Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/d2cec5-b245-4547-a9cd-f6c644c94608/1/VFafoaVO2bN0O_eWCA7NRDo9AQI.roa
File: VFafoaVO2bN0O_eWCA7NRDo9AQI.roa (raw, json)
Hash identifier: ZCSixYQYQeBNPNi+wxPK+CWr+k+nO4o0D+w9LRSwgUE=
Subject key identifier: 54:56:9F:A1:A5:4E:D9:B3:74:3B:F7:96:08:0E:CD:44:3A:3D:01:02
Certificate issuer: /CN=73fba682d69c1d10708ed7b6aeaa232ee89b901d
Certificate serial: 01942445A1AD0BD368921296E0AAE0AF89EB
Authority key identifier: 73:FB:A6:82:D6:9C:1D:10:70:8E:D7:B6:AE:AA:23:2E:E8:9B:90:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c_umgtacHRBwjte2rqojLuibkB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/d2cec5-b245-4547-a9cd-f6c644c94608/1/VFafoaVO2bN0O_eWCA7NRDo9AQI.roa
Signing time: Wed 01 Jan 2025 23:48:50 +0000
ROA not before: Wed 01 Jan 2025 23:48:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 29121
IP address blocks: 195.69.96.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:a1:ad:0b:d3:68:92:12:96:e0:aa:e0:af:89:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73fba682d69c1d10708ed7b6aeaa232ee89b901d
Validity
Not Before: Jan 1 23:48:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=54569fa1a54ed9b3743bf796080ecd443a3d0102
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:6c:25:cd:1b:8a:e1:cf:f4:f2:5f:6e:2c:0a:
b3:38:cd:a7:07:99:7a:20:f1:6f:0a:af:83:96:83:
a4:42:d2:09:d0:9c:9a:dd:96:0c:60:31:08:08:f7:
52:75:a2:33:31:e1:22:46:63:e7:57:39:fe:27:0a:
aa:d6:8a:86:61:51:83:17:6b:83:01:51:c3:b7:80:
9b:07:90:8e:5c:59:61:6e:7c:74:4d:91:dc:d5:9c:
ec:c7:40:ff:22:84:0e:48:a4:d8:2c:d3:2e:30:1c:
a9:dd:93:e6:f2:47:e7:d4:ac:66:db:f1:ed:3c:e2:
a2:e5:29:04:04:3e:13:e7:07:da:9d:ec:d5:89:03:
58:8e:5f:f9:66:a8:28:eb:46:10:94:3d:83:6b:81:
4a:d7:97:e6:7c:87:33:4e:67:87:3d:e3:42:6c:1b:
e1:d8:ef:44:11:bb:4f:99:80:dd:77:61:6d:4c:6a:
f8:54:9a:ad:fd:8b:58:78:27:c8:6b:44:f1:dc:b9:
ac:3f:03:5a:1a:32:b7:22:b3:61:ec:47:f1:3c:0f:
23:47:b7:bc:0a:19:bc:7c:60:61:83:6a:66:80:74:
52:75:b5:4c:64:da:cf:b8:f0:fc:c2:85:16:7d:f4:
ca:cc:6e:50:ea:5f:64:87:a4:94:2d:5e:4d:eb:1b:
90:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:56:9F:A1:A5:4E:D9:B3:74:3B:F7:96:08:0E:CD:44:3A:3D:01:02
X509v3 Authority Key Identifier:
keyid:73:FB:A6:82:D6:9C:1D:10:70:8E:D7:B6:AE:AA:23:2E:E8:9B:90:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c_umgtacHRBwjte2rqojLuibkB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/d2cec5-b245-4547-a9cd-f6c644c94608/1/VFafoaVO2bN0O_eWCA7NRDo9AQI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/d2cec5-b245-4547-a9cd-f6c644c94608/1/c_umgtacHRBwjte2rqojLuibkB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.69.96.0/22
Signature Algorithm: sha256WithRSAEncryption
92:36:48:54:70:e1:0a:72:c4:e0:d4:7a:35:48:39:e6:e7:e8:
49:30:1b:a5:a3:3c:03:76:20:7f:e9:02:4e:49:75:31:e8:4c:
13:56:ba:99:94:d7:6c:54:28:9a:8a:c5:13:5d:c2:eb:e0:e3:
97:d8:c9:ab:7a:b3:a8:f7:77:26:c8:2a:06:df:81:5a:18:b7:
44:99:7d:70:8e:e4:54:e5:4a:85:30:d9:b8:57:fc:59:8d:2f:
09:55:c6:7e:d1:32:3b:30:c5:1d:f1:c9:79:ad:2f:15:20:bc:
60:24:e3:4e:aa:b1:59:b8:32:7d:08:75:65:78:91:99:27:e9:
f2:30:fb:49:95:ca:72:75:45:5d:b0:9f:fa:dd:d6:77:b8:9d:
46:3a:51:cc:10:3b:19:e3:0e:98:0a:ee:b8:86:38:5a:47:97:
ad:20:e7:0d:0a:e3:0e:c8:39:73:7c:69:43:82:34:8a:fa:03:
e6:c4:94:0d:29:21:15:d0:c5:c0:7e:c0:1e:9a:75:72:dd:35:
bc:ec:8a:50:9c:da:29:70:a7:1f:f7:4e:56:a3:76:e0:90:84:
d4:d8:1a:d5:9e:56:e4:85:1b:e7:c6:14:56:f7:ff:b7:58:d6:
3c:ea:dd:1e:17:b6:4a:18:10:90:50:43:83:64:c0:21:84:d4:
62:8a:9e:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:39 2025 by rpki-client on console.sobornost.net