Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/pO5jZKPZtKc7LFh2B3gUF2ssV3Y.roa
File: pO5jZKPZtKc7LFh2B3gUF2ssV3Y.roa (raw, json)
Hash identifier: rDX32rjjFQPeFJLlsJ7HQ9El7VqEOXBlwYtku8n7ZJg=
Subject key identifier: A4:EE:63:64:A3:D9:B4:A7:3B:2C:58:76:07:78:14:17:6B:2C:57:76
Certificate issuer: /CN=0648b338339900ff7f3b59b246d24d2687c6367c
Certificate serial: 0195678319F514361FAB3C20B9B3FD4EFDF4
Authority key identifier: 06:48:B3:38:33:99:00:FF:7F:3B:59:B2:46:D2:4D:26:87:C6:36:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BkizODOZAP9_O1myRtJNJofGNnw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/pO5jZKPZtKc7LFh2B3gUF2ssV3Y.roa
Signing time: Wed 05 Mar 2025 18:13:19 +0000
ROA not before: Wed 05 Mar 2025 18:13:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 12722
IP address blocks: 195.209.55.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:67:83:19:f5:14:36:1f:ab:3c:20:b9:b3:fd:4e:fd:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0648b338339900ff7f3b59b246d24d2687c6367c
Validity
Not Before: Mar 5 18:13:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a4ee6364a3d9b4a73b2c5876077814176b2c5776
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:de:c2:c4:c9:93:f3:37:45:d1:c3:ed:24:49:
f6:77:78:cb:f7:a8:73:d5:a6:57:b3:cd:34:e3:54:
03:5d:22:78:ee:53:b9:e6:7b:b6:46:bf:28:1b:a7:
85:b7:30:0d:70:61:3e:c0:2d:49:39:80:b8:eb:cb:
1c:d3:31:cb:38:ea:58:0f:05:30:c2:0a:ff:1d:b5:
89:16:ed:38:51:ba:6b:2f:96:26:bf:a0:f0:58:4a:
af:32:62:8a:2b:5a:47:e5:be:c1:35:5c:98:f5:07:
0b:c1:19:db:fe:c8:a5:69:d9:91:85:a7:4b:36:2f:
10:b4:23:f2:72:8a:39:2d:3a:7e:de:85:09:1c:65:
7a:d1:13:6f:26:ac:ee:f4:64:4f:92:32:6f:45:61:
aa:22:21:26:e7:be:59:86:6d:25:23:a7:c2:bf:19:
47:62:fa:04:2d:94:ac:c1:a2:e4:4e:20:06:2e:6a:
8d:6e:71:97:72:31:0c:0e:d4:78:9d:58:13:42:47:
c5:e7:9c:1a:ae:80:fe:bd:1e:8b:9e:3b:35:cc:6c:
b7:61:c5:cc:78:b2:ef:87:46:b1:4c:ef:fe:c7:80:
3a:13:d9:83:fd:6e:4c:1c:59:18:97:0d:ce:70:a2:
43:c6:2d:12:ba:07:7d:1d:e4:20:22:a6:d9:22:64:
26:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:EE:63:64:A3:D9:B4:A7:3B:2C:58:76:07:78:14:17:6B:2C:57:76
X509v3 Authority Key Identifier:
keyid:06:48:B3:38:33:99:00:FF:7F:3B:59:B2:46:D2:4D:26:87:C6:36:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BkizODOZAP9_O1myRtJNJofGNnw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/pO5jZKPZtKc7LFh2B3gUF2ssV3Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.209.55.0/24
Signature Algorithm: sha256WithRSAEncryption
c7:71:aa:d0:85:a2:11:9b:6e:37:b0:7e:14:82:7d:d2:ff:47:
cd:07:f9:2a:65:da:d2:52:e0:ea:99:d8:a5:ea:c7:f0:d5:19:
be:a4:42:a2:a8:09:69:e6:57:fc:78:bc:8d:02:0a:c7:ae:a8:
24:c4:23:6c:66:ea:e7:6f:7d:fa:d5:1a:59:e3:00:78:b0:f2:
15:92:e9:83:85:2e:48:7a:a0:a1:7d:af:3e:70:5c:db:04:fd:
b8:df:2f:6c:0a:cf:07:3c:3c:84:67:9c:e0:eb:98:41:75:7e:
14:a8:66:d0:e8:6a:17:97:d8:e8:06:33:78:b2:2b:75:a0:89:
79:42:f7:1c:6e:b3:38:4f:ca:ed:91:21:da:b6:d9:8d:bd:cf:
8f:39:a4:a7:6c:f6:e2:5b:38:32:77:36:39:ba:2d:3a:60:68:
d0:47:4b:74:7f:73:11:a3:58:ef:6b:fe:5a:28:77:46:fd:af:
b9:98:20:cc:de:dd:35:2e:4c:6c:2d:d9:42:d1:17:7d:50:d9:
0f:71:eb:e7:b4:83:fb:11:0a:d8:00:df:5b:64:4d:f8:3e:ed:
9c:fe:b9:d3:5b:9c:db:db:6a:24:b2:9b:25:d8:12:56:20:6e:
2e:4d:86:20:f0:47:bd:9c:b4:a6:28:73:30:9e:8e:cf:2f:3c:
f3:8f:11:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:34 2025 by rpki-client on console.sobornost.net