Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/3033c6-cce8-450d-a0c9-8418a96f6795/1/ozy_SqJO31cdT9G4hyw50Q2EOCc.roa
File: ozy_SqJO31cdT9G4hyw50Q2EOCc.roa (raw, json)
Hash identifier: R3WNXYhsYfa7jL2TY7tebzPrDv7v+6108twGkeh1bj4=
Subject key identifier: A3:3C:BF:4A:A2:4E:DF:57:1D:4F:D1:B8:87:2C:39:D1:0D:84:38:27
Certificate issuer: /CN=1ea0a9eb47d824b51f154442481a257168394551
Certificate serial: 019422FC41923A294C37AD4A231459A42C3A
Authority key identifier: 1E:A0:A9:EB:47:D8:24:B5:1F:15:44:42:48:1A:25:71:68:39:45:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HqCp60fYJLUfFURCSBolcWg5RVE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/3033c6-cce8-450d-a0c9-8418a96f6795/1/ozy_SqJO31cdT9G4hyw50Q2EOCc.roa
Signing time: Wed 01 Jan 2025 17:49:04 +0000
ROA not before: Wed 01 Jan 2025 17:49:04 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 210743
IP address blocks: 217.113.194.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fc:41:92:3a:29:4c:37:ad:4a:23:14:59:a4:2c:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ea0a9eb47d824b51f154442481a257168394551
Validity
Not Before: Jan 1 17:49:04 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a33cbf4aa24edf571d4fd1b8872c39d10d843827
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:60:df:9c:e7:c1:72:18:6f:60:ca:a6:7f:11:
2d:c4:b3:91:99:a3:43:ca:34:bc:56:75:c1:66:0d:
db:61:6c:b1:2a:ee:15:af:bf:72:10:88:b4:30:5c:
77:a5:58:72:bb:61:e0:a1:c3:3a:06:60:a2:be:75:
09:5c:c5:35:13:70:94:dd:99:8f:05:27:48:9b:63:
e2:91:89:e6:48:5d:68:35:b8:50:65:41:82:64:de:
d9:06:bc:d1:70:ff:1b:e0:d4:db:1e:97:06:33:d0:
82:0f:b2:aa:f6:e0:7a:62:86:40:a7:95:e0:25:af:
12:1a:96:ed:25:8f:66:7a:4c:92:3f:a8:ba:89:8f:
e3:3c:d4:13:0a:d4:bb:bd:a3:74:91:42:7c:31:d6:
1e:a3:b3:e0:0f:84:cc:40:17:ce:94:64:a7:e7:f0:
bd:c6:7c:66:9b:ac:9c:45:17:e8:a2:74:2b:97:65:
65:85:68:f0:20:71:95:03:d3:60:17:c8:44:f9:29:
c3:7c:42:ce:14:e1:79:66:6e:e1:f5:0e:c8:d0:c6:
b7:0a:63:1e:ae:72:4d:5e:07:71:98:9f:8e:1e:63:
2a:e9:9c:68:6d:8d:fe:6c:55:88:c3:2c:04:1b:be:
57:7f:aa:23:82:d5:88:47:e8:f5:32:81:cb:a2:99:
20:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:3C:BF:4A:A2:4E:DF:57:1D:4F:D1:B8:87:2C:39:D1:0D:84:38:27
X509v3 Authority Key Identifier:
keyid:1E:A0:A9:EB:47:D8:24:B5:1F:15:44:42:48:1A:25:71:68:39:45:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HqCp60fYJLUfFURCSBolcWg5RVE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/3033c6-cce8-450d-a0c9-8418a96f6795/1/ozy_SqJO31cdT9G4hyw50Q2EOCc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/3033c6-cce8-450d-a0c9-8418a96f6795/1/HqCp60fYJLUfFURCSBolcWg5RVE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.113.194.0/24
Signature Algorithm: sha256WithRSAEncryption
34:1b:9a:22:be:69:54:95:ff:b8:02:ac:c6:38:35:e5:a0:4f:
e1:bb:ea:e7:9d:0a:44:73:b3:3a:67:fe:55:9d:9f:70:4a:02:
1d:82:9e:4a:83:64:c6:51:d4:93:01:a0:21:53:6c:19:c3:46:
7c:a2:20:3f:b4:74:49:b5:bd:db:a4:4b:45:c2:60:a4:23:32:
eb:2e:40:c2:eb:12:57:26:12:64:fc:3e:78:e5:65:41:91:38:
52:1b:7d:81:17:fb:6b:14:3a:7f:66:70:62:d2:ba:4b:94:fd:
e0:56:9e:cc:b8:9e:6b:2b:3a:75:e4:46:32:6e:a1:8a:13:ce:
67:0b:d6:2e:c8:d1:a8:b4:36:ce:ff:22:55:8e:de:9b:e6:97:
c3:03:61:f9:ae:19:e5:90:90:26:2e:f1:32:05:0b:46:8e:ea:
6e:2e:34:32:e1:31:3e:fb:19:eb:d4:cd:65:e6:dc:7a:71:30:
ba:55:e8:6e:3f:32:27:db:6b:a8:2a:1b:8a:5a:3a:d8:45:f7:
83:b2:45:b7:23:a7:86:30:fe:cc:fe:c6:5f:f1:5c:08:47:53:
41:a2:b2:82:b2:2a:21:4b:bd:1c:8a:7b:0e:ff:8f:8e:c6:9a:
63:0c:8f:ba:da:fe:23:a5:86:76:75:41:25:08:88:85:50:b5:
b2:04:9e:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:25 2025 by rpki-client on console.sobornost.net