Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/566ef5-d13d-474c-a299-298fbe7dc168/1/k3QEGek6OEeL5SsPbREF1e2K4Yk.roa
File: k3QEGek6OEeL5SsPbREF1e2K4Yk.roa (raw, json)
Hash identifier: NiaroSVfhsYQcW9nN+bvyMvN1j0QK242NmOTmwcSA2g=
Subject key identifier: 93:74:04:19:E9:3A:38:47:8B:E5:2B:0F:6D:11:05:D5:ED:8A:E1:89
Certificate issuer: /CN=572ba64b3a9060b464337ad30a02bec4b11a551f
Certificate serial: 019580E2C3B77D456A035CC25AEE4B021521
Authority key identifier: 57:2B:A6:4B:3A:90:60:B4:64:33:7A:D3:0A:02:BE:C4:B1:1A:55:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VyumSzqQYLRkM3rTCgK-xLEaVR8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/566ef5-d13d-474c-a299-298fbe7dc168/1/k3QEGek6OEeL5SsPbREF1e2K4Yk.roa
Signing time: Mon 10 Mar 2025 16:28:19 +0000
ROA not before: Mon 10 Mar 2025 16:28:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 62313
IP address blocks: 194.9.4.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:80:e2:c3:b7:7d:45:6a:03:5c:c2:5a:ee:4b:02:15:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=572ba64b3a9060b464337ad30a02bec4b11a551f
Validity
Not Before: Mar 10 16:28:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=93740419e93a38478be52b0f6d1105d5ed8ae189
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:7b:98:81:7d:b8:e4:f0:b7:e6:71:64:99:fc:
b3:9b:ef:53:43:27:95:87:1a:27:89:a5:9c:a3:7e:
6d:4f:80:c4:e7:62:aa:3d:ff:61:cb:78:13:a8:07:
41:c8:a7:ed:e0:7c:8a:60:db:78:40:9c:7c:d3:8a:
31:77:87:2b:8f:b2:85:84:47:ec:08:6d:9c:22:0a:
69:27:4f:1b:05:3d:9b:47:2c:89:a7:3e:eb:df:a3:
9c:51:aa:a9:c8:9e:7b:10:39:41:40:e2:6c:93:6c:
af:e1:54:1c:e6:4f:f3:72:93:b5:c2:e4:06:80:da:
96:84:5c:76:31:32:e4:bb:19:8f:ca:2e:86:bb:b3:
66:51:06:ef:e6:50:6c:bd:cf:39:f4:d9:4c:99:0f:
83:3f:bd:f7:ee:72:5e:32:bb:ae:b6:79:23:88:a9:
b9:4c:ae:c1:64:4f:48:62:1e:04:51:33:1c:c1:b7:
3e:99:31:cc:58:4b:d8:76:f4:b9:2f:70:f4:21:58:
82:bb:f8:28:cf:bd:bc:10:75:5d:88:3d:2e:e6:30:
7c:0b:3e:6a:6c:7d:32:f5:06:9f:31:75:62:ff:b4:
8f:e4:33:6b:31:29:ae:2f:10:a7:e5:4e:62:d6:a5:
03:7d:94:52:ce:53:81:75:04:33:bc:30:15:e0:9b:
18:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:74:04:19:E9:3A:38:47:8B:E5:2B:0F:6D:11:05:D5:ED:8A:E1:89
X509v3 Authority Key Identifier:
keyid:57:2B:A6:4B:3A:90:60:B4:64:33:7A:D3:0A:02:BE:C4:B1:1A:55:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VyumSzqQYLRkM3rTCgK-xLEaVR8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/566ef5-d13d-474c-a299-298fbe7dc168/1/k3QEGek6OEeL5SsPbREF1e2K4Yk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/566ef5-d13d-474c-a299-298fbe7dc168/1/VyumSzqQYLRkM3rTCgK-xLEaVR8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.9.4.0/23
Signature Algorithm: sha256WithRSAEncryption
66:0f:29:80:a1:2c:bb:a1:de:85:1e:89:9b:8a:5d:d0:45:3e:
20:dc:a0:75:cf:e3:4c:64:88:17:42:78:a9:62:7c:75:b7:84:
77:91:e8:92:d3:79:e0:c6:cf:3d:df:98:a9:bf:4e:51:61:7f:
39:92:ef:2e:4f:dd:8a:2c:19:66:75:4e:4d:3b:31:65:1e:7b:
3f:b9:5b:01:04:41:e2:fa:08:1d:99:ed:24:46:aa:ad:ad:0b:
07:de:99:1f:f7:c2:8a:bd:f6:da:bd:2d:dc:e5:50:0a:17:7a:
34:49:50:46:b2:93:e8:b0:ce:59:cb:9b:d5:8e:ef:1a:97:d7:
21:f1:b1:68:8c:ec:c2:3a:98:03:e4:ef:77:d8:4a:e1:1e:ff:
60:01:5c:27:4c:de:8c:43:37:a2:62:82:52:03:39:10:bd:99:
e0:da:a3:e5:04:e2:24:ce:31:cf:a5:df:92:be:cf:26:f5:55:
a5:cb:08:6c:69:2e:30:2c:d5:97:3d:c7:36:c0:4d:6c:ca:90:
27:62:c0:39:dd:3a:37:ed:12:6f:10:5e:d6:4e:c8:d9:2a:73:
5e:ac:eb:89:64:aa:f5:1f:ee:d8:11:df:21:60:8f:17:48:52:
f7:af:b2:17:da:47:f5:40:19:15:a5:29:af:65:bf:3b:e8:95:
86:5e:13:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:41 2025 by rpki-client on console.sobornost.net