Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/655a1c-baf5-475f-a308-932ab341a367/1/1KTjmYkB3cj_19bwNwOyE5tGxCk.roa
File: 1KTjmYkB3cj_19bwNwOyE5tGxCk.roa (raw, json)
Hash identifier: H8xeX/8Uyv31FbjznlcJqitCSYJrp0RSe/v1PmExVLA=
Subject key identifier: D4:A4:E3:99:89:01:DD:C8:FF:D7:D6:F0:37:03:B2:13:9B:46:C4:29
Certificate issuer: /CN=e29f4964009c74bb81aed9c67078013dc868ef17
Certificate serial: 019424B3647DCF210DE96C42D35E5D26D3F4
Authority key identifier: E2:9F:49:64:00:9C:74:BB:81:AE:D9:C6:70:78:01:3D:C8:68:EF:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4p9JZACcdLuBrtnGcHgBPcho7xc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/655a1c-baf5-475f-a308-932ab341a367/1/1KTjmYkB3cj_19bwNwOyE5tGxCk.roa
Signing time: Thu 02 Jan 2025 01:48:43 +0000
ROA not before: Thu 02 Jan 2025 01:48:43 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 34086
IP address blocks: 193.222.200.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:64:7d:cf:21:0d:e9:6c:42:d3:5e:5d:26:d3:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e29f4964009c74bb81aed9c67078013dc868ef17
Validity
Not Before: Jan 2 01:48:43 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d4a4e3998901ddc8ffd7d6f03703b2139b46c429
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:49:9d:df:cd:e4:b4:83:6c:7b:67:35:bd:3e:
3b:fe:8b:69:9c:35:31:9b:9b:22:2d:e1:3e:b0:5a:
bd:42:2f:57:78:5c:49:40:05:45:61:02:7e:7f:84:
af:97:9c:79:3d:ab:e2:b2:8d:84:06:10:fc:91:3a:
1a:9a:e2:11:c7:6f:da:79:1e:91:44:5d:a4:e5:b5:
b7:25:17:32:dd:dd:09:65:ce:82:0f:42:7e:71:d9:
e8:e8:ce:14:a1:1e:ea:3c:de:5d:61:46:bb:50:24:
0e:fd:9f:36:44:07:e6:d1:08:fd:c2:1b:20:87:83:
06:7a:2c:08:5a:66:3c:6f:14:b1:24:74:ac:47:95:
98:70:1f:b5:ff:ee:dd:0e:c0:c0:b9:67:1d:68:4d:
6d:c2:37:db:20:d6:03:31:a9:db:b5:3f:3e:11:75:
45:43:36:70:ae:8c:94:ea:e9:21:04:03:e1:37:1b:
32:a0:a5:f5:dc:da:33:a0:64:c4:db:25:07:7a:3a:
4a:e3:a1:f4:96:e4:8b:3f:8c:6b:96:52:29:78:ef:
be:f0:76:07:18:7b:ed:dd:99:bd:b4:75:55:b0:1b:
df:da:ba:7b:7e:15:7c:a5:a4:90:69:90:04:39:e2:
ee:fd:1e:4e:21:dd:f7:03:ae:83:bb:b8:59:0b:fc:
0d:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:A4:E3:99:89:01:DD:C8:FF:D7:D6:F0:37:03:B2:13:9B:46:C4:29
X509v3 Authority Key Identifier:
keyid:E2:9F:49:64:00:9C:74:BB:81:AE:D9:C6:70:78:01:3D:C8:68:EF:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4p9JZACcdLuBrtnGcHgBPcho7xc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/655a1c-baf5-475f-a308-932ab341a367/1/1KTjmYkB3cj_19bwNwOyE5tGxCk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/655a1c-baf5-475f-a308-932ab341a367/1/4p9JZACcdLuBrtnGcHgBPcho7xc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.222.200.0/23
Signature Algorithm: sha256WithRSAEncryption
a7:ce:a5:3e:a3:6a:d3:44:72:ca:ab:15:df:d0:fb:75:f2:1c:
42:4e:50:d2:48:58:b8:a3:9b:24:5d:ed:2a:20:db:9f:3a:f0:
1d:50:a8:25:e7:58:9b:00:da:b5:35:dc:2c:00:53:e7:88:bd:
65:0a:4a:5f:46:99:7c:a6:9b:90:85:60:e4:49:65:54:f9:33:
90:4a:3b:38:66:8a:1a:7f:48:4b:ec:21:ca:5d:b2:71:8b:f5:
7c:d7:7f:f9:bf:fb:a6:63:3d:f6:b7:48:f1:c4:0b:ac:33:29:
61:15:8e:a6:fb:e4:6b:08:87:8d:2f:44:a0:64:b7:73:fb:5d:
8a:e3:98:6a:b9:d1:3f:9b:c3:5f:46:9c:1d:db:2e:0b:3d:3e:
09:a8:7c:1b:c3:80:f2:be:1d:0f:5d:63:7f:ac:43:6d:16:af:
5b:70:c5:b8:d6:a8:ef:bf:35:34:de:9a:22:2a:13:ac:14:48:
b0:28:78:db:45:6f:65:f9:3f:77:98:55:17:22:81:fb:aa:6c:
f5:96:cb:41:14:a3:30:e5:e1:a6:25:5b:d4:b5:0e:a6:c2:ac:
71:46:bd:bd:d3:60:bc:d9:c3:5e:0c:44:c0:d7:8d:c7:7a:8b:
e1:56:74:86:83:3f:41:25:e9:bd:0a:53:35:c0:b2:a5:9e:06:
04:2f:f4:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:15 2025 by rpki-client on console.sobornost.net