Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/c0ad4d-20fe-4a93-af06-1d0a4ec827ab/1/Q7n8gF3ZYVbGL83zzh2dQnmawHc.roa
File: Q7n8gF3ZYVbGL83zzh2dQnmawHc.roa (raw, json)
Hash identifier: nZCFM7j2sE+1KCmTTykVW0xazn9X/ppTbL+++Wr3NQI=
Subject key identifier: 43:B9:FC:80:5D:D9:61:56:C6:2F:CD:F3:CE:1D:9D:42:79:9A:C0:77
Certificate issuer: /CN=abc113c7aea6b714a060e9f7c3e71569e603d395
Certificate serial: 019421B1C87C8F8237457796DB43125A09FA
Authority key identifier: AB:C1:13:C7:AE:A6:B7:14:A0:60:E9:F7:C3:E7:15:69:E6:03:D3:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q8ETx66mtxSgYOn3w-cVaeYD05U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/c0ad4d-20fe-4a93-af06-1d0a4ec827ab/1/Q7n8gF3ZYVbGL83zzh2dQnmawHc.roa
Signing time: Wed 01 Jan 2025 11:48:06 +0000
ROA not before: Wed 01 Jan 2025 11:48:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 50413
IP address blocks: 195.78.107.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b1:c8:7c:8f:82:37:45:77:96:db:43:12:5a:09:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=abc113c7aea6b714a060e9f7c3e71569e603d395
Validity
Not Before: Jan 1 11:48:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=43b9fc805dd96156c62fcdf3ce1d9d42799ac077
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:c2:11:b5:1b:bc:27:9f:fa:e2:50:20:0f:af:
14:a5:83:4d:5b:12:05:79:6b:0a:b5:05:7a:95:30:
fe:a0:7b:99:0f:24:7b:98:c3:fc:ae:c2:4b:38:50:
bb:d6:55:cf:b7:86:02:88:92:0e:e9:08:ab:88:1f:
0b:84:22:c3:b7:e6:03:bf:5a:5e:3e:51:66:eb:78:
26:62:20:af:09:06:c5:1f:6c:ea:54:ab:8e:94:25:
53:db:3c:b2:bd:27:5a:7c:01:8d:7c:94:b0:4f:ca:
b7:2a:ba:23:a1:41:83:c9:ce:fe:2f:3c:78:90:83:
54:1c:66:5a:85:07:d8:f5:f0:e1:c3:b4:d0:d8:bf:
5b:3f:8a:a5:84:64:c5:ef:5a:3e:51:f9:f9:dd:3f:
8b:a2:b0:c7:b7:75:95:ea:15:43:82:c9:bb:ff:70:
23:00:09:db:35:6a:8a:90:0f:24:4d:4f:b9:14:25:
29:60:eb:92:4f:42:97:2e:fc:80:1c:9f:4b:d0:ee:
d2:58:e2:60:02:4f:af:32:7e:f4:cb:8e:25:b7:e7:
9f:a9:3b:76:98:e8:ef:3d:9f:58:b7:3e:3d:4b:f6:
04:06:dd:40:33:db:47:a3:b1:cd:ec:3d:40:6e:85:
52:e6:6b:81:1b:6d:22:4a:5f:84:c6:2b:46:30:29:
28:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:B9:FC:80:5D:D9:61:56:C6:2F:CD:F3:CE:1D:9D:42:79:9A:C0:77
X509v3 Authority Key Identifier:
keyid:AB:C1:13:C7:AE:A6:B7:14:A0:60:E9:F7:C3:E7:15:69:E6:03:D3:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q8ETx66mtxSgYOn3w-cVaeYD05U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/c0ad4d-20fe-4a93-af06-1d0a4ec827ab/1/Q7n8gF3ZYVbGL83zzh2dQnmawHc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/c0ad4d-20fe-4a93-af06-1d0a4ec827ab/1/q8ETx66mtxSgYOn3w-cVaeYD05U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.78.107.0/24
Signature Algorithm: sha256WithRSAEncryption
67:9d:76:24:3b:ef:0f:3d:d6:95:8f:ab:f3:38:da:c6:ff:e7:
50:c2:b4:d6:28:9a:29:b6:84:ef:08:78:9a:45:3f:3e:1f:81:
b2:21:d4:d3:7a:90:41:3f:86:32:86:e3:3d:1d:c8:31:8b:49:
1b:73:c4:fd:ca:84:19:52:15:af:e0:54:d2:cc:1e:a1:3b:38:
f5:9d:68:84:78:1d:5f:3d:b3:08:43:13:dd:fe:d9:18:74:26:
4e:69:0c:72:72:e8:e3:95:5b:ab:05:b1:4e:78:c0:d1:58:d5:
e2:32:14:7e:59:29:78:06:c3:42:f3:ac:42:d4:6d:5b:85:35:
c1:8f:01:7a:4c:30:11:01:93:31:20:7d:fa:90:f8:b6:f3:c6:
fa:35:d7:e9:42:d8:26:62:cb:69:80:bb:ea:64:08:6c:9a:1d:
36:13:13:01:b0:21:8e:15:57:97:bd:49:3d:d0:c7:1a:86:51:
40:25:f2:8d:39:7a:f3:e6:5d:fb:f2:ad:dd:ce:99:75:57:e2:
a5:b8:e1:3e:4d:45:92:c1:4b:98:82:c0:d8:d6:d7:01:6f:a5:
b3:d3:7c:c9:14:6e:85:f1:d2:60:52:10:6f:e4:af:50:79:9a:
05:5b:03:c9:16:f1:25:03:b4:49:e9:05:68:13:d0:88:23:c2:
79:23:54:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:39 2025 by rpki-client on console.sobornost.net