Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/25e76a-d140-4e0b-88e4-ef219381f10e/1/AC883ZSFeLZkC1mvfN3COR1ZIn0.roa
File: AC883ZSFeLZkC1mvfN3COR1ZIn0.roa (raw, json)
Hash identifier: yFCKOZ3uJ8W8rt1Xv99w8FDNXVYQbjjKrbhWZG8+e8A=
Subject key identifier: 00:2F:3C:DD:94:85:78:B6:64:0B:59:AF:7C:DD:C2:39:1D:59:22:7D
Certificate issuer: /CN=7be907dd202152cf1902bedbecb19a2d72ac0859
Certificate serial: 019420D60B5062E930D6E111660B785A5704
Authority key identifier: 7B:E9:07:DD:20:21:52:CF:19:02:BE:DB:EC:B1:9A:2D:72:AC:08:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e-kH3SAhUs8ZAr7b7LGaLXKsCFk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/25e76a-d140-4e0b-88e4-ef219381f10e/1/AC883ZSFeLZkC1mvfN3COR1ZIn0.roa
Signing time: Wed 01 Jan 2025 07:48:06 +0000
ROA not before: Wed 01 Jan 2025 07:48:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43028
IP address blocks: 94.140.104.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d6:0b:50:62:e9:30:d6:e1:11:66:0b:78:5a:57:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7be907dd202152cf1902bedbecb19a2d72ac0859
Validity
Not Before: Jan 1 07:48:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=002f3cdd948578b6640b59af7cddc2391d59227d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:ff:99:08:e0:df:87:8f:76:b9:60:8c:ab:b0:
58:40:46:39:72:6a:09:b8:e9:bf:da:13:fd:de:4b:
d0:de:bf:54:08:8b:d6:bc:01:75:b3:31:cd:fa:8f:
76:a2:9a:02:5b:34:25:e6:ea:63:b1:db:ff:b3:9f:
b2:d7:30:dd:3b:24:80:22:48:43:0f:3e:56:70:ea:
fd:34:92:46:36:9c:b3:d8:3a:91:2b:12:f9:28:54:
1f:52:d2:7c:0d:e6:3c:a3:d2:73:be:3a:bc:9f:37:
5e:fb:15:57:d9:de:c7:91:8d:f8:1e:ce:d2:da:c5:
d1:ec:03:1b:0b:3a:1d:d7:a4:8c:3c:43:eb:c2:30:
35:87:93:be:c0:f4:c7:37:0b:a2:2c:ef:97:47:fb:
56:b8:55:90:35:dd:0d:fe:1c:b8:12:69:b6:d9:2b:
ba:6d:8c:21:80:f7:9c:27:32:d4:1b:65:b2:33:1d:
83:57:c5:07:26:e2:6e:5a:5b:8f:e2:4e:8d:d3:69:
59:26:dc:fa:c4:3b:8b:0d:56:85:a8:12:16:24:91:
b1:17:c9:d4:0c:bd:a1:c2:a7:eb:d6:a8:04:4b:d9:
f4:49:75:29:db:f4:93:55:ad:fd:04:d1:0f:40:32:
28:52:57:ed:9e:9a:ac:94:be:7f:58:5b:03:6e:d0:
a2:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:2F:3C:DD:94:85:78:B6:64:0B:59:AF:7C:DD:C2:39:1D:59:22:7D
X509v3 Authority Key Identifier:
keyid:7B:E9:07:DD:20:21:52:CF:19:02:BE:DB:EC:B1:9A:2D:72:AC:08:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e-kH3SAhUs8ZAr7b7LGaLXKsCFk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/25e76a-d140-4e0b-88e4-ef219381f10e/1/AC883ZSFeLZkC1mvfN3COR1ZIn0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/25e76a-d140-4e0b-88e4-ef219381f10e/1/e-kH3SAhUs8ZAr7b7LGaLXKsCFk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.140.104.0/23
Signature Algorithm: sha256WithRSAEncryption
1a:81:85:44:b5:38:db:4a:16:2b:18:65:44:ba:40:04:df:43:
a0:35:b7:34:55:18:33:69:bc:4d:f2:4f:c1:ce:4e:80:00:94:
62:9c:fe:02:d6:b9:23:81:ef:1b:f0:dc:a3:fb:c5:d6:0e:73:
3f:e0:2d:ae:6e:9d:a1:4f:71:ef:57:7a:16:32:67:3f:3b:e1:
88:b0:33:2b:7f:1b:ac:33:ad:94:f7:71:e0:7a:14:b7:99:dd:
8f:85:6e:72:20:eb:b4:f4:5b:a4:91:d6:47:27:f6:da:06:4e:
69:2c:34:46:a7:1e:a6:81:44:6c:e8:22:1d:ae:19:3d:fa:cd:
20:28:35:5f:39:9a:dd:3e:ca:c0:ad:29:60:ea:c1:cc:56:c0:
6e:90:89:75:f4:fa:bf:ff:3d:e4:17:e6:1e:87:ca:28:ea:83:
11:85:89:dd:d0:33:7b:07:50:a3:8b:4f:f5:51:e8:37:a3:9e:
b5:1b:15:e0:c5:09:2e:93:ca:d1:aa:e8:19:ff:fc:0b:80:ae:
1d:13:48:1a:37:d5:02:45:e8:cf:0e:5d:7a:63:f9:20:35:a3:
bd:7f:7a:56:03:0f:4b:11:50:4a:16:e1:2e:5e:f7:f7:bd:e6:
3e:b9:e3:e7:16:c4:4b:89:7f:e8:fa:34:09:1d:37:0d:9d:c0:
6c:84:27:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:44 2025 by rpki-client on console.sobornost.net