Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/7b2cd6-b1f3-43fc-9f09-cd974042649f/1/bJSjsJ3BIHwc_xXJ1R0xw1ipkaw.roa
File: bJSjsJ3BIHwc_xXJ1R0xw1ipkaw.roa (raw, json)
Hash identifier: LBopJzLBdYAjF0iPvUvU2j1Vv+Rl7/hkuGtkkvmE9pk=
Subject key identifier: 6C:94:A3:B0:9D:C1:20:7C:1C:FF:15:C9:D5:1D:31:C3:58:A9:91:AC
Certificate issuer: /CN=808e238e30dcb759759fb8a394d9e211a28b9d87
Certificate serial: 019425FC05F27B556CE2F75717938AAF9ACC
Authority key identifier: 80:8E:23:8E:30:DC:B7:59:75:9F:B8:A3:94:D9:E2:11:A2:8B:9D:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gI4jjjDct1l1n7ijlNniEaKLnYc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/7b2cd6-b1f3-43fc-9f09-cd974042649f/1/bJSjsJ3BIHwc_xXJ1R0xw1ipkaw.roa
Signing time: Thu 02 Jan 2025 07:47:41 +0000
ROA not before: Thu 02 Jan 2025 07:47:41 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 197714
IP address blocks: 217.25.84.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fc:05:f2:7b:55:6c:e2:f7:57:17:93:8a:af:9a:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=808e238e30dcb759759fb8a394d9e211a28b9d87
Validity
Not Before: Jan 2 07:47:41 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6c94a3b09dc1207c1cff15c9d51d31c358a991ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:02:6c:8f:0b:07:39:91:92:af:af:b8:08:77:
59:81:55:81:ab:04:06:2c:2f:54:6f:6e:5f:28:86:
c5:d3:91:94:f9:29:21:bf:a9:04:1a:c3:64:6f:a8:
c0:c2:f5:64:2f:9d:74:2d:fe:9a:4e:62:87:61:3d:
9c:19:02:6f:ed:8d:98:54:e5:1e:8c:89:b1:94:4a:
26:4b:d4:75:1e:cb:72:99:c0:ee:8b:39:8e:7c:c0:
55:56:8d:d1:18:fd:d7:aa:d8:65:c4:6e:b0:67:88:
18:a5:0f:6f:70:4f:3f:14:c0:a0:d3:ca:29:43:38:
65:d1:59:91:65:03:ea:55:89:29:0f:b3:d7:68:17:
5f:e1:94:dd:00:1f:73:16:2f:30:e0:c0:f8:fe:4c:
cd:3c:2f:8b:da:73:69:18:8a:f4:d2:93:9a:cf:f6:
66:c7:5e:a2:10:31:9a:70:37:ea:06:d3:b3:c5:20:
66:14:7b:fb:4d:d6:1d:56:5e:20:08:05:b2:18:a2:
62:48:23:18:2f:e0:30:58:c2:3b:8d:82:40:20:a1:
f2:6e:c9:2d:60:09:43:d5:62:de:d2:04:23:c2:5d:
95:15:e0:07:08:6e:cb:1e:85:f5:3e:3f:84:d7:8b:
90:4a:d2:01:d0:51:f7:2e:b1:5f:f1:6b:71:3a:fa:
fd:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:94:A3:B0:9D:C1:20:7C:1C:FF:15:C9:D5:1D:31:C3:58:A9:91:AC
X509v3 Authority Key Identifier:
keyid:80:8E:23:8E:30:DC:B7:59:75:9F:B8:A3:94:D9:E2:11:A2:8B:9D:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gI4jjjDct1l1n7ijlNniEaKLnYc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/7b2cd6-b1f3-43fc-9f09-cd974042649f/1/bJSjsJ3BIHwc_xXJ1R0xw1ipkaw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/7b2cd6-b1f3-43fc-9f09-cd974042649f/1/gI4jjjDct1l1n7ijlNniEaKLnYc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.25.84.0/23
Signature Algorithm: sha256WithRSAEncryption
83:41:b1:e2:b0:6f:fa:38:cf:39:42:14:a0:23:9e:fb:23:5a:
9e:47:1f:90:e9:28:3f:d4:9d:ca:0e:40:b4:e7:cd:f4:68:c2:
ae:95:1e:69:43:82:cf:0a:a2:dc:37:7a:cb:79:99:11:ce:4a:
6d:de:64:c3:f1:5b:9e:8d:5a:a1:19:6d:a6:e3:bc:48:68:ed:
69:49:0f:c8:31:6d:76:f4:4b:75:78:19:59:8d:6e:8b:c3:d8:
83:a8:bf:03:20:16:65:d7:0d:ec:e8:5a:ea:15:ce:a3:7f:e5:
2b:c9:e1:c5:90:3c:9c:e4:b1:fe:b2:fb:6b:0b:9c:4a:4e:52:
68:67:cf:24:b4:ae:dc:b9:7a:83:bc:7e:a2:a7:bd:be:47:c7:
66:cc:3d:83:e1:03:08:a7:48:2f:02:0d:9b:98:7e:28:9a:ff:
45:27:ef:8b:50:fd:96:23:32:69:55:0a:a8:c3:17:77:33:99:
b7:b8:bf:f3:72:2e:da:86:97:8e:8d:fe:78:b5:88:c1:2e:ad:
cc:59:5b:7e:f8:5f:67:7c:39:36:a5:8c:39:c9:58:4c:ea:7d:
16:6f:b0:e7:48:b9:48:2f:a7:0b:3c:6b:1e:b4:0c:80:d7:fe:
f6:c9:b1:f7:5b:03:cc:3d:b8:36:0e:73:61:9d:89:2e:12:2c:
28:32:b4:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:04 2025 by rpki-client on console.sobornost.net