Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/aTgUhMPQnjx2xjYwnwJ2gz-I7rs.roa
File: aTgUhMPQnjx2xjYwnwJ2gz-I7rs.roa (raw, json)
Hash identifier: B9eu7QuJTduRZceQo5fFEV1A6fHWCByz1rCSN6+BTS8=
Subject key identifier: 69:38:14:84:C3:D0:9E:3C:76:C6:36:30:9F:02:76:83:3F:88:EE:BB
Certificate issuer: /CN=e9b1320fbc24d6f4366cb64fcf5ed2d7b1b6bdf7
Certificate serial: 0194252172FA5769862003452CD165D111CE
Authority key identifier: E9:B1:32:0F:BC:24:D6:F4:36:6C:B6:4F:CF:5E:D2:D7:B1:B6:BD:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6bEyD7wk1vQ2bLZPz17S17G2vfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/aTgUhMPQnjx2xjYwnwJ2gz-I7rs.roa
Signing time: Thu 02 Jan 2025 03:48:56 +0000
ROA not before: Thu 02 Jan 2025 03:48:56 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43940
IP address blocks: 212.200.246.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:72:fa:57:69:86:20:03:45:2c:d1:65:d1:11:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9b1320fbc24d6f4366cb64fcf5ed2d7b1b6bdf7
Validity
Not Before: Jan 2 03:48:56 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=69381484c3d09e3c76c636309f0276833f88eebb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:60:36:bc:91:04:d0:c3:c8:a3:24:f2:fc:a6:
5a:52:cf:81:99:e9:28:f3:99:84:08:dd:19:89:fa:
ad:4a:c9:02:b1:0c:f1:11:3e:99:13:e1:ef:18:74:
b2:98:46:09:59:4c:7a:cf:26:5e:33:64:5c:ca:25:
92:d5:b0:02:0f:03:c4:15:ca:65:13:fe:97:96:dc:
63:c9:b2:f1:df:31:80:87:47:fb:1e:32:ff:03:77:
9c:34:a2:36:a6:e1:4b:2f:71:06:bb:84:03:fd:0c:
ff:44:70:d5:55:37:22:04:23:33:c8:08:e2:f0:85:
08:a6:6d:8f:4a:95:bc:15:b2:67:70:f2:e0:bc:9a:
8a:b3:0c:c7:eb:60:1f:c6:df:b0:99:3e:37:aa:c0:
d4:71:e1:37:3f:78:9d:c1:2f:8c:a3:97:dd:c5:e9:
a1:a4:23:60:1f:12:b2:dc:eb:07:c9:aa:e4:6c:ca:
ef:36:1e:ff:38:d3:ea:da:db:73:22:73:07:5f:fd:
6d:2a:cc:49:fc:a2:7b:81:52:5e:f3:2b:1d:33:68:
13:32:9f:34:9f:7c:18:3a:09:3a:eb:14:a8:75:65:
96:15:d6:2f:61:ac:f9:32:37:17:52:38:68:81:76:
31:ce:14:d8:e2:3f:cf:1d:4b:45:81:a5:2a:9f:fc:
73:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:38:14:84:C3:D0:9E:3C:76:C6:36:30:9F:02:76:83:3F:88:EE:BB
X509v3 Authority Key Identifier:
keyid:E9:B1:32:0F:BC:24:D6:F4:36:6C:B6:4F:CF:5E:D2:D7:B1:B6:BD:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6bEyD7wk1vQ2bLZPz17S17G2vfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/aTgUhMPQnjx2xjYwnwJ2gz-I7rs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/6bEyD7wk1vQ2bLZPz17S17G2vfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.200.246.0/24
Signature Algorithm: sha256WithRSAEncryption
30:16:6f:ef:2c:50:3d:6a:5c:70:47:22:70:f4:90:95:0f:3d:
ed:b1:f6:9f:5d:52:7b:f3:ac:e1:bb:11:f4:48:50:a0:6b:fc:
46:43:d5:27:a3:fa:6c:14:dc:f2:80:fb:5c:85:e7:fe:ff:d8:
50:0e:72:c6:f8:41:0e:57:45:df:e2:ee:e3:e9:a4:35:ff:3c:
34:16:72:7d:8b:8b:eb:c6:5a:b6:6f:78:17:9e:99:13:ca:1c:
c4:c3:37:10:3f:59:fc:97:1e:40:5e:17:23:98:84:ad:e9:66:
6e:67:9e:89:a1:6f:4a:42:dc:7e:e4:22:8d:78:51:e3:24:bb:
98:b6:49:f2:c8:3e:d8:e2:01:de:85:27:89:16:b6:9a:5b:b0:
b1:b2:63:8b:21:5f:d0:af:85:bb:1d:22:42:3b:83:66:9f:63:
6d:eb:2e:0d:79:81:c4:f3:78:9c:18:00:e5:d3:09:f1:96:eb:
1b:f9:b0:49:b3:41:ff:fc:6d:c7:c3:d7:4c:be:45:48:8d:36:
d2:d7:3b:84:03:7d:dd:de:0e:5f:ac:22:5c:b1:79:17:54:e0:
b5:fc:11:e9:c5:78:b8:3b:e3:98:6a:d1:97:e3:ad:91:31:70:
1d:5a:4e:12:9a:07:b3:81:ed:1c:f7:52:d6:71:13:52:25:12:
7b:de:00:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:27 2025 by rpki-client on console.sobornost.net