Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/192c67-9353-49c3-8a2f-365e13da62ea/1/Kvab69Fm55apwC6CNn_puTpqnco.roa
File: Kvab69Fm55apwC6CNn_puTpqnco.roa (raw, json)
Hash identifier: SXQsTZgWdcQi8ndza2+PpabIjMyNvdIkKjFoA2OkVbo=
Subject key identifier: 2A:F6:9B:EB:D1:66:E7:96:A9:C0:2E:82:36:7F:E9:B9:3A:6A:9D:CA
Certificate issuer: /CN=941f20add212c0e0e68e3f1ae8ea2a79649f4f4c
Certificate serial: 019423D75831EBE8592EF397EA44E3D0A5F1
Authority key identifier: 94:1F:20:AD:D2:12:C0:E0:E6:8E:3F:1A:E8:EA:2A:79:64:9F:4F:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lB8grdISwODmjj8a6OoqeWSfT0w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/192c67-9353-49c3-8a2f-365e13da62ea/1/Kvab69Fm55apwC6CNn_puTpqnco.roa
Signing time: Wed 01 Jan 2025 21:48:22 +0000
ROA not before: Wed 01 Jan 2025 21:48:22 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 1930
IP address blocks: 192.67.76.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:58:31:eb:e8:59:2e:f3:97:ea:44:e3:d0:a5:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=941f20add212c0e0e68e3f1ae8ea2a79649f4f4c
Validity
Not Before: Jan 1 21:48:22 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2af69bebd166e796a9c02e82367fe9b93a6a9dca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:57:12:e3:5d:4f:ce:09:7f:7b:8a:01:04:ed:
48:c1:65:f9:04:88:58:c3:7a:e0:61:f6:4b:81:32:
4a:72:5a:32:81:c2:98:b1:49:3a:b4:11:76:fe:62:
8f:cf:82:4f:f4:7a:02:09:b8:3c:3a:4e:7c:34:8b:
66:67:dc:66:c5:73:42:6d:86:e2:e5:f2:89:29:a6:
75:93:09:da:99:46:9c:90:e1:3e:48:eb:68:7f:40:
d7:a3:b3:af:31:4a:2f:37:f1:9b:a4:21:e2:d1:87:
69:35:0f:b6:b3:1f:cd:f4:e1:c1:22:dc:44:13:c1:
52:f0:fb:07:fe:71:fb:56:c1:d5:fd:6e:3f:67:37:
fa:20:17:a6:17:52:94:c9:96:b8:21:42:04:95:79:
6a:d1:51:47:48:14:ef:32:74:d2:59:b0:96:5c:82:
54:50:86:eb:64:34:ea:d5:12:ae:47:4f:3c:0a:ca:
96:78:af:38:48:87:cb:14:45:14:a3:eb:a2:3b:41:
ce:18:f4:10:46:37:29:02:3d:89:fe:55:8c:0b:a5:
50:7e:3d:9f:45:27:e9:68:20:fb:60:1a:4c:d4:b8:
e0:98:df:c9:97:1a:68:b2:b8:de:43:d2:d0:d6:5b:
ef:4b:cf:82:50:6b:f4:88:de:14:3e:8f:36:0a:16:
41:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:F6:9B:EB:D1:66:E7:96:A9:C0:2E:82:36:7F:E9:B9:3A:6A:9D:CA
X509v3 Authority Key Identifier:
keyid:94:1F:20:AD:D2:12:C0:E0:E6:8E:3F:1A:E8:EA:2A:79:64:9F:4F:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lB8grdISwODmjj8a6OoqeWSfT0w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/192c67-9353-49c3-8a2f-365e13da62ea/1/Kvab69Fm55apwC6CNn_puTpqnco.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/192c67-9353-49c3-8a2f-365e13da62ea/1/lB8grdISwODmjj8a6OoqeWSfT0w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.67.76.0/24
Signature Algorithm: sha256WithRSAEncryption
be:d6:ba:3c:6b:b2:20:17:d1:50:5f:83:8f:e3:60:d2:de:5d:
cd:99:1f:e0:ae:bd:16:de:5f:08:89:f2:b6:a8:66:aa:99:58:
b1:0e:d9:c6:da:5a:a1:36:b1:60:8c:c0:79:91:37:f2:f1:5e:
6e:25:2a:bf:37:d0:98:93:12:94:8d:43:e1:ec:d4:a4:a5:e2:
75:bf:88:f7:49:06:dc:16:79:ce:e2:34:41:2b:63:81:4f:74:
f9:ee:99:78:f3:fd:c4:1b:83:85:e1:3a:d6:d1:de:1f:90:a2:
e4:f5:df:db:8e:94:d9:b4:89:92:9a:f9:82:3d:6d:f8:da:e2:
25:46:ab:2b:ec:14:2c:81:3a:20:71:67:64:01:e8:69:9c:ed:
19:81:0b:e8:55:25:af:70:11:36:a9:88:2e:de:f5:6f:94:4d:
26:c4:e0:10:f1:d9:97:2e:04:a2:b6:c4:5d:ef:81:d3:c5:62:
b3:09:b2:44:68:09:80:3f:15:b7:94:ba:17:20:de:7f:a8:2d:
e5:1d:8f:3f:60:61:27:68:86:aa:27:06:9a:a0:af:60:eb:81:
75:d8:14:52:ef:b9:24:d5:b4:49:48:f3:f5:98:ee:38:2a:ba:
41:17:72:f3:94:1f:de:8b:77:2e:0f:e4:b8:1b:17:ae:13:79:
99:53:89:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:41 2025 by rpki-client on console.sobornost.net