Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/Jk2yt1NvYr8XP_5Vv8DY7uvr03M.roa
File: Jk2yt1NvYr8XP_5Vv8DY7uvr03M.roa (raw, json)
Hash identifier: baLioDJQQuDXtVFfZ5gv40WGuCoxZCYPfaAANgD3SYg=
Subject key identifier: 26:4D:B2:B7:53:6F:62:BF:17:3F:FE:55:BF:C0:D8:EE:EB:EB:D3:73
Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Certificate serial: 01946F43918D8C4151DEE28D9CCACAE46320
Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/Jk2yt1NvYr8XP_5Vv8DY7uvr03M.roa
Signing time: Thu 16 Jan 2025 13:18:06 +0000
ROA not before: Thu 16 Jan 2025 13:18:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 197077
IP address blocks: 217.198.192.0/20 maxlen: 24
2a04:a450::/31 maxlen: 31
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:6f:43:91:8d:8c:41:51:de:e2:8d:9c:ca:ca:e4:63:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Validity
Not Before: Jan 16 13:18:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=264db2b7536f62bf173ffe55bfc0d8eeebebd373
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:ee:f5:df:d1:7c:8a:51:78:2f:76:71:01:d8:
d8:7f:27:00:ac:8d:fb:ef:e0:f1:1b:f7:40:cf:65:
dd:ac:70:75:e3:9d:18:d3:cf:9e:e1:02:4a:4c:f8:
97:00:c9:e5:48:43:c8:94:ee:8f:82:0f:d1:23:e5:
60:e1:56:1a:50:89:e9:28:ee:f3:47:cd:6d:9c:bb:
09:d0:77:c7:6c:42:03:26:fd:91:4c:47:9f:19:36:
58:3f:77:77:fb:34:1e:d1:1d:af:af:9a:19:c9:85:
38:92:02:0b:f3:e6:3f:07:fe:97:db:9a:66:00:a3:
58:82:23:26:41:b9:d1:2b:f6:44:37:9c:ef:f2:21:
6d:14:eb:c6:ef:11:cb:40:b6:50:44:1d:bd:13:07:
97:b6:fc:ab:0d:91:4e:b7:bb:df:25:16:9b:85:39:
16:7a:94:98:c4:87:83:00:1d:41:77:27:c8:f1:c4:
e3:6d:ec:b4:54:df:3b:e7:74:91:15:d5:6f:e7:32:
80:fe:f7:19:c8:b2:c0:10:10:53:10:bb:ef:4e:66:
4e:51:b6:d1:8b:fd:90:f3:39:29:d5:7b:f7:c1:fc:
a5:19:6c:43:62:d4:f1:d7:d3:57:6c:5a:65:ce:97:
f8:20:90:d8:e3:b0:d5:c7:eb:fa:01:6e:48:2c:49:
e0:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:4D:B2:B7:53:6F:62:BF:17:3F:FE:55:BF:C0:D8:EE:EB:EB:D3:73
X509v3 Authority Key Identifier:
keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/Jk2yt1NvYr8XP_5Vv8DY7uvr03M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.198.192.0/20
IPv6:
2a04:a450::/31
Signature Algorithm: sha256WithRSAEncryption
a8:4a:12:a0:0f:6e:80:82:8b:82:80:7b:e1:d6:19:55:14:c9:
7b:83:91:ca:52:62:47:bb:5f:1e:ab:5b:b3:8e:37:41:6c:7b:
5d:ba:e0:5b:31:00:ec:f0:c2:2f:df:11:a2:71:b0:62:b8:1c:
64:f7:94:95:5e:43:49:b1:bd:41:f0:8d:75:52:71:b0:88:d1:
7a:77:d0:06:16:73:d8:67:1e:97:8d:b1:50:eb:14:0e:b7:fe:
63:b4:ba:f6:85:e2:9e:0d:ce:80:7a:62:9b:97:68:6f:98:57:
3f:e2:08:ed:26:1a:3e:89:0c:22:15:87:ff:dd:0b:e9:0b:7a:
89:78:c6:9f:b2:e7:1c:b1:a7:4f:1f:ca:74:25:df:89:fa:0f:
9b:aa:38:69:2f:38:3c:d9:24:53:76:e7:58:1c:b8:14:52:8b:
23:dd:b0:16:ec:38:c9:07:95:f4:df:e8:56:91:6b:8c:cd:6f:
7a:c4:4b:59:9b:e5:6d:b0:c6:09:de:09:0e:35:ce:10:8c:1c:
a3:15:7f:7c:43:a2:83:bb:15:f6:be:55:f2:72:9c:2c:93:23:
06:be:1f:fd:8c:b7:32:ce:1c:83:67:67:41:e2:c7:17:11:b3:
c2:b5:9e:f6:93:f4:40:42:55:6d:9a:80:28:74:0c:1a:89:30:
9d:65:73:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:02 2025 by rpki-client on console.sobornost.net