Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/d02983-b11c-4bf7-b4b5-e8c9ad5f051a/1/SO2r7hsXMD0rXtOemxDNawKSwK8.roa
File: SO2r7hsXMD0rXtOemxDNawKSwK8.roa (raw, json)
Hash identifier: 3SE/M/3jMxmStavB2oSEQ1ZOQCjp7NcclCdpHKXNutg=
Subject key identifier: 48:ED:AB:EE:1B:17:30:3D:2B:5E:D3:9E:9B:10:CD:6B:02:92:C0:AF
Certificate issuer: /CN=9b632edb635aa8f9c40a0495a7a63bb6539580bb
Certificate serial: 01941FFA9C31F2A3273F62B0F4178E259A13
Authority key identifier: 9B:63:2E:DB:63:5A:A8:F9:C4:0A:04:95:A7:A6:3B:B6:53:95:80:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m2Mu22NaqPnECgSVp6Y7tlOVgLs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/d02983-b11c-4bf7-b4b5-e8c9ad5f051a/1/SO2r7hsXMD0rXtOemxDNawKSwK8.roa
Signing time: Wed 01 Jan 2025 03:48:25 +0000
ROA not before: Wed 01 Jan 2025 03:48:25 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 57837
IP address blocks: 84.201.98.0/24 maxlen: 24
2a00:1348:10::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:9c:31:f2:a3:27:3f:62:b0:f4:17:8e:25:9a:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b632edb635aa8f9c40a0495a7a63bb6539580bb
Validity
Not Before: Jan 1 03:48:25 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=48edabee1b17303d2b5ed39e9b10cd6b0292c0af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:f7:21:81:b2:58:ee:dd:a8:9c:d2:09:af:65:
df:b9:4e:66:7d:88:21:71:73:3c:58:9b:e4:73:97:
ed:be:9d:de:bd:67:b8:d3:10:be:79:b8:a6:fd:50:
5e:d1:93:40:e0:b0:4d:fc:93:b4:7e:f9:3a:aa:42:
b1:db:81:7c:9a:1f:3c:c4:8b:89:d8:0d:80:d2:50:
e1:91:97:d6:23:0f:54:c0:b8:1e:9f:61:17:4d:77:
19:71:63:9b:e0:ac:24:ca:4f:e8:08:af:9f:f1:0f:
f0:4d:af:95:9e:7f:d5:aa:e1:50:df:01:9f:98:68:
13:0d:12:49:f5:c1:2b:7f:07:75:a2:42:08:8f:a5:
5f:e4:4e:e9:7c:30:4c:17:b3:d3:6e:41:71:3e:4e:
9a:9e:e3:33:b2:2b:94:17:63:d6:5d:23:1c:4f:93:
59:cc:f9:c5:06:79:27:4f:53:a8:aa:99:4b:a2:40:
82:73:85:cc:77:c6:70:76:79:aa:78:77:4c:9c:95:
34:c7:19:b7:64:64:67:5f:a2:90:60:e0:96:1a:8c:
11:12:ac:e0:8c:eb:31:d5:5d:0b:66:88:d2:b6:f4:
ea:2f:cd:a1:d1:2a:b5:6e:55:d1:0a:19:f3:cb:fb:
50:e1:23:e4:04:4e:2d:71:49:10:5c:66:87:62:8a:
8c:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:ED:AB:EE:1B:17:30:3D:2B:5E:D3:9E:9B:10:CD:6B:02:92:C0:AF
X509v3 Authority Key Identifier:
keyid:9B:63:2E:DB:63:5A:A8:F9:C4:0A:04:95:A7:A6:3B:B6:53:95:80:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m2Mu22NaqPnECgSVp6Y7tlOVgLs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/d02983-b11c-4bf7-b4b5-e8c9ad5f051a/1/SO2r7hsXMD0rXtOemxDNawKSwK8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/d02983-b11c-4bf7-b4b5-e8c9ad5f051a/1/m2Mu22NaqPnECgSVp6Y7tlOVgLs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.201.98.0/24
IPv6:
2a00:1348:10::/48
Signature Algorithm: sha256WithRSAEncryption
72:22:5d:c1:7f:4b:82:b0:da:54:8b:30:13:ab:4e:c4:ff:f6:
f2:e1:47:67:a1:0c:b6:f8:8f:ef:c9:d8:39:86:14:29:aa:68:
5d:fe:6c:2c:22:d1:6c:ae:fe:ed:89:2e:9e:1c:1c:5a:60:39:
18:4b:9a:a1:59:e8:be:62:3e:9d:f4:b5:6c:c7:b6:96:1a:59:
2c:0a:d6:94:eb:43:61:22:95:68:54:d2:39:e6:6e:5a:ee:44:
a4:4b:72:16:94:fc:36:ca:0e:49:38:36:81:96:45:42:41:88:
52:3f:8e:04:f2:a4:48:7d:1b:ed:8c:fe:13:bc:18:ce:80:bc:
b3:13:c7:0e:d8:fd:a9:7e:9b:32:b2:2a:24:57:86:cd:90:22:
f9:05:53:6d:4d:7e:49:0f:77:52:28:9c:ae:2c:ad:76:6a:4f:
dc:ad:5d:aa:95:9a:ef:70:e6:4b:c6:f1:e6:f4:5b:6f:04:74:
56:84:a2:8c:13:1b:4d:3a:33:38:c4:4a:00:41:a3:11:79:09:
84:11:5f:5e:24:3e:33:62:b2:d0:97:5f:ec:26:f5:8d:35:25:
bc:3c:b1:9e:f6:0f:0c:f5:93:55:5b:97:88:14:2b:33:7d:9a:
b0:2c:47:2c:f7:ea:66:e3:51:ad:65:d9:cd:a1:00:e2:ca:47:
b7:40:17:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:26 2025 by rpki-client on console.sobornost.net