Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/1de86c-5f1e-402e-9ef4-637b261ab179/1/rbPUmPqkKgwyzbr9KUKLWQwPFN4.roa
File: rbPUmPqkKgwyzbr9KUKLWQwPFN4.roa (raw, json)
Hash identifier: q/Zy1zhtJFPNtR3NeMdcOz6lj9MRNn8je4kBturksZ0=
Subject key identifier: AD:B3:D4:98:FA:A4:2A:0C:32:CD:BA:FD:29:42:8B:59:0C:0F:14:DE
Certificate issuer: /CN=93a989c17b2da0c5143155820ebc56bfe73a3adf
Certificate serial: 019425FDEF1CE00FB28607FA7F5B9AC49FC1
Authority key identifier: 93:A9:89:C1:7B:2D:A0:C5:14:31:55:82:0E:BC:56:BF:E7:3A:3A:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k6mJwXstoMUUMVWCDrxWv-c6Ot8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/1de86c-5f1e-402e-9ef4-637b261ab179/1/rbPUmPqkKgwyzbr9KUKLWQwPFN4.roa
Signing time: Thu 02 Jan 2025 07:49:46 +0000
ROA not before: Thu 02 Jan 2025 07:49:46 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 210147
IP address blocks: 213.109.197.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fd:ef:1c:e0:0f:b2:86:07:fa:7f:5b:9a:c4:9f:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93a989c17b2da0c5143155820ebc56bfe73a3adf
Validity
Not Before: Jan 2 07:49:46 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=adb3d498faa42a0c32cdbafd29428b590c0f14de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:e4:ba:aa:96:13:a0:6f:ed:96:70:61:62:2b:
78:f2:6e:1c:8d:73:80:a5:ab:7c:8d:c9:99:79:27:
4e:cc:1c:a0:47:b4:90:e0:19:96:3a:af:e9:a7:cc:
76:0e:5a:3d:42:8f:df:b7:43:e1:27:2c:0b:22:61:
b0:09:fa:4e:7a:a9:c6:fc:48:2c:6d:e5:35:18:8b:
26:14:aa:a0:e0:8c:4a:e0:42:a5:30:63:76:13:46:
1c:be:5e:61:7c:a6:41:1d:88:12:5c:5b:e8:27:d2:
55:92:72:f6:8e:48:ed:b1:e6:58:49:93:b3:a7:61:
57:c2:ce:61:a4:62:ef:4e:97:67:ef:c4:cc:13:6f:
26:76:62:d4:21:93:cb:f5:82:28:36:04:90:19:cf:
ab:f3:4b:c5:88:97:cc:c4:eb:54:85:29:b0:80:fe:
d3:d8:03:1e:03:b5:29:fb:22:f7:b9:8e:ef:97:01:
ad:2d:26:d2:34:03:a4:de:e4:8d:e8:ba:d6:3e:51:
6a:b4:d5:e3:20:81:4c:6e:14:77:bd:44:d7:17:e7:
fc:c7:ed:5c:d1:48:96:d2:c8:c0:2d:6f:93:6b:5d:
56:8c:27:ea:cb:54:ca:bb:71:e8:3b:db:67:2d:73:
f0:11:fe:a5:c7:95:a5:c3:98:99:de:aa:5c:7a:8c:
84:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:B3:D4:98:FA:A4:2A:0C:32:CD:BA:FD:29:42:8B:59:0C:0F:14:DE
X509v3 Authority Key Identifier:
keyid:93:A9:89:C1:7B:2D:A0:C5:14:31:55:82:0E:BC:56:BF:E7:3A:3A:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k6mJwXstoMUUMVWCDrxWv-c6Ot8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/1de86c-5f1e-402e-9ef4-637b261ab179/1/rbPUmPqkKgwyzbr9KUKLWQwPFN4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/1de86c-5f1e-402e-9ef4-637b261ab179/1/k6mJwXstoMUUMVWCDrxWv-c6Ot8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.109.197.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:b6:12:39:4e:f5:d6:5b:dc:2f:21:86:53:ec:b2:f6:da:04:
75:c8:6c:77:91:e7:cb:12:3d:53:e4:5c:5b:7c:8d:3e:f5:6c:
59:96:b7:1b:5e:cd:42:9f:cb:38:b7:bd:13:80:a1:d8:c3:65:
7e:c5:a7:f6:13:e2:a9:3c:7f:ea:4d:80:24:15:dd:8b:5b:d8:
cf:7f:67:34:63:d1:60:92:7c:b7:50:af:fe:66:86:d7:bf:80:
61:d6:2c:ca:58:2a:47:3a:9d:a4:0f:a6:f7:cc:e1:2b:a9:1e:
c4:a4:f4:e2:a4:a6:fe:2f:ae:4c:fe:77:11:3f:97:77:7c:9c:
3e:ac:af:04:69:68:ff:84:bf:52:52:c9:51:76:eb:c5:22:67:
d1:35:36:52:79:a4:f0:7b:0c:35:fb:be:b9:15:08:08:7f:a0:
e8:aa:b0:b3:5e:40:97:a3:b2:8e:5b:a0:35:db:3d:ab:29:64:
07:53:b8:50:84:d3:0d:e1:a9:b8:34:14:26:bc:47:8b:e4:61:
59:3d:9b:6d:0e:7d:f0:23:aa:54:df:d4:c9:42:46:a7:70:b5:
58:9f:da:d0:43:9b:a0:d0:a8:f9:4c:8f:54:4f:17:b2:c6:a0:
5a:9c:b2:85:d4:11:91:bb:dc:dc:48:9f:cc:2d:3b:2b:7b:26:
73:86:57:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:13 2025 by rpki-client on console.sobornost.net