Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/009074-66f6-4d4d-974a-da2ec8cfb888/1/ClDShRWVAJsP6NoIbSAj2Ahd24Q.roa
File: ClDShRWVAJsP6NoIbSAj2Ahd24Q.roa (raw, json)
Hash identifier: vntq+Z6Tbd8s/QqwS6T999xv/EcabW8VhdgxR1iSPhU=
Subject key identifier: 0A:50:D2:85:15:95:00:9B:0F:E8:DA:08:6D:20:23:D8:08:5D:DB:84
Certificate issuer: /CN=81812385b82dda0fd4826abb7aefeb0df3eb8ffd
Certificate serial: 01942369563FB60455784B9E0F5B340EB138
Authority key identifier: 81:81:23:85:B8:2D:DA:0F:D4:82:6A:BB:7A:EF:EB:0D:F3:EB:8F:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gYEjhbgt2g_Ugmq7eu_rDfPrj_0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/009074-66f6-4d4d-974a-da2ec8cfb888/1/ClDShRWVAJsP6NoIbSAj2Ahd24Q.roa
Signing time: Wed 01 Jan 2025 19:48:13 +0000
ROA not before: Wed 01 Jan 2025 19:48:13 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 47232
IP address blocks: 147.161.28.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:69:56:3f:b6:04:55:78:4b:9e:0f:5b:34:0e:b1:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81812385b82dda0fd4826abb7aefeb0df3eb8ffd
Validity
Not Before: Jan 1 19:48:13 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0a50d2851595009b0fe8da086d2023d8085ddb84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:5f:53:e4:7f:42:51:15:40:fa:90:f5:1c:78:
c6:ec:29:15:e0:71:34:af:dd:77:35:7a:86:95:86:
74:bf:8b:4a:ba:2a:64:e3:6e:a8:29:71:c3:52:03:
02:69:b1:e4:89:23:a1:12:4e:ff:5d:15:25:72:8f:
30:84:5c:e3:39:a0:01:9e:4f:fb:8f:1a:9b:28:8b:
a4:5d:86:4f:dc:95:43:b9:dc:cc:ff:30:62:c0:9d:
0d:91:14:f3:ed:f7:5c:3d:69:fa:11:7f:ae:f1:61:
c6:26:e3:12:19:cd:47:88:4f:ed:a1:4b:78:33:1c:
ce:d8:76:1d:58:7c:7a:59:a2:06:64:2f:1e:16:be:
21:e5:22:59:2a:57:9a:09:59:b2:33:db:3b:6c:5b:
63:91:ba:4d:89:29:9a:2c:bf:b2:a1:7b:7b:b3:3b:
bd:48:fb:b7:f2:b2:98:30:10:4a:5d:8f:a6:db:84:
8b:1b:4a:11:af:d9:8d:78:3d:52:2f:ef:a8:e3:ef:
58:51:26:43:de:4f:0d:a9:c7:6d:2b:9f:41:17:d3:
d5:6e:23:89:c9:5d:a0:fe:e1:16:39:a2:cd:a1:d2:
59:ae:5a:9b:cd:36:14:a7:86:d3:3e:22:85:82:5a:
43:d5:03:e3:0b:cf:8e:7f:e4:71:8d:ae:5f:45:34:
db:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:50:D2:85:15:95:00:9B:0F:E8:DA:08:6D:20:23:D8:08:5D:DB:84
X509v3 Authority Key Identifier:
keyid:81:81:23:85:B8:2D:DA:0F:D4:82:6A:BB:7A:EF:EB:0D:F3:EB:8F:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gYEjhbgt2g_Ugmq7eu_rDfPrj_0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/009074-66f6-4d4d-974a-da2ec8cfb888/1/ClDShRWVAJsP6NoIbSAj2Ahd24Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/009074-66f6-4d4d-974a-da2ec8cfb888/1/gYEjhbgt2g_Ugmq7eu_rDfPrj_0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.161.28.0/22
Signature Algorithm: sha256WithRSAEncryption
51:a7:5c:99:4f:2b:b2:4b:5e:89:b5:04:0a:aa:45:3d:63:df:
ae:8a:e6:6c:8e:f6:b3:3f:65:26:2a:7c:bd:4a:74:25:8f:d7:
75:ea:62:d6:62:4d:b9:e5:8a:8e:40:6d:a2:db:03:71:d7:cf:
25:5d:2a:ef:7d:ff:1c:d1:98:7f:3f:7c:f6:8c:5b:c2:e9:30:
0c:17:37:6f:45:b5:2f:08:5f:6a:58:f8:6f:85:7f:f0:4c:e8:
a7:22:1d:c6:5b:ca:eb:57:7e:bc:ec:f3:9b:f0:d2:fc:c0:9c:
51:2a:33:3d:50:8d:c9:ee:45:bd:97:50:d4:00:ec:a3:6e:b5:
83:99:e8:05:03:5f:5d:6f:73:9d:94:ce:dc:98:53:f0:5a:38:
14:5d:ee:18:20:45:95:b4:12:06:f5:e6:eb:4a:23:06:8f:3c:
5a:e5:58:06:67:cf:e1:e2:27:40:88:72:4c:18:44:fe:0f:4d:
c3:55:46:a3:be:b5:62:f1:fc:3f:d9:69:c4:47:fa:8e:75:c8:
55:4b:6a:44:ec:47:1a:4c:98:50:4f:55:36:f9:0d:86:7f:c2:
b4:0d:86:fb:41:bf:35:83:bc:e7:7e:78:3b:73:75:12:9d:da:
c7:16:1c:f1:a7:ae:d8:39:d9:a5:ef:6d:89:fa:a6:44:18:36:
99:10:f3:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:25 2025 by rpki-client on console.sobornost.net