Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/bd7820-5c1c-4884-9ab8-c5ab97dba898/1/gKy-M4ArOB2uxqprqRJ6fbGyEC8.roa
File: gKy-M4ArOB2uxqprqRJ6fbGyEC8.roa (raw, json)
Hash identifier: MC8Gw1INJPJBRmJZki75GCuCmqozYCvUY/UxQ+rSFh0=
Subject key identifier: 80:AC:BE:33:80:2B:38:1D:AE:C6:AA:6B:A9:12:7A:7D:B1:B2:10:2F
Certificate issuer: /CN=93af348ec5a4e65e0cb137821ae6a139ed7fac00
Certificate serial: 019424B3B426F6B3A7339CD7EF961C77544B
Authority key identifier: 93:AF:34:8E:C5:A4:E6:5E:0C:B1:37:82:1A:E6:A1:39:ED:7F:AC:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k680jsWk5l4MsTeCGuahOe1_rAA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7820-5c1c-4884-9ab8-c5ab97dba898/1/gKy-M4ArOB2uxqprqRJ6fbGyEC8.roa
Signing time: Thu 02 Jan 2025 01:49:04 +0000
ROA not before: Thu 02 Jan 2025 01:49:04 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 208678
IP address blocks: 194.110.154.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:b4:26:f6:b3:a7:33:9c:d7:ef:96:1c:77:54:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93af348ec5a4e65e0cb137821ae6a139ed7fac00
Validity
Not Before: Jan 2 01:49:04 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=80acbe33802b381daec6aa6ba9127a7db1b2102f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:1a:9a:02:36:29:61:74:81:e1:1c:19:8f:3c:
62:34:e0:a9:c4:c1:cd:6a:bf:51:22:70:ae:5e:be:
de:32:71:a3:17:01:dd:30:f9:fb:d1:19:c3:b9:74:
d0:04:37:c0:68:0b:53:2b:65:ab:0b:5e:2b:25:12:
2f:ff:ad:7d:1a:aa:92:36:30:ee:23:d6:54:45:19:
31:6e:eb:c3:ca:05:a1:06:40:1e:a5:8f:95:9d:0e:
3f:ba:79:e3:03:6b:00:66:6a:c7:34:72:e1:96:8b:
dc:50:e7:7c:83:3b:42:07:49:cb:63:a4:85:b6:e8:
9b:05:13:8b:ff:7d:b0:d8:86:1a:a2:b7:70:44:7b:
71:59:87:e6:e5:1f:50:e2:63:00:5a:3f:1c:f9:6a:
cd:30:9f:8b:f3:fd:97:d4:81:df:cb:5f:fb:04:cd:
10:bd:4c:db:fb:a4:51:26:01:ff:7f:79:0e:e9:70:
37:df:90:81:5e:b5:03:8a:aa:32:db:33:f3:3b:04:
79:ea:b4:47:1e:39:56:7f:8b:48:d3:d6:7b:04:65:
66:68:d5:74:3c:a7:1d:97:3d:05:84:5b:04:94:41:
fd:6d:e6:17:56:7c:93:37:0c:74:61:dc:86:42:df:
02:a1:e3:8c:25:91:27:92:0c:2f:b9:95:2f:e5:ed:
dc:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:AC:BE:33:80:2B:38:1D:AE:C6:AA:6B:A9:12:7A:7D:B1:B2:10:2F
X509v3 Authority Key Identifier:
keyid:93:AF:34:8E:C5:A4:E6:5E:0C:B1:37:82:1A:E6:A1:39:ED:7F:AC:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k680jsWk5l4MsTeCGuahOe1_rAA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7820-5c1c-4884-9ab8-c5ab97dba898/1/gKy-M4ArOB2uxqprqRJ6fbGyEC8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7820-5c1c-4884-9ab8-c5ab97dba898/1/k680jsWk5l4MsTeCGuahOe1_rAA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.110.154.0/24
Signature Algorithm: sha256WithRSAEncryption
92:b6:5e:10:cb:a6:1f:a2:70:04:c6:93:4d:77:b0:a2:2c:81:
f8:73:ee:a3:07:81:a3:27:04:f6:02:42:6f:37:20:ae:e3:04:
da:07:29:0d:2d:b8:17:10:ac:fa:ae:1c:0d:69:fa:b0:d7:8c:
a1:1c:e0:48:92:76:30:c3:ce:6f:3d:94:df:93:ca:d9:ac:c7:
cd:c3:22:58:95:78:ca:be:df:33:ec:31:d1:09:c2:6d:94:35:
44:42:4b:3c:2b:9a:67:55:43:ce:dc:3b:dc:4a:f9:58:8c:68:
e7:3c:76:cd:61:a9:28:8a:1b:64:3a:c0:62:4f:ae:81:7f:fa:
62:37:69:2b:2f:86:d8:d8:dc:c8:85:d9:5b:4a:32:6c:fe:b5:
7e:79:ea:d0:2e:52:d0:8e:69:24:7b:4d:12:0e:b4:92:79:c8:
67:bb:75:e6:5c:cc:64:d2:31:a6:a6:13:f7:67:00:6c:61:bd:
41:f2:56:99:7d:91:f6:68:e4:b9:a4:66:0f:a8:4d:73:c6:0f:
1a:e7:78:c6:b7:af:84:bb:bd:48:3d:08:dd:37:5b:73:a9:9b:
d7:d7:35:99:10:c1:aa:78:38:f0:03:5e:47:4d:04:19:2f:ce:
ab:23:5a:69:8c:f1:65:38:73:02:d0:cb:36:21:88:32:7b:11:
6f:dd:b7:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:14 2025 by rpki-client on console.sobornost.net