Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/8e0efd-e5de-4df5-a551-4cd3e73216f1/1/qvDSjgW1rEvWcrU4jpSi6rsDCpM.roa
File: qvDSjgW1rEvWcrU4jpSi6rsDCpM.roa (raw, json)
Hash identifier: T8Hf/3k6CSkU6S1AK65rkEFSmvPdWLsEssJ2od+QI9Y=
Subject key identifier: AA:F0:D2:8E:05:B5:AC:4B:D6:72:B5:38:8E:94:A2:EA:BB:03:0A:93
Certificate issuer: /CN=eec3131976aea27d171c6c267a98d3f382a61a2a
Certificate serial: 01941FFA08317657D52B7CE929E51651CFFD
Authority key identifier: EE:C3:13:19:76:AE:A2:7D:17:1C:6C:26:7A:98:D3:F3:82:A6:1A:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7sMTGXauon0XHGwmepjT84KmGio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/8e0efd-e5de-4df5-a551-4cd3e73216f1/1/qvDSjgW1rEvWcrU4jpSi6rsDCpM.roa
Signing time: Wed 01 Jan 2025 03:47:47 +0000
ROA not before: Wed 01 Jan 2025 03:47:47 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 15943
IP address blocks: 193.101.120.0/23 maxlen: 23
193.102.58.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:08:31:76:57:d5:2b:7c:e9:29:e5:16:51:cf:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eec3131976aea27d171c6c267a98d3f382a61a2a
Validity
Not Before: Jan 1 03:47:47 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=aaf0d28e05b5ac4bd672b5388e94a2eabb030a93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:ba:90:71:14:26:8f:84:6e:74:e8:c0:df:af:
7c:9d:b6:cf:81:60:2a:e5:79:df:9f:1f:4f:29:cd:
ce:ef:cb:0d:bf:a8:b8:26:93:6d:3c:ca:fc:b4:e8:
81:67:85:55:d7:02:fb:14:c9:00:df:16:46:01:42:
ac:83:ff:b7:5c:62:cb:d5:df:d0:d3:7d:20:f2:f4:
b8:a7:2a:c4:54:f0:94:5b:5d:ae:7e:99:d5:36:35:
ea:0f:dd:6d:c7:ae:d0:a5:9c:c6:a4:e0:1b:5b:3a:
92:5d:ee:6a:b7:dc:16:f8:04:77:42:9d:21:3b:39:
46:c8:98:c9:f4:06:1a:9a:14:da:11:44:c4:e9:e3:
22:87:f3:86:72:41:dd:2f:5e:80:e4:01:a2:84:7e:
b2:5a:4b:84:04:ba:fd:6f:4a:19:e4:32:54:6d:88:
a7:7c:7a:4a:e7:87:3b:fc:88:80:18:35:b8:2f:00:
6a:56:a6:91:e3:06:5e:a8:f4:21:aa:08:ae:bd:af:
4f:55:23:49:31:77:80:6b:e8:d4:4a:ac:d4:b9:a0:
e1:26:d6:05:dd:69:91:ee:42:18:15:ff:45:28:04:
75:72:49:50:2b:47:c2:92:0b:8f:9b:e4:85:40:61:
55:49:1c:bd:74:12:8e:bb:30:8d:6b:1a:4e:d3:e6:
7c:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:F0:D2:8E:05:B5:AC:4B:D6:72:B5:38:8E:94:A2:EA:BB:03:0A:93
X509v3 Authority Key Identifier:
keyid:EE:C3:13:19:76:AE:A2:7D:17:1C:6C:26:7A:98:D3:F3:82:A6:1A:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7sMTGXauon0XHGwmepjT84KmGio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/8e0efd-e5de-4df5-a551-4cd3e73216f1/1/qvDSjgW1rEvWcrU4jpSi6rsDCpM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/8e0efd-e5de-4df5-a551-4cd3e73216f1/1/7sMTGXauon0XHGwmepjT84KmGio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.101.120.0/23
193.102.58.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:e4:e7:fa:1a:02:0a:b5:09:13:f6:a5:19:ee:4b:3e:62:ec:
34:4f:a3:8c:34:88:33:61:b2:75:e5:f5:dc:48:a0:90:3a:47:
61:4c:02:bc:9e:bd:ce:cb:11:ff:76:48:6b:98:e7:4b:4f:b2:
13:1d:1d:59:fb:f2:e3:e9:c4:c5:88:95:4b:e6:16:5d:30:92:
bc:62:6b:d3:f2:e5:d4:83:d4:f2:cd:bd:14:61:59:94:d2:a8:
1e:da:76:8a:c2:f5:25:e1:30:4b:e6:bb:6f:bb:35:9a:3b:f0:
62:80:c4:66:73:3e:1e:00:7c:a6:d6:a0:7f:34:71:37:7e:75:
b1:2e:c1:17:2e:8e:6a:99:48:05:3a:ab:28:7d:ee:e9:6a:b1:
cc:41:89:4e:20:69:a3:40:16:8f:75:15:c7:ec:d9:83:21:c0:
de:6f:d6:13:2a:9d:a7:3d:f4:d8:8a:87:11:c7:dc:a2:cb:8e:
06:b7:91:ba:1f:08:e9:1c:40:0d:c4:38:46:7c:43:8b:64:26:
fa:8a:51:e0:2a:72:de:0b:46:2d:a8:ee:a2:ff:77:46:0d:1a:
5c:4b:09:81:96:0e:df:ef:00:ec:ef:f5:3d:87:6c:72:c9:2b:
de:ac:cd:fb:f7:33:5c:a6:d4:f6:6d:37:14:bd:e6:f1:78:de:
06:b8:a5:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:09 2025 by rpki-client on console.sobornost.net