Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/3e5ba6-6f51-47ab-8540-be3e7a9ce15b/1/tBOKcfNxjTzkMUixXvH9M-s6MQc.roa
File: tBOKcfNxjTzkMUixXvH9M-s6MQc.roa (raw, json)
Hash identifier: WnsSxnvb5k4gG3MU31Atg7OcKa0e6J/w7SNoxsaja8E=
Subject key identifier: B4:13:8A:71:F3:71:8D:3C:E4:31:48:B1:5E:F1:FD:33:EB:3A:31:07
Certificate issuer: /CN=0515c15583b9ccff942cfb3eee04e2de95642662
Certificate serial: 0194228DD32B4385ACB42AD7D3DFCBDA401A
Authority key identifier: 05:15:C1:55:83:B9:CC:FF:94:2C:FB:3E:EE:04:E2:DE:95:64:26:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BRXBVYO5zP-ULPs-7gTi3pVkJmI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/3e5ba6-6f51-47ab-8540-be3e7a9ce15b/1/tBOKcfNxjTzkMUixXvH9M-s6MQc.roa
Signing time: Wed 01 Jan 2025 15:48:27 +0000
ROA not before: Wed 01 Jan 2025 15:48:27 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 47190
IP address blocks: 195.216.232.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:d3:2b:43:85:ac:b4:2a:d7:d3:df:cb:da:40:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0515c15583b9ccff942cfb3eee04e2de95642662
Validity
Not Before: Jan 1 15:48:27 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b4138a71f3718d3ce43148b15ef1fd33eb3a3107
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:ba:0b:c8:a6:58:13:b0:d2:09:17:28:b7:10:
68:70:e8:31:72:36:c6:90:3f:60:79:c7:a2:e5:df:
31:5c:1e:40:ba:37:ea:ab:bc:86:14:0e:20:e1:ae:
3c:28:82:bc:0a:07:a2:e7:de:01:1d:3b:cd:6e:be:
c5:81:6d:58:e5:8f:fc:60:52:16:f3:67:f6:40:59:
f9:70:d2:ef:59:ca:27:5c:fc:af:6c:ad:57:e8:67:
cb:41:13:de:94:88:70:36:1b:2e:5f:8a:fd:e4:a9:
e0:59:43:a0:42:35:eb:3c:29:5a:45:6e:ef:0f:1d:
d3:b0:22:f7:30:b5:6a:7e:fb:74:5e:a1:da:5d:f2:
6f:e2:75:fd:bb:b9:d0:85:7c:5a:cd:32:64:e4:c9:
dc:14:b0:03:7d:cf:2c:fc:de:b1:af:31:e1:5c:ea:
f0:84:08:ed:b4:82:d0:6a:b7:73:3a:b4:18:57:17:
f7:1e:67:c6:71:24:92:81:c5:1a:83:a0:7c:52:0b:
57:da:21:d0:24:99:90:dd:66:6a:99:ad:83:c6:d2:
98:b1:15:8a:aa:2a:12:a1:48:10:4e:de:80:15:6a:
48:81:43:28:b3:fb:ca:f3:d8:77:e6:a9:f9:4c:e0:
e4:0f:0e:e8:9d:1a:9e:16:f1:ab:23:78:e5:ac:be:
21:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:13:8A:71:F3:71:8D:3C:E4:31:48:B1:5E:F1:FD:33:EB:3A:31:07
X509v3 Authority Key Identifier:
keyid:05:15:C1:55:83:B9:CC:FF:94:2C:FB:3E:EE:04:E2:DE:95:64:26:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BRXBVYO5zP-ULPs-7gTi3pVkJmI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/3e5ba6-6f51-47ab-8540-be3e7a9ce15b/1/tBOKcfNxjTzkMUixXvH9M-s6MQc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/3e5ba6-6f51-47ab-8540-be3e7a9ce15b/1/BRXBVYO5zP-ULPs-7gTi3pVkJmI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.216.232.0/24
Signature Algorithm: sha256WithRSAEncryption
46:f5:e2:5b:04:72:51:13:40:41:6b:ec:f1:f7:13:10:e5:f9:
cd:f7:44:c4:77:9f:f8:9f:98:5f:81:58:97:76:db:20:3a:70:
19:d2:ee:dd:72:ad:7f:64:6c:fd:b8:cc:52:26:54:03:7b:24:
0e:fd:99:fc:ba:f9:e5:c4:d8:f5:b5:e2:8a:12:2a:d1:b9:dd:
09:6a:83:12:5e:42:c9:75:a2:6a:0e:55:63:69:17:3a:c3:64:
b4:8a:79:20:be:45:e6:7f:49:0a:e0:11:1e:80:55:e5:9b:ca:
24:78:99:18:6d:c4:23:b6:7b:56:21:1a:b2:65:fe:9a:8a:25:
0c:b1:62:9b:d3:f0:11:bb:0d:39:00:6e:7b:55:b6:66:1f:3a:
4d:9d:1b:9f:5b:ee:89:08:f3:b0:ec:ba:83:c3:cb:fc:3f:ba:
16:32:d0:c4:20:c8:b4:13:bd:eb:99:63:d4:86:c9:2d:b1:22:
77:ce:d2:c6:13:59:fc:ce:18:ba:4e:8d:4a:f4:b8:56:be:92:
20:64:ad:b1:f8:29:4e:75:32:77:12:a1:cc:33:d5:39:4f:a0:
7d:99:c2:e4:f6:68:a6:64:7d:3f:a8:77:de:75:09:66:bd:44:
0a:d5:1d:c9:8d:d1:61:39:69:10:3a:9b:52:bf:ca:ce:24:26:
27:76:87:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:38 2025 by rpki-client on console.sobornost.net