Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/09f968-781d-4d78-99f5-e8b0a9520660/1/KSdUtfJ37XAaJBcShHmQ5uaPNaM.roa
File: KSdUtfJ37XAaJBcShHmQ5uaPNaM.roa (raw, json)
Hash identifier: VsY/uDTyeEAnbIF/MEQHUfpM957cF5t4aRsKUs0MUOM=
Subject key identifier: 29:27:54:B5:F2:77:ED:70:1A:24:17:12:84:79:90:E6:E6:8F:35:A3
Certificate issuer: /CN=afaaa537aa667361129f763894fc8bfcbfdea96f
Certificate serial: 01942369E53C72B1E4EA370530BEF30E483C
Authority key identifier: AF:AA:A5:37:AA:66:73:61:12:9F:76:38:94:FC:8B:FC:BF:DE:A9:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r6qlN6pmc2ESn3Y4lPyL_L_eqW8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/09f968-781d-4d78-99f5-e8b0a9520660/1/KSdUtfJ37XAaJBcShHmQ5uaPNaM.roa
Signing time: Wed 01 Jan 2025 19:48:50 +0000
ROA not before: Wed 01 Jan 2025 19:48:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206260
IP address blocks: 195.18.0.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:69:e5:3c:72:b1:e4:ea:37:05:30:be:f3:0e:48:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=afaaa537aa667361129f763894fc8bfcbfdea96f
Validity
Not Before: Jan 1 19:48:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=292754b5f277ed701a241712847990e6e68f35a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:32:a9:e4:11:ce:99:6a:8d:16:e0:0d:4d:91:
93:83:d2:35:58:12:66:c2:1f:0d:3b:fe:b7:17:75:
7d:b5:b3:5d:4a:99:c3:07:ae:9e:ed:60:65:4c:cd:
61:b3:38:9c:92:7d:d6:79:bb:99:6b:3c:00:8d:35:
a6:fc:06:e2:42:2b:67:3a:98:7a:28:62:1c:b8:c7:
2d:d1:4d:9d:73:23:c1:2c:36:2c:2e:2d:e5:e4:8a:
c8:98:ac:e4:c5:1d:ab:bd:36:85:87:77:e2:25:22:
e9:4b:91:c4:32:5e:ed:9c:3f:bf:19:dc:3e:a1:2d:
3f:80:2a:c2:e4:55:07:e1:b2:6a:87:10:23:8a:c7:
2c:eb:1f:4c:7d:94:e2:8b:4d:00:56:80:22:15:6f:
67:64:8f:6b:54:43:e2:36:71:23:bc:bc:37:71:42:
58:2f:4d:e8:17:07:01:ba:07:a4:97:8b:3d:96:31:
33:6b:5d:80:0c:b5:1a:78:3b:53:f7:e7:06:c9:e9:
18:17:1a:87:f7:7f:ab:92:cc:2f:cc:3b:b8:11:8a:
29:bc:aa:9f:4b:f2:b6:83:fe:6f:f8:85:36:21:8b:
bd:6d:7e:41:29:9d:8b:60:16:ba:4d:4e:fa:d2:26:
eb:fc:85:00:6b:04:ea:d8:21:8e:95:7e:ae:b2:3f:
77:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:27:54:B5:F2:77:ED:70:1A:24:17:12:84:79:90:E6:E6:8F:35:A3
X509v3 Authority Key Identifier:
keyid:AF:AA:A5:37:AA:66:73:61:12:9F:76:38:94:FC:8B:FC:BF:DE:A9:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r6qlN6pmc2ESn3Y4lPyL_L_eqW8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/09f968-781d-4d78-99f5-e8b0a9520660/1/KSdUtfJ37XAaJBcShHmQ5uaPNaM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/09f968-781d-4d78-99f5-e8b0a9520660/1/r6qlN6pmc2ESn3Y4lPyL_L_eqW8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.18.0.0/22
Signature Algorithm: sha256WithRSAEncryption
5f:eb:00:d7:db:58:35:ac:6f:aa:af:4a:c4:7b:fc:3e:b4:a9:
d1:f9:fe:11:03:c6:34:5c:cf:46:78:e1:ca:7b:49:22:1c:6f:
1b:d6:77:0d:8d:5d:1f:1e:ad:c6:51:5e:ae:5b:97:8d:5d:79:
a9:4c:57:37:39:f3:c2:40:ee:a0:66:ae:96:73:13:3f:17:58:
07:63:5a:04:33:0f:98:3d:87:1f:1d:87:b4:7b:b0:5a:b6:57:
f1:a4:ab:59:59:d0:cb:0f:c6:b7:d0:77:39:41:c5:c8:00:88:
f4:63:b3:d2:3b:07:a5:ab:90:59:2e:3c:d1:fb:b7:e4:af:f6:
e3:10:ad:db:51:07:87:fc:50:e3:01:69:61:9f:16:f4:0a:40:
c0:34:c5:40:98:ef:92:47:04:6f:3b:fc:fd:32:e7:7c:59:74:
99:fd:5b:e6:d6:7d:46:57:ac:61:7b:da:c9:6b:d3:fd:ff:5f:
a9:53:30:fc:1f:ab:79:56:b7:22:44:bc:3b:b8:b3:a3:9f:b0:
4c:52:57:e5:26:84:85:58:8b:89:c3:d4:d6:cd:fb:ca:a1:21:
fc:cc:b3:97:53:99:b8:d3:15:2d:88:d3:b1:a9:3e:05:c2:50:
58:31:71:85:7c:2f:80:c9:56:c5:24:ae:37:01:19:27:1a:2d:
17:ba:12:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:26 2025 by rpki-client on console.sobornost.net