Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/fd362f-afcb-4cf5-98c6-0948989e6d55/1/dmEWgN6h3xFkBWjn9tW8-qNYTVM.roa
File: dmEWgN6h3xFkBWjn9tW8-qNYTVM.roa (raw, json)
Hash identifier: xaHtGUiCewEsAabyHcWlMpWAwt2sd21SLnG70Nk49gU=
Subject key identifier: 76:61:16:80:DE:A1:DF:11:64:05:68:E7:F6:D5:BC:FA:A3:58:4D:53
Certificate issuer: /CN=7c3d022a240ce71e0a6e1e9aae0112da840cc34b
Certificate serial: 0195C8D04F94941C410134B3248DDBBE9EE0
Authority key identifier: 7C:3D:02:2A:24:0C:E7:1E:0A:6E:1E:9A:AE:01:12:DA:84:0C:C3:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fD0CKiQM5x4Kbh6argES2oQMw0s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/fd362f-afcb-4cf5-98c6-0948989e6d55/1/dmEWgN6h3xFkBWjn9tW8-qNYTVM.roa
Signing time: Mon 24 Mar 2025 15:40:49 +0000
ROA not before: Mon 24 Mar 2025 15:40:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211904
IP address blocks: 195.190.144.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:c8:d0:4f:94:94:1c:41:01:34:b3:24:8d:db:be:9e:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c3d022a240ce71e0a6e1e9aae0112da840cc34b
Validity
Not Before: Mar 24 15:40:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=76611680dea1df11640568e7f6d5bcfaa3584d53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:96:18:3e:9d:12:b6:d6:3d:46:fa:f2:61:f0:
34:4c:d8:fa:98:fc:aa:65:13:1d:b9:a7:14:4a:67:
31:92:41:96:83:f4:62:ef:9e:82:29:eb:9b:de:04:
e2:52:ee:69:a6:5f:7e:d2:2c:2f:78:65:ce:47:05:
51:ac:ee:b6:ab:4b:19:79:d7:1a:ef:44:f2:61:d5:
3c:75:19:6f:82:18:06:3e:31:12:4c:7c:35:a4:54:
5a:93:34:4c:3c:41:f3:0d:d8:d0:13:91:74:2c:c7:
a3:e7:e4:13:67:9d:39:46:78:97:4d:f0:bb:e7:6a:
54:6b:1e:f4:dc:1c:cb:47:29:c3:86:ff:9a:8a:f2:
73:97:5c:7b:e6:f6:26:74:2d:6e:e0:2b:ce:0f:95:
80:4a:54:40:52:eb:ff:01:cc:79:7d:99:82:f0:57:
fb:6c:44:f0:76:60:1c:f7:b7:2d:d3:77:25:ae:34:
6c:2d:ab:f0:55:b7:12:80:a1:ae:c3:97:ef:19:f8:
78:69:ef:38:2e:4e:67:d7:2d:4a:64:60:be:f2:b0:
66:95:c8:0f:a7:92:0d:68:93:39:df:a5:fd:cb:4c:
69:37:7e:82:32:c7:a9:6b:0d:ae:f6:d2:f9:79:c6:
db:53:5d:7d:06:b7:92:24:d1:5f:48:23:3d:70:4e:
a9:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:61:16:80:DE:A1:DF:11:64:05:68:E7:F6:D5:BC:FA:A3:58:4D:53
X509v3 Authority Key Identifier:
keyid:7C:3D:02:2A:24:0C:E7:1E:0A:6E:1E:9A:AE:01:12:DA:84:0C:C3:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fD0CKiQM5x4Kbh6argES2oQMw0s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/fd362f-afcb-4cf5-98c6-0948989e6d55/1/dmEWgN6h3xFkBWjn9tW8-qNYTVM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/fd362f-afcb-4cf5-98c6-0948989e6d55/1/fD0CKiQM5x4Kbh6argES2oQMw0s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.190.144.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:19:cb:08:d8:14:b0:d2:5d:23:bb:19:58:e7:fd:38:d3:85:
a0:34:05:3d:c2:1a:5a:3e:ba:9f:8f:74:8e:a1:33:2d:0c:d0:
0b:be:e6:af:ce:63:98:29:d9:97:44:53:8c:41:a9:74:1b:7e:
0e:b9:0b:d2:97:54:0a:36:7c:15:fc:14:8a:64:30:21:fa:05:
2b:01:a7:a0:18:b1:be:01:68:05:5a:fc:3d:7f:ce:ca:4d:0e:
76:05:50:b3:34:e2:c0:c2:f1:43:1b:bb:dc:65:0c:ec:ad:52:
8f:0e:3c:ee:aa:da:31:4c:c9:16:9f:8b:48:6a:9b:aa:88:b8:
6b:04:46:11:c8:0d:3a:de:bc:35:7e:92:31:32:70:0b:99:a4:
ff:96:5f:e5:9a:75:2f:59:bf:ef:90:7a:d1:36:2c:0e:11:d2:
08:a7:aa:d0:39:84:0d:c4:be:79:e6:de:0e:09:d0:0b:d2:70:
27:bd:72:fd:3b:0c:4e:1a:37:58:bb:47:8c:06:e7:6b:e1:4a:
a6:ed:ad:be:a1:c0:63:fd:53:8e:d2:50:ab:47:8f:ca:22:cf:
c9:07:9c:e3:d8:e9:24:28:9f:21:1e:ec:dc:94:fb:2b:13:4d:
ce:4f:12:94:91:44:28:ff:8e:22:63:9a:a0:78:34:b9:b3:f0:
ed:f4:a1:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:11 2025 by rpki-client on console.sobornost.net