b2ae3fa5a/1/8UgkBAZONepNyI81FukUfi25Kao.roa
File: 8UgkBAZONepNyI81FukUfi25Kao.roa (raw, json)
Hash identifier: rpUHlCnR+nUi3dHMj1nsfDs3V156wUfOtUa+u9zdDrQ=
Subject key identifier: F1:48:24:04:06:4E:35:EA:4D:C8:8F:35:16:E9:14:7E:2D:B9:29:AA
Certificate issuer: /CN=c0595b6c8ae86cf9069aba3eba6ddf2a68237f08
Certificate serial: 0194228DD5BF56E2CC48AD12A72C40556106
Authority key identifier: C0:59:5B:6C:8A:E8:6C:F9:06:9A:BA:3E:BA:6D:DF:2A:68:23:7F:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wFlbbIrobPkGmro-um3fKmgjfwg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/a9bfb5-162d-4c7e-b700-191b2ae3fa5a/1/8UgkBAZONepNyI81FukUfi25Kao.roa
Signing time: Wed 01 Jan 2025 15:48:28 +0000
ROA not before: Wed 01 Jan 2025 15:48:28 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 24953
IP address blocks: 194.153.93.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:d5:bf:56:e2:cc:48:ad:12:a7:2c:40:55:61:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c0595b6c8ae86cf9069aba3eba6ddf2a68237f08
Validity
Not Before: Jan 1 15:48:28 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f1482404064e35ea4dc88f3516e9147e2db929aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:22:f8:af:3e:0a:00:e4:8d:45:51:f6:1d:9c:
15:93:49:58:fa:fb:1a:7b:2d:0c:82:6d:fc:f2:bd:
48:f7:cc:8a:c7:bc:aa:a4:ca:1a:34:de:54:9e:eb:
d5:a3:7d:ea:46:cb:79:01:08:3b:cf:5b:7f:7f:54:
78:44:5d:f1:73:dc:96:f2:9d:60:5b:4f:1e:f2:02:
ef:4d:e1:8d:c2:6a:da:90:71:20:95:2e:b7:21:19:
f4:b9:f3:44:35:39:64:69:65:2c:68:f3:f3:86:fc:
cd:03:58:bb:bf:4b:0e:d9:8b:52:83:ea:b2:bb:5d:
b3:6d:a5:fd:9d:4c:e4:15:9b:51:05:97:57:ca:cc:
ec:ce:32:8b:92:0a:76:70:3a:30:21:06:43:57:ae:
02:d5:70:55:a7:f2:2e:f8:dd:5c:11:94:0d:1c:51:
b0:8e:0e:b1:c9:33:88:d4:30:03:c0:11:59:3f:05:
d8:29:73:0c:b1:26:fb:49:e5:5d:cc:a9:e4:a6:69:
e1:4d:47:b6:d9:9d:4c:83:91:55:68:7f:57:e9:00:
4f:8c:8d:e8:2d:d0:78:af:46:c7:b6:5a:48:de:8f:
fa:e9:10:e4:62:19:bb:01:04:c1:8c:aa:c0:b7:ff:
7c:19:d0:22:56:33:ec:4e:8b:ef:10:b4:3d:74:6b:
5a:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:48:24:04:06:4E:35:EA:4D:C8:8F:35:16:E9:14:7E:2D:B9:29:AA
X509v3 Authority Key Identifier:
keyid:C0:59:5B:6C:8A:E8:6C:F9:06:9A:BA:3E:BA:6D:DF:2A:68:23:7F:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wFlbbIrobPkGmro-um3fKmgjfwg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/a9bfb5-162d-4c7e-b700-191b2ae3fa5a/1/8UgkBAZONepNyI81FukUfi25Kao.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/a9bfb5-162d-4c7e-b700-191b2ae3fa5a/1/wFlbbIrobPkGmro-um3fKmgjfwg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.153.93.0/24
Signature Algorithm: sha256WithRSAEncryption
18:f8:0d:f5:cd:31:78:56:80:2e:f2:d1:45:ab:0e:fa:07:d8:
be:89:6c:59:40:dd:de:ff:91:50:fa:ad:23:ac:60:f8:ad:a2:
9e:2c:6d:d8:02:ad:be:83:c5:40:7d:7d:b3:0a:5e:d0:84:ca:
c9:44:14:a1:b1:41:30:b8:ef:b7:3f:5c:d1:7a:f2:ec:bd:df:
5c:a1:dc:8a:d6:8d:2f:9c:bb:e5:0e:75:f8:27:d8:c1:d8:9e:
67:a9:33:e9:c5:c2:7a:0c:10:f5:32:2a:0d:32:3e:a5:f4:21:
ec:da:ce:89:6d:be:95:f1:a9:59:00:78:a0:3e:52:a3:c0:2e:
18:65:24:21:9d:80:47:22:f5:95:57:d1:6c:0a:2c:90:87:1c:
44:67:a1:e5:89:9a:bb:1a:58:b1:c6:a9:64:b3:be:e1:fa:e8:
fa:2b:d0:d3:4b:66:5f:30:8e:3d:65:c7:90:d1:aa:1f:60:e3:
38:99:e8:5d:3a:ed:b0:4a:63:ca:e2:16:0c:86:f6:c2:3c:9e:
0e:f8:57:ee:81:b9:46:9c:4c:7a:d8:52:49:8c:6a:8a:fa:cb:
df:4b:dc:28:c1:44:33:a6:9d:0b:44:ff:2d:c4:b9:ee:6d:0c:
70:dd:62:a7:47:ce:a2:94:0f:b1:79:7b:f2:30:5e:2d:43:aa:
75:c0:78:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:33 2025 by rpki-client on console.sobornost.net