Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/b44330-5d3b-4479-8b10-2bb7fdd5f728/1/0w6euFTp3UzxouPKJPAlF0GR1yI.roa
File: 0w6euFTp3UzxouPKJPAlF0GR1yI.roa (raw, json)
Hash identifier: alEYIZXZwAXSB7arGqSdzzPit/FWLiAkOyabJR5JGf8=
Subject key identifier: D3:0E:9E:B8:54:E9:DD:4C:F1:A2:E3:CA:24:F0:25:17:41:91:D7:22
Certificate issuer: /CN=4d136295f7f32e64be78fb399eb6d15ae3e92632
Certificate serial: 01941F8C86BF0330A1FF0ADAFA7D218119D0
Authority key identifier: 4D:13:62:95:F7:F3:2E:64:BE:78:FB:39:9E:B6:D1:5A:E3:E9:26:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TRNilffzLmS-ePs5nrbRWuPpJjI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/b44330-5d3b-4479-8b10-2bb7fdd5f728/1/0w6euFTp3UzxouPKJPAlF0GR1yI.roa
Signing time: Wed 01 Jan 2025 01:48:10 +0000
ROA not before: Wed 01 Jan 2025 01:48:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211505
IP address blocks: 194.5.195.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:86:bf:03:30:a1:ff:0a:da:fa:7d:21:81:19:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d136295f7f32e64be78fb399eb6d15ae3e92632
Validity
Not Before: Jan 1 01:48:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d30e9eb854e9dd4cf1a2e3ca24f025174191d722
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:c8:55:94:ca:de:9a:8c:5e:c7:12:da:b3:f9:
c3:ed:be:89:36:97:11:2d:61:c7:6f:31:8d:9d:61:
64:65:3d:c3:12:1f:d4:39:ce:9b:0a:d2:75:95:ec:
24:a6:3e:e3:e8:52:75:69:49:60:4d:0b:1a:0e:d0:
4f:86:61:4a:21:b8:54:2a:b1:80:cd:01:3a:29:09:
ee:02:0e:eb:77:51:31:f7:e1:d3:a4:b6:81:95:9f:
4d:ef:0a:61:09:7a:ca:da:a8:86:77:48:52:1b:ca:
19:46:12:50:50:37:02:c4:f7:a8:29:42:91:37:af:
43:b2:c6:ab:fd:f3:33:88:02:bc:72:db:b1:3b:cc:
01:e6:a6:52:24:6d:8f:fd:de:4e:df:69:16:05:a2:
ea:bf:d1:aa:5b:06:0f:1a:12:e1:18:2a:8d:57:78:
14:38:9c:f5:83:21:4d:e9:d8:2f:0b:1b:84:ac:ff:
d8:b2:95:0c:d3:41:b7:bd:ae:74:4d:70:d0:03:45:
1a:8c:cc:58:76:65:31:9c:de:82:c7:b4:c3:74:1e:
b2:ab:3d:2c:02:1a:dc:04:f2:4c:93:f0:5b:83:20:
71:39:95:52:e8:78:9a:6f:17:05:0d:b8:92:b9:fb:
7b:66:db:0d:f7:3e:0b:e9:d2:65:02:0e:dc:5f:54:
b5:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:0E:9E:B8:54:E9:DD:4C:F1:A2:E3:CA:24:F0:25:17:41:91:D7:22
X509v3 Authority Key Identifier:
keyid:4D:13:62:95:F7:F3:2E:64:BE:78:FB:39:9E:B6:D1:5A:E3:E9:26:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TRNilffzLmS-ePs5nrbRWuPpJjI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/b44330-5d3b-4479-8b10-2bb7fdd5f728/1/0w6euFTp3UzxouPKJPAlF0GR1yI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/b44330-5d3b-4479-8b10-2bb7fdd5f728/1/TRNilffzLmS-ePs5nrbRWuPpJjI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.5.195.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:61:ed:46:28:8e:69:bd:ad:6f:36:00:ac:5c:fa:e4:aa:54:
80:53:20:57:e3:10:f9:f4:6b:6b:b7:0d:b9:bd:fd:19:7f:9e:
48:1c:7a:09:da:6a:23:3e:f7:f7:1e:3b:30:52:e4:7b:16:ab:
bc:9d:80:b5:1e:8b:81:b8:dc:3e:2f:e8:a3:2d:31:ac:d1:e5:
e6:b8:66:42:48:e9:82:3e:3e:3e:aa:e9:e4:9a:5d:10:48:f3:
fc:06:a9:98:ac:29:ad:1e:de:4d:86:ab:24:7d:d7:b2:24:4d:
a4:47:f0:30:dc:db:6e:73:12:a7:1c:28:8b:0b:bc:cd:ed:c8:
34:54:05:10:de:97:7c:fa:10:63:95:af:50:ba:91:11:d6:29:
8a:43:02:2c:ea:7c:8b:fd:e6:40:ef:22:1b:2a:25:7e:19:40:
eb:f6:34:55:42:4f:10:eb:aa:0b:68:5a:69:75:42:6f:24:da:
61:f4:d2:14:fd:f3:6d:a2:aa:f6:24:34:bf:20:c0:40:39:78:
e8:6b:19:74:67:7c:4c:18:7f:01:cb:1e:57:70:80:fa:7d:19:
ed:3e:3e:55:86:65:be:82:a5:00:7e:3c:05:62:70:55:89:4e:
62:95:a9:82:5d:38:01:28:61:18:10:c6:6c:c8:c7:b8:04:e4:
f3:cf:b5:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:26 2025 by rpki-client on console.sobornost.net