Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/aab62e-408c-483d-95fa-cc119d277148/1/U2UqHVAbFqT-DpJ2VeePtrrb8ik.roa
File: U2UqHVAbFqT-DpJ2VeePtrrb8ik.roa (raw, json)
Hash identifier: pXyykD/gM3hsVstV7hOq0+tHLwMN2H8uNSnz2A5Kgw4=
Subject key identifier: 53:65:2A:1D:50:1B:16:A4:FE:0E:92:76:55:E7:8F:B6:BA:DB:F2:29
Certificate issuer: /CN=0cab42239ba94485b310b5515dccc7feed92205c
Certificate serial: 0194236A47775AF756FF043F45FEF04E237D
Authority key identifier: 0C:AB:42:23:9B:A9:44:85:B3:10:B5:51:5D:CC:C7:FE:ED:92:20:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DKtCI5upRIWzELVRXczH_u2SIFw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/aab62e-408c-483d-95fa-cc119d277148/1/U2UqHVAbFqT-DpJ2VeePtrrb8ik.roa
Signing time: Wed 01 Jan 2025 19:49:15 +0000
ROA not before: Wed 01 Jan 2025 19:49:15 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 51364
IP address blocks: 193.142.127.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:6a:47:77:5a:f7:56:ff:04:3f:45:fe:f0:4e:23:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0cab42239ba94485b310b5515dccc7feed92205c
Validity
Not Before: Jan 1 19:49:15 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=53652a1d501b16a4fe0e927655e78fb6badbf229
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:a6:b8:e3:48:3c:c3:a3:b6:00:8e:08:74:80:
c7:6b:4e:d4:ce:b1:ad:ae:4a:0f:31:c9:1d:ea:28:
16:12:d2:cf:0f:85:35:90:75:58:d4:a8:7f:d9:51:
f9:19:f0:45:be:26:ca:d2:bd:73:6b:33:d5:61:cd:
5a:d1:c0:64:ad:c3:45:50:d8:cc:c6:40:b9:1a:6b:
1c:10:16:d1:22:b3:dc:d7:e7:fa:60:36:ab:87:4d:
1f:d0:57:40:f7:e8:6d:34:4d:20:2f:66:ff:8d:c6:
af:f9:c0:61:3c:8d:2a:32:f5:c1:70:63:cc:e1:f1:
05:fa:e9:f0:fd:43:e4:f0:2f:10:ce:5d:1b:a2:0c:
ff:90:2d:5c:d9:95:e5:57:49:91:7b:21:a1:73:fe:
80:bb:b5:80:06:ed:da:fc:47:08:0d:3b:96:bb:02:
32:4c:36:83:b3:9d:4b:6e:60:27:3e:49:eb:f6:09:
40:3c:b1:88:4d:59:8e:9b:e9:11:ab:a5:35:80:83:
bd:3e:c0:21:b3:ed:64:51:c1:67:e6:7c:83:c3:e4:
73:0e:c1:32:07:16:1f:64:c8:b0:2e:d3:7a:83:e0:
1c:9f:89:34:6b:ff:81:e7:30:a5:bd:95:c7:72:2b:
e8:9d:94:5e:1e:dd:93:95:60:88:91:88:27:ad:ad:
b7:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:65:2A:1D:50:1B:16:A4:FE:0E:92:76:55:E7:8F:B6:BA:DB:F2:29
X509v3 Authority Key Identifier:
keyid:0C:AB:42:23:9B:A9:44:85:B3:10:B5:51:5D:CC:C7:FE:ED:92:20:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DKtCI5upRIWzELVRXczH_u2SIFw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/aab62e-408c-483d-95fa-cc119d277148/1/U2UqHVAbFqT-DpJ2VeePtrrb8ik.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/aab62e-408c-483d-95fa-cc119d277148/1/DKtCI5upRIWzELVRXczH_u2SIFw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.142.127.0/24
Signature Algorithm: sha256WithRSAEncryption
69:3d:3d:93:3e:78:31:cf:7a:85:84:da:61:94:fd:6e:56:72:
98:39:89:d7:84:0a:18:9a:12:87:cd:32:e6:86:ea:42:ca:39:
c6:71:d9:97:f3:45:bd:73:c7:49:97:30:52:96:76:94:47:85:
12:1b:50:65:5b:b1:43:2e:b0:da:7e:52:7b:2c:ef:fa:f1:68:
22:96:ea:a6:52:e0:46:56:38:83:2a:0d:6b:0c:44:63:ab:9e:
8e:53:e3:56:3b:84:f1:d3:21:ca:d1:cc:d1:d3:5c:bf:bc:90:
02:85:a3:bb:ad:f9:35:8f:d0:96:8f:b9:fc:60:2d:a0:f2:c0:
19:82:22:41:7a:53:9b:59:fa:47:8b:db:7a:8b:3f:27:61:4d:
f7:b6:59:ff:fe:30:1c:e4:7f:ea:55:38:1e:65:8c:3c:58:c6:
f9:37:c2:62:29:ba:42:2d:9d:6f:64:ca:43:92:24:fd:cf:e7:
ea:63:75:74:1b:f1:69:c7:92:40:11:09:37:0f:fb:ef:90:2b:
0c:9a:92:bf:a7:a0:10:a0:a4:b1:c9:7e:7f:11:a1:e4:52:89:
b6:e3:5f:a6:ae:88:a6:b0:60:ff:09:21:f1:61:7d:f7:e9:a2:
05:1e:0b:c1:48:60:af:69:07:18:4c:94:d2:4c:f1:2e:44:3b:
d1:2b:24:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:04 2025 by rpki-client on console.sobornost.net