Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/a604cf-1947-4b12-9a6b-3eb9134ec79d/1/R7JL9FH-2QrwFM5epJeXae1YV-E.roa
File: R7JL9FH-2QrwFM5epJeXae1YV-E.roa (raw, json)
Hash identifier: Z+kLiV+Tl4XxDqngd/q42hXqK5SlkiW5r2j2WXBsESY=
Subject key identifier: 47:B2:4B:F4:51:FE:D9:0A:F0:14:CE:5E:A4:97:97:69:ED:58:57:E1
Certificate issuer: /CN=e390f2ee0a70bcaefe0195a3d8b377d34297a943
Certificate serial: 019423D74FA605829ACDC61E0F2044CB8D11
Authority key identifier: E3:90:F2:EE:0A:70:BC:AE:FE:01:95:A3:D8:B3:77:D3:42:97:A9:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/45Dy7gpwvK7-AZWj2LN300KXqUM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/a604cf-1947-4b12-9a6b-3eb9134ec79d/1/R7JL9FH-2QrwFM5epJeXae1YV-E.roa
Signing time: Wed 01 Jan 2025 21:48:20 +0000
ROA not before: Wed 01 Jan 2025 21:48:20 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 51324
IP address blocks: 185.37.152.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:4f:a6:05:82:9a:cd:c6:1e:0f:20:44:cb:8d:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e390f2ee0a70bcaefe0195a3d8b377d34297a943
Validity
Not Before: Jan 1 21:48:20 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=47b24bf451fed90af014ce5ea4979769ed5857e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:d8:91:e1:e0:f8:70:0e:14:5a:38:0f:0f:d6:
11:7a:5b:db:d9:f5:8f:2d:21:c3:93:09:e9:77:91:
aa:32:18:50:6f:07:9d:49:cf:7f:12:38:da:c4:b0:
7f:61:be:5e:19:16:cb:b0:09:eb:67:12:bd:11:cc:
b5:39:37:34:7e:36:b7:af:3b:ad:55:38:bf:a0:2b:
b8:21:e5:d7:43:57:26:b6:9d:a3:b7:7d:2b:77:87:
a9:33:0b:47:65:4c:67:82:35:42:3d:e2:90:e9:86:
8d:73:9a:88:1c:8e:16:0c:12:96:e2:5f:1c:12:e5:
70:79:ea:aa:43:da:86:fd:a7:b0:1b:d4:40:d8:3a:
87:58:48:d4:96:12:34:fe:65:3c:91:5d:e6:52:e2:
f0:a9:62:35:cf:b1:6f:a1:4f:92:07:ef:ed:ea:1c:
e6:78:41:44:e2:2a:cb:7a:0e:6c:c3:6f:87:1d:2a:
ea:e7:7a:3d:79:8b:e3:5d:f0:82:46:6d:c9:26:e4:
21:e0:07:51:c9:77:a2:fa:1a:b8:6e:66:e9:96:7a:
cc:8d:3e:22:17:f0:93:4b:dc:43:53:ed:e3:69:07:
8c:d0:2b:db:1d:6c:a1:c2:55:6a:9c:4c:98:be:6f:
b7:ea:96:01:5c:ac:27:39:07:19:7d:08:6c:d2:85:
05:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:B2:4B:F4:51:FE:D9:0A:F0:14:CE:5E:A4:97:97:69:ED:58:57:E1
X509v3 Authority Key Identifier:
keyid:E3:90:F2:EE:0A:70:BC:AE:FE:01:95:A3:D8:B3:77:D3:42:97:A9:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/45Dy7gpwvK7-AZWj2LN300KXqUM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/a604cf-1947-4b12-9a6b-3eb9134ec79d/1/R7JL9FH-2QrwFM5epJeXae1YV-E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/a604cf-1947-4b12-9a6b-3eb9134ec79d/1/45Dy7gpwvK7-AZWj2LN300KXqUM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.37.152.0/22
Signature Algorithm: sha256WithRSAEncryption
10:5c:aa:71:b5:1b:ea:f3:20:25:e9:01:19:ee:a8:fc:b2:32:
87:e5:60:4a:84:43:51:93:e9:c7:c6:7a:db:89:d8:b9:cd:11:
9c:4e:8b:40:4d:a4:1d:82:9d:7e:d0:83:b8:55:8e:03:48:75:
f7:d5:3f:2d:45:32:21:74:91:bd:2b:0f:60:3e:05:b6:25:49:
15:5c:93:54:71:40:e1:3d:6e:21:64:2e:d8:00:80:98:ad:4a:
2c:d2:36:74:c5:bd:cf:44:f3:67:59:c4:3a:c2:a4:19:bc:33:
e1:f5:fa:06:7d:a6:e7:79:83:70:3f:49:12:21:df:78:1c:e0:
a7:7a:ea:73:a8:5a:7d:0c:48:43:73:56:b2:81:40:6a:f4:29:
c3:9c:d0:67:b0:74:50:7d:e0:2b:4a:6b:a5:3d:3e:80:98:d7:
53:c4:bb:95:9c:b3:15:23:28:64:37:24:9f:5e:f3:4f:b6:8b:
27:ef:a5:2a:6b:b9:2f:2f:ab:af:fe:98:ad:65:0c:c2:f5:4f:
99:c9:e5:33:23:c4:1d:1b:c9:da:ea:dc:e8:c4:d3:67:de:51:
28:b3:5c:d4:cf:ef:62:a9:05:4d:9c:08:2f:06:47:ac:bd:80:
65:c6:d7:73:69:09:5e:31:78:05:44:f9:30:02:26:1d:b1:73:
d8:63:2b:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:15 2025 by rpki-client on console.sobornost.net