Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/0uVokjA0n-IKYM4dLwrHfcYoXtI.roa
File: 0uVokjA0n-IKYM4dLwrHfcYoXtI.roa (raw, json)
Hash identifier: h5xCuikP/FGyLSLux1dmHiJam1SLoPwDAncSRikSHHc=
Subject key identifier: D2:E5:68:92:30:34:9F:E2:0A:60:CE:1D:2F:0A:C7:7D:C6:28:5E:D2
Certificate issuer: /CN=7190f5d5f92a486362177a42b3d5efda20e220e1
Certificate serial: 01942521E02C059F3FF77C40BA4CECAAE9AC
Authority key identifier: 71:90:F5:D5:F9:2A:48:63:62:17:7A:42:B3:D5:EF:DA:20:E2:20:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cZD11fkqSGNiF3pCs9Xv2iDiIOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/0uVokjA0n-IKYM4dLwrHfcYoXtI.roa
Signing time: Thu 02 Jan 2025 03:49:24 +0000
ROA not before: Thu 02 Jan 2025 03:49:24 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211742
IP address blocks: 195.245.203.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:e0:2c:05:9f:3f:f7:7c:40:ba:4c:ec:aa:e9:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7190f5d5f92a486362177a42b3d5efda20e220e1
Validity
Not Before: Jan 2 03:49:24 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d2e5689230349fe20a60ce1d2f0ac77dc6285ed2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:c5:5e:57:39:e8:74:19:75:3a:da:2c:14:a1:
88:ed:40:9a:6c:5f:46:e9:40:a1:8f:f8:3b:10:07:
f7:a8:f6:5e:ef:0b:28:eb:39:87:52:a2:07:89:d8:
cb:73:88:27:04:67:d8:26:54:f3:f5:d5:ef:6d:ed:
a8:c4:b6:4c:27:a1:98:2a:ec:5a:2f:39:a8:76:6f:
99:fb:3f:ce:34:7b:70:ce:10:86:ee:29:63:fe:08:
7d:b1:a5:5a:e0:37:0a:c8:1a:02:57:9d:95:e4:bb:
33:e4:42:50:97:01:c2:21:60:1e:d8:6b:c9:0a:bc:
23:5e:36:3d:a1:8f:d0:e0:e5:25:58:63:b5:72:7c:
09:24:3d:cf:6d:80:a3:c6:53:2e:3d:d7:de:19:dc:
5a:26:82:56:b5:bb:7e:7c:5a:f5:4c:d4:17:28:91:
13:12:99:5b:c8:2c:41:84:57:91:e2:fc:98:77:82:
d4:75:e6:a5:00:1e:ae:66:33:cb:b3:a3:47:41:35:
47:11:c5:e2:07:ab:46:e1:36:26:ef:84:d5:6f:c6:
f9:dc:43:46:38:d2:8e:57:7a:65:b8:78:69:ff:b4:
97:32:cd:d3:5b:b8:11:6f:34:78:94:65:19:87:87:
a7:15:cb:9e:04:82:19:1c:1c:bf:72:f5:35:a0:07:
57:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:E5:68:92:30:34:9F:E2:0A:60:CE:1D:2F:0A:C7:7D:C6:28:5E:D2
X509v3 Authority Key Identifier:
keyid:71:90:F5:D5:F9:2A:48:63:62:17:7A:42:B3:D5:EF:DA:20:E2:20:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cZD11fkqSGNiF3pCs9Xv2iDiIOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/0uVokjA0n-IKYM4dLwrHfcYoXtI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.245.203.0/24
Signature Algorithm: sha256WithRSAEncryption
07:5f:48:3d:a7:50:ce:a2:3a:cf:ca:b8:b8:0f:e7:24:d6:0b:
fd:9c:65:04:b9:3e:9f:37:42:e8:32:29:dc:7e:ca:b0:3d:a7:
46:57:4d:7d:39:99:2f:0f:ed:31:01:60:a7:8f:63:60:2b:3f:
9c:f7:49:e8:2f:6b:38:c5:b7:89:6b:69:26:63:a5:d9:ed:01:
6f:5d:a5:f5:1b:75:90:9a:ce:89:87:18:40:28:f8:fe:d8:d1:
6e:cb:82:e7:20:4d:28:c3:a5:f2:7a:89:a7:28:01:9a:6f:cd:
ce:66:9b:4a:25:d1:67:3f:be:79:ba:02:bf:9c:97:fe:ec:fb:
6b:16:96:29:21:93:a7:50:d2:9f:5e:89:af:32:7f:87:d4:d8:
47:05:1a:01:0d:b5:18:d2:1f:be:aa:b7:67:96:36:6b:79:c5:
a5:ca:b2:b3:5b:34:90:76:c9:eb:21:05:34:6b:3e:ee:e8:33:
72:5a:ca:62:6b:9a:0d:57:83:68:f7:eb:82:0a:e2:c2:23:a9:
dc:1c:b1:85:cc:b8:18:e9:69:96:7f:c0:33:f5:22:8a:29:6a:
60:f1:97:12:8d:b5:1c:57:cf:0f:32:df:43:8b:f1:dc:f6:46:
65:d8:e8:24:ce:49:98:60:c4:5f:2b:c9:f7:b9:42:ee:13:a5:
84:06:1e:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:42 2025 by rpki-client on console.sobornost.net