Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/U-Ph48laIxEbF24jH6nOMT3OpLA.roa
File: U-Ph48laIxEbF24jH6nOMT3OpLA.roa (raw, json)
Hash identifier: h/z1tS8nUsqG42P90V9Offm2msIM9SciPTSWhkVK3yE=
Subject key identifier: 53:E3:E1:E3:C9:5A:23:11:1B:17:6E:23:1F:A9:CE:31:3D:CE:A4:B0
Certificate issuer: /CN=58ad60da52671e9083cf39864eca2aa23241be9e
Certificate serial: 019428263F73C7721D2FD067FB8402C06EB5
Authority key identifier: 58:AD:60:DA:52:67:1E:90:83:CF:39:86:4E:CA:2A:A2:32:41:BE:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WK1g2lJnHpCDzzmGTsoqojJBvp4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/U-Ph48laIxEbF24jH6nOMT3OpLA.roa
Signing time: Thu 02 Jan 2025 17:53:02 +0000
ROA not before: Thu 02 Jan 2025 17:53:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 998
IP address blocks: 193.25.166.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:26:3f:73:c7:72:1d:2f:d0:67:fb:84:02:c0:6e:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58ad60da52671e9083cf39864eca2aa23241be9e
Validity
Not Before: Jan 2 17:53:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=53e3e1e3c95a23111b176e231fa9ce313dcea4b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:26:89:f5:0c:d8:c0:ab:96:7a:91:44:c4:58:
c3:4e:50:eb:9f:51:5f:12:ea:56:7b:9e:52:ef:76:
33:64:cd:55:4c:49:d7:83:9a:cf:f2:22:86:55:1e:
20:27:1a:57:77:65:83:be:c2:ca:e5:0f:c4:69:d4:
3f:f0:f1:4b:94:8b:36:a0:a5:2f:73:b9:02:ec:d8:
6a:fd:1b:b9:b5:43:84:16:a7:52:9c:e4:69:83:f9:
de:2c:6f:93:86:e1:4c:a3:3d:8f:14:d2:a2:7f:c4:
95:a0:52:de:30:d9:95:d6:0e:ad:95:c1:98:ca:57:
a5:f7:be:27:7a:5b:1d:b7:9d:85:21:1e:e2:de:5a:
9d:9f:b7:39:c7:be:db:66:f9:48:2a:0a:8c:ba:94:
9f:03:b6:9d:7f:d7:fa:5c:a9:b6:87:20:9d:cc:0b:
18:79:9c:20:19:ed:7b:0c:c6:f9:90:4c:4c:ca:e7:
ac:9e:13:e4:74:22:fa:4b:9d:66:7b:80:a3:10:ce:
46:7a:41:61:e9:7e:44:8e:fd:d3:95:a2:f8:3e:0f:
07:4f:5e:e8:b7:17:6f:16:8f:30:f5:5a:d3:3e:9e:
9a:78:f6:bf:07:ee:b9:1c:f7:37:f0:3f:47:48:30:
ea:b5:bb:ca:2d:a6:55:3e:7e:74:ef:24:7e:97:1e:
18:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:E3:E1:E3:C9:5A:23:11:1B:17:6E:23:1F:A9:CE:31:3D:CE:A4:B0
X509v3 Authority Key Identifier:
keyid:58:AD:60:DA:52:67:1E:90:83:CF:39:86:4E:CA:2A:A2:32:41:BE:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WK1g2lJnHpCDzzmGTsoqojJBvp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/U-Ph48laIxEbF24jH6nOMT3OpLA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/WK1g2lJnHpCDzzmGTsoqojJBvp4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.25.166.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:3d:93:01:c6:0d:f2:67:22:09:04:3d:c1:68:28:e9:cd:1a:
29:b0:aa:03:d4:ff:f0:de:81:9d:90:73:cf:6e:e1:0c:6d:7f:
92:6b:f9:da:85:43:2a:29:0b:17:6b:bd:1b:9e:be:00:4d:e8:
c9:4a:8b:95:15:aa:28:49:e9:a4:85:6f:28:fa:3c:41:34:ec:
d2:b9:f8:53:35:96:91:fe:51:dc:51:26:93:43:5c:5c:b4:75:
b3:c4:a7:16:f8:a7:e4:57:17:5e:a3:13:81:b1:51:48:d9:a1:
c7:a9:6d:1c:27:94:38:39:c7:1a:88:4c:cf:d6:e5:bb:50:19:
4b:bc:c2:f2:b1:87:49:4a:f8:9d:de:8d:ef:b0:ce:0a:61:23:
dd:0a:fb:fc:7c:aa:6c:bb:07:c9:fa:fe:f6:30:b6:1d:f6:47:
a0:44:65:ff:8d:7a:1d:1a:45:9c:83:6e:db:b8:3f:fe:d1:cd:
42:9b:c7:60:c5:ed:71:23:e8:3d:50:b5:a4:ed:28:95:d2:92:
39:cc:c4:27:52:80:16:c8:5f:00:95:d0:0e:69:33:13:0a:94:
f8:28:e7:ba:2d:17:ca:7a:c6:a9:d6:14:24:de:a0:9f:c4:07:
3a:16:5e:34:0e:16:0f:bc:fa:74:b2:bd:61:01:23:36:00:85:
85:50:48:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:48 2025 by rpki-client on console.sobornost.net