Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/34d548-e02f-4f82-baeb-bb1df1b3d32d/1/rq_oZa_SZEb32ybWeygCoeNjLls.roa
File: rq_oZa_SZEb32ybWeygCoeNjLls.roa (raw, json)
Hash identifier: 9pP/rYQ3u047jI86pJfIRzeAtAxGNXEsEC5OQUjt+V4=
Subject key identifier: AE:AF:E8:65:AF:D2:64:46:F7:DB:26:D6:7B:28:02:A1:E3:63:2E:5B
Certificate issuer: /CN=09633ef6550a82af315146a942cf3559557c1fe2
Certificate serial: 0194221F7C2700C2461A1E51AB6A616DF752
Authority key identifier: 09:63:3E:F6:55:0A:82:AF:31:51:46:A9:42:CF:35:59:55:7C:1F:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CWM-9lUKgq8xUUapQs81WVV8H-I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/34d548-e02f-4f82-baeb-bb1df1b3d32d/1/rq_oZa_SZEb32ybWeygCoeNjLls.roa
Signing time: Wed 01 Jan 2025 13:47:56 +0000
ROA not before: Wed 01 Jan 2025 13:47:56 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 20559
IP address blocks: 193.105.12.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:7c:27:00:c2:46:1a:1e:51:ab:6a:61:6d:f7:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09633ef6550a82af315146a942cf3559557c1fe2
Validity
Not Before: Jan 1 13:47:56 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=aeafe865afd26446f7db26d67b2802a1e3632e5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:2c:64:08:10:32:65:b1:41:81:70:5e:ec:6e:
4e:a6:43:4c:a4:ac:ea:9e:91:f9:18:b3:de:47:d9:
b7:41:b0:b4:e7:45:97:53:6b:90:1e:55:2a:69:96:
cc:b9:cc:e0:00:fe:4f:ee:96:10:b5:61:61:82:e6:
ca:83:bb:9e:bd:46:e2:b4:d6:e0:3d:ff:a2:c7:df:
ec:54:23:d3:e5:42:90:d6:2f:62:d1:b4:84:37:da:
74:0c:5e:b5:bd:43:6b:2b:3c:ca:1a:60:8d:10:3c:
23:f1:15:6b:f7:e8:a5:8b:9e:3b:46:63:ee:f8:21:
1f:0e:9d:6b:c0:0a:9c:24:83:e4:0f:67:50:e6:c5:
94:88:6f:93:d0:94:58:e6:6e:91:f2:d5:91:fb:1b:
2a:8d:a9:6a:88:66:7c:6e:03:02:c1:80:56:a3:ce:
63:55:76:cc:d8:5d:fd:b9:a0:b3:b7:df:a2:ec:81:
ca:6d:79:f9:ee:b6:6b:d5:5a:8d:1e:90:77:4d:73:
c5:60:23:ad:98:05:a3:9c:d0:1d:d5:dc:f7:97:5a:
38:b3:9b:a0:13:7c:83:84:80:e5:cf:4b:f6:c7:40:
a9:4a:7e:31:18:c5:4a:b2:0c:54:fc:6a:b0:93:de:
25:74:85:7c:1e:a6:f0:da:81:17:c5:74:3d:7e:16:
b5:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:AF:E8:65:AF:D2:64:46:F7:DB:26:D6:7B:28:02:A1:E3:63:2E:5B
X509v3 Authority Key Identifier:
keyid:09:63:3E:F6:55:0A:82:AF:31:51:46:A9:42:CF:35:59:55:7C:1F:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CWM-9lUKgq8xUUapQs81WVV8H-I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/34d548-e02f-4f82-baeb-bb1df1b3d32d/1/rq_oZa_SZEb32ybWeygCoeNjLls.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/34d548-e02f-4f82-baeb-bb1df1b3d32d/1/CWM-9lUKgq8xUUapQs81WVV8H-I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.105.12.0/24
Signature Algorithm: sha256WithRSAEncryption
73:cd:c6:71:d9:e1:55:a7:81:2c:2f:10:0a:dd:69:72:78:a3:
df:57:30:f8:9c:43:d9:41:98:c6:01:8a:41:f5:9f:09:e1:31:
41:8c:20:b1:fe:d0:f5:5a:d3:67:8f:86:d8:c2:c0:58:01:2d:
ab:9e:3c:89:32:36:a6:90:62:61:ad:61:7c:f2:19:b6:90:40:
2b:69:6e:27:80:ce:39:90:ed:8a:3f:30:f7:7d:8d:f1:7d:82:
72:1a:2d:c5:06:26:eb:36:b5:46:8e:8c:50:e4:49:c0:e1:e5:
e0:4c:a5:39:72:bd:2c:bb:e9:7d:c1:56:16:34:48:c5:1b:29:
88:83:c3:0c:83:5d:95:ef:e3:dc:09:fc:b0:95:e3:a9:3e:36:
ab:92:7d:c1:64:a9:6c:b6:82:ec:a8:c7:78:05:d1:09:98:b9:
60:1b:b5:22:ff:ce:78:de:37:5b:2b:8c:04:41:13:ba:7a:b6:
c3:47:ea:f1:9b:56:b9:68:3e:57:c8:97:92:05:e6:df:2e:17:
11:00:f4:32:3a:bb:64:09:42:e0:9e:3b:7e:47:c3:3e:b0:ad:
e9:1c:0e:3e:d4:a0:d2:9d:b9:be:51:83:ce:fa:09:f0:d2:86:
fa:a6:ca:9d:d7:74:aa:7a:1b:d4:a1:05:00:52:42:0b:ec:a3:
62:22:2f:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:13 2025 by rpki-client on console.sobornost.net