Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/VkH0cj8lgb77NMiD01XPf4phEhM.roa
File: VkH0cj8lgb77NMiD01XPf4phEhM.roa (raw, json)
Hash identifier: U26pinzt/BXl8f62bXFtVf5wmaisdJZr6IFBUK+wLzA=
Subject key identifier: 56:41:F4:72:3F:25:81:BE:FB:34:C8:83:D3:55:CF:7F:8A:61:12:13
Certificate issuer: /CN=5a6f9295521df30a158f506ba7cb873ab9529dc3
Certificate serial: 019421B22CC3E5A49FC13AE13DE8354DCA19
Authority key identifier: 5A:6F:92:95:52:1D:F3:0A:15:8F:50:6B:A7:CB:87:3A:B9:52:9D:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wm-SlVId8woVj1Brp8uHOrlSncM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/VkH0cj8lgb77NMiD01XPf4phEhM.roa
Signing time: Wed 01 Jan 2025 11:48:32 +0000
ROA not before: Wed 01 Jan 2025 11:48:32 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 50148
IP address blocks: 195.130.122.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b2:2c:c3:e5:a4:9f:c1:3a:e1:3d:e8:35:4d:ca:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a6f9295521df30a158f506ba7cb873ab9529dc3
Validity
Not Before: Jan 1 11:48:32 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5641f4723f2581befb34c883d355cf7f8a611213
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:e5:9b:8d:e0:40:2c:09:3a:e6:ad:ef:b8:59:
01:60:f9:e2:4a:91:26:22:36:86:28:9c:da:25:e2:
8b:81:a6:72:f9:53:85:e7:fa:25:75:8d:84:1f:57:
0c:12:31:02:78:fa:c2:78:1a:f4:8e:78:05:97:49:
5b:3a:8d:b9:0d:a0:9c:fd:5c:d4:df:1d:f2:aa:09:
2f:e2:cf:77:f3:69:c4:77:f1:4e:89:59:2d:5f:ae:
11:1c:4f:7a:92:56:bd:40:37:fd:ad:7c:cf:39:44:
b5:43:f4:9c:25:b4:f5:ef:a0:53:2a:38:00:2a:d2:
0c:cb:76:39:ef:59:84:fd:b6:5a:4a:45:d7:e6:1a:
24:45:53:78:06:bb:60:ad:79:fa:58:ca:b6:5c:27:
08:ea:31:5c:cd:e5:6c:70:28:6a:fa:3d:9e:18:08:
03:23:30:af:09:78:5b:96:0a:9c:ca:85:de:94:79:
a4:d5:7f:fb:1b:09:7d:d4:ef:a5:6f:3e:46:30:01:
b6:4f:8c:76:91:1f:57:e2:f2:c3:5b:16:26:16:f4:
25:b4:92:a8:01:46:f4:53:d9:59:2f:3f:ce:ad:85:
e8:d3:9f:23:d5:9b:75:59:5b:cb:25:17:08:db:2e:
31:d4:6d:16:b7:85:3a:ec:77:7e:ab:69:10:ea:d3:
e8:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:41:F4:72:3F:25:81:BE:FB:34:C8:83:D3:55:CF:7F:8A:61:12:13
X509v3 Authority Key Identifier:
keyid:5A:6F:92:95:52:1D:F3:0A:15:8F:50:6B:A7:CB:87:3A:B9:52:9D:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wm-SlVId8woVj1Brp8uHOrlSncM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/VkH0cj8lgb77NMiD01XPf4phEhM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/Wm-SlVId8woVj1Brp8uHOrlSncM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.130.122.0/24
Signature Algorithm: sha256WithRSAEncryption
39:df:a4:a7:b0:d2:1c:65:06:5f:98:ec:cc:4f:7d:7d:1a:44:
58:29:f6:af:7b:b9:a3:c4:c8:d8:b2:a3:9b:1c:df:c5:0b:b5:
c2:a9:73:6f:fd:80:17:7e:e7:23:3f:da:87:e9:94:71:0e:85:
6d:c4:b7:61:2e:96:ed:06:f7:96:6c:34:fa:98:14:bb:1e:e5:
bc:bc:a4:93:18:fd:8b:97:ed:a7:2d:d8:23:cc:74:83:59:2b:
e6:20:04:2a:06:64:e8:f2:a4:c7:f7:21:4f:83:38:6d:23:c8:
86:52:ad:66:8c:4e:ff:de:ce:a3:a0:dd:74:eb:12:4b:77:20:
53:10:da:38:33:59:67:3d:95:1c:bd:0b:df:a4:78:98:19:03:
e0:88:d6:a2:51:60:0a:81:73:e0:e9:b3:4d:6d:21:53:a8:68:
8a:47:be:b9:4a:50:b3:9a:f7:4c:2e:a0:04:0d:9a:8a:8c:d0:
13:d3:a9:31:0d:d0:0f:16:35:a0:e7:55:b0:be:d2:bd:77:86:
0b:b2:6b:71:9b:1d:c6:35:11:18:73:8c:ab:fb:f1:f8:53:46:
d7:a1:1f:6e:79:32:6e:cd:85:ae:dd:6c:31:46:05:fd:d4:8e:
91:3e:86:02:2d:d5:9b:34:77:d6:eb:fc:de:98:a6:e0:85:62:
2f:c3:35:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:02 2025 by rpki-client on console.sobornost.net