Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/f0b6ba-8675-491c-8593-724949b460e9/1/IPfQIXhx-EVpYevUCH6nRlI1vEk.roa
File: IPfQIXhx-EVpYevUCH6nRlI1vEk.roa (raw, json)
Hash identifier: aoDfqoJzdh17Itb5jDuQwg4ZtT6PxaA9lD3xjUMRLF4=
Subject key identifier: 20:F7:D0:21:78:71:F8:45:69:61:EB:D4:08:7E:A7:46:52:35:BC:49
Certificate issuer: /CN=38f9c54f19193e06548163f895c3a46b9f8bfbb5
Certificate serial: 01941FFA48837F41A82ABADF060FE745CA33
Authority key identifier: 38:F9:C5:4F:19:19:3E:06:54:81:63:F8:95:C3:A4:6B:9F:8B:FB:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OPnFTxkZPgZUgWP4lcOka5-L-7U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/f0b6ba-8675-491c-8593-724949b460e9/1/IPfQIXhx-EVpYevUCH6nRlI1vEk.roa
Signing time: Wed 01 Jan 2025 03:48:03 +0000
ROA not before: Wed 01 Jan 2025 03:48:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 5408
IP address blocks: 193.218.96.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:48:83:7f:41:a8:2a:ba:df:06:0f:e7:45:ca:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38f9c54f19193e06548163f895c3a46b9f8bfbb5
Validity
Not Before: Jan 1 03:48:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=20f7d0217871f8456961ebd4087ea7465235bc49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:f2:3e:d8:e7:71:4e:22:fc:00:90:d8:3a:ae:
a7:d9:28:59:cd:14:6b:e6:71:42:ed:68:cb:d5:20:
0a:ea:30:8b:85:d7:d8:ef:8c:b2:4d:60:dd:26:1c:
93:33:16:ed:a6:5d:e2:c2:c3:35:f4:09:00:ec:e5:
4f:59:c5:cb:eb:17:01:d3:63:42:02:02:21:aa:ad:
4c:ba:d0:47:eb:10:80:00:12:f9:09:9d:01:52:b1:
ba:f9:b4:94:22:f1:d8:06:00:bd:d2:19:8a:59:49:
b0:1e:d2:4f:7e:4f:1d:0e:6c:1c:ef:0b:6c:71:1a:
5d:16:f9:8c:ca:88:72:07:bd:24:78:3d:52:ef:70:
76:5a:47:20:35:0a:00:37:64:46:a6:44:d8:86:20:
76:b1:9b:e7:6c:f4:34:0f:44:9b:ee:2c:32:f0:5a:
8d:71:3f:42:8e:9d:d4:30:91:dd:10:06:be:34:df:
34:15:86:74:24:e9:04:4d:d5:fd:fc:cc:12:4a:e0:
6d:3b:35:52:86:7e:99:0c:98:1e:0c:e3:25:b8:06:
89:84:80:c0:63:09:99:9c:a9:80:9f:cc:ca:02:55:
50:b5:4d:3d:37:3f:15:4d:23:e2:c5:d2:4f:ad:1e:
41:a3:b5:47:cb:40:26:d8:77:52:b3:ec:06:b3:9c:
6a:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:F7:D0:21:78:71:F8:45:69:61:EB:D4:08:7E:A7:46:52:35:BC:49
X509v3 Authority Key Identifier:
keyid:38:F9:C5:4F:19:19:3E:06:54:81:63:F8:95:C3:A4:6B:9F:8B:FB:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OPnFTxkZPgZUgWP4lcOka5-L-7U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/f0b6ba-8675-491c-8593-724949b460e9/1/IPfQIXhx-EVpYevUCH6nRlI1vEk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/f0b6ba-8675-491c-8593-724949b460e9/1/OPnFTxkZPgZUgWP4lcOka5-L-7U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.218.96.0/23
Signature Algorithm: sha256WithRSAEncryption
22:48:6b:4e:6a:44:08:78:26:b4:62:4e:f9:83:a9:1f:37:0d:
e5:75:b2:4e:26:1f:f0:26:92:00:75:b5:02:7f:b3:63:d2:06:
9c:13:25:01:c5:26:2a:e3:95:5d:45:a4:a9:3c:05:4d:a2:1f:
c3:81:af:e0:b2:2b:31:5a:24:17:aa:ea:33:0b:ec:23:48:3d:
e9:e4:43:b5:dd:2c:71:35:9e:b4:ff:a1:37:a2:87:36:9b:c4:
cc:b4:e4:d8:8b:e5:f5:18:93:4d:7e:61:3e:8e:19:eb:d6:13:
47:4c:43:d1:5a:4f:61:b5:07:e5:10:59:45:e4:22:28:b9:a7:
31:6c:5e:5d:9e:b5:b1:e3:b2:cf:17:80:46:5d:df:a6:37:b0:
41:a7:5c:4b:0b:a9:5e:c5:af:81:0e:3e:28:aa:23:eb:c6:4c:
eb:31:eb:05:5f:ea:15:a4:05:4e:43:88:1c:0b:e0:06:32:33:
ba:dc:c0:83:85:cc:12:7b:cd:fb:16:20:61:82:60:b6:ab:8b:
c3:f3:91:f6:10:ba:78:b3:c2:2b:1f:5c:b3:fb:6d:9a:c3:31:
f1:36:ca:ff:3f:8b:17:f8:40:24:62:58:93:7e:16:1e:49:d9:
41:54:68:fe:d1:f5:ce:c7:65:ae:86:1f:7a:62:5b:dc:9a:60:
a7:79:68:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:16 2025 by rpki-client on console.sobornost.net