Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/5c22c6-7dc3-4c8c-82ac-936175ad2eb0/1/p23wwYN_BcdLiJY0vIjxBTg9FfA.roa
File: p23wwYN_BcdLiJY0vIjxBTg9FfA.roa (raw, json)
Hash identifier: BpBe3bEGzQ2vJJNcd5ELYkyQlNL9ofFCJ83jKn6lQFw=
Subject key identifier: A7:6D:F0:C1:83:7F:05:C7:4B:88:96:34:BC:88:F1:05:38:3D:15:F0
Certificate issuer: /CN=db25d03fc18f2f42cda503869de194fd8cc21aa9
Certificate serial: 019420684B138C3227577BF7EE61815A0BB1
Authority key identifier: DB:25:D0:3F:C1:8F:2F:42:CD:A5:03:86:9D:E1:94:FD:8C:C2:1A:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2yXQP8GPL0LNpQOGneGU_YzCGqk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/5c22c6-7dc3-4c8c-82ac-936175ad2eb0/1/p23wwYN_BcdLiJY0vIjxBTg9FfA.roa
Signing time: Wed 01 Jan 2025 05:48:13 +0000
ROA not before: Wed 01 Jan 2025 05:48:13 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 197192
IP address blocks: 195.226.213.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:68:4b:13:8c:32:27:57:7b:f7:ee:61:81:5a:0b:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db25d03fc18f2f42cda503869de194fd8cc21aa9
Validity
Not Before: Jan 1 05:48:13 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a76df0c1837f05c74b889634bc88f105383d15f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:63:cf:e0:27:cd:b8:45:55:86:63:df:1f:e7:
7c:0c:91:e6:52:a4:96:49:b0:b1:44:c1:38:de:d0:
ba:a5:27:4e:90:30:73:62:c3:2a:d2:0b:c1:ba:50:
a2:4e:0e:e3:56:d8:f0:71:a8:00:f2:37:14:70:7f:
c6:15:42:56:47:43:dc:be:37:e8:c7:87:2d:10:e6:
d8:bc:c3:71:af:ca:14:fd:de:e6:14:f7:32:e3:8f:
2f:31:05:ae:a7:2a:dc:3f:bf:25:45:dc:63:31:a7:
ad:08:b0:5e:2c:b4:2d:57:43:7a:08:18:e4:3d:dd:
4d:e7:c3:bb:41:7b:1c:a5:b8:1e:de:59:e9:23:0b:
54:f0:59:f1:73:99:1f:48:41:15:7c:69:a5:55:6b:
78:8f:ab:82:5c:16:37:4b:32:9c:5b:f7:b7:c4:01:
a9:c6:3a:ef:df:0f:c2:71:8b:ef:3c:cf:b0:4c:af:
cb:54:9b:f7:36:36:77:e5:a4:7c:21:0d:7d:e2:2d:
10:aa:42:0f:d1:4f:d4:97:f3:de:f4:86:3a:47:1b:
0c:f3:4b:6c:7e:ff:57:be:d5:7d:ac:74:43:ac:b8:
5c:32:0a:a1:05:02:88:f1:9d:e8:b1:a1:06:a5:fe:
e6:8c:7d:67:48:1c:33:c2:4d:25:10:ad:d6:f3:48:
5c:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:6D:F0:C1:83:7F:05:C7:4B:88:96:34:BC:88:F1:05:38:3D:15:F0
X509v3 Authority Key Identifier:
keyid:DB:25:D0:3F:C1:8F:2F:42:CD:A5:03:86:9D:E1:94:FD:8C:C2:1A:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2yXQP8GPL0LNpQOGneGU_YzCGqk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/5c22c6-7dc3-4c8c-82ac-936175ad2eb0/1/p23wwYN_BcdLiJY0vIjxBTg9FfA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/5c22c6-7dc3-4c8c-82ac-936175ad2eb0/1/2yXQP8GPL0LNpQOGneGU_YzCGqk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.226.213.0/24
Signature Algorithm: sha256WithRSAEncryption
30:9e:9d:7a:c8:1e:d1:e9:06:57:e1:54:47:e2:db:33:d4:bf:
62:55:c8:8a:69:48:2e:1c:2f:f1:85:79:34:b3:c4:25:51:51:
1e:c5:c5:f7:e7:69:e7:c2:93:cc:6b:7a:c8:cf:d2:e4:d9:9b:
d6:b4:16:c8:56:81:3b:c5:b8:c7:74:27:3a:7d:d7:fc:f2:37:
9f:dd:1c:e5:5b:da:c0:36:20:0b:37:09:7c:32:d1:3f:c9:77:
7b:c7:06:76:1d:b0:5f:ac:39:01:b9:e6:b4:d5:5f:5a:22:49:
06:06:64:9e:fe:11:0c:56:9b:bd:b7:21:46:4e:31:1f:98:e5:
c2:39:27:bb:c0:7b:6d:30:45:5e:72:96:1b:5c:a9:77:72:a3:
dc:9a:f2:29:ef:5b:79:c9:86:f1:27:73:10:0e:30:9b:9c:01:
a0:fe:89:22:6f:e5:53:d3:f6:ee:eb:84:d6:99:8f:66:98:aa:
4a:0d:71:8f:15:0a:73:f3:80:01:64:cb:87:86:04:d1:11:62:
51:93:60:40:cb:4c:af:29:d7:0a:c7:c6:ce:89:8b:3f:8a:1a:
ba:0a:fd:99:37:3b:ae:8e:75:db:5d:42:6e:5c:c1:a5:bd:fe:
2f:af:4c:f0:b8:c5:28:9c:74:9f:74:2f:56:10:0b:b4:b1:31:
32:26:1e:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:39 2025 by rpki-client on console.sobornost.net