Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/0fbf48-5db7-49fe-bf44-6a36705bba6f/1/_2hrxKKbdmRyLOnHUiOQipQACXY.roa
File: _2hrxKKbdmRyLOnHUiOQipQACXY.roa (raw, json)
Hash identifier: DxOyoU679BPpOs0ffrHVPaZuK8yvllJ+3WIdB3uJM5Y=
Subject key identifier: FF:68:6B:C4:A2:9B:76:64:72:2C:E9:C7:52:23:90:8A:94:00:09:76
Certificate issuer: /CN=0c05ca111c0093b56514215be467b515dda56c06
Certificate serial: 019425FCBFA79F1306C652EA5BA67FB5848F
Authority key identifier: 0C:05:CA:11:1C:00:93:B5:65:14:21:5B:E4:67:B5:15:DD:A5:6C:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DAXKERwAk7VlFCFb5Ge1Fd2lbAY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/0fbf48-5db7-49fe-bf44-6a36705bba6f/1/_2hrxKKbdmRyLOnHUiOQipQACXY.roa
Signing time: Thu 02 Jan 2025 07:48:28 +0000
ROA not before: Thu 02 Jan 2025 07:48:28 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215218
IP address blocks: 194.164.39.0/24 maxlen: 24
2a13:e700:1::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fc:bf:a7:9f:13:06:c6:52:ea:5b:a6:7f:b5:84:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c05ca111c0093b56514215be467b515dda56c06
Validity
Not Before: Jan 2 07:48:28 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ff686bc4a29b7664722ce9c75223908a94000976
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:f3:9b:e9:20:bd:6c:4b:75:72:3c:2d:21:60:
af:3e:ba:c0:6c:5b:7d:6c:18:58:11:d7:45:3e:39:
c1:9f:77:24:fb:d3:84:f1:97:de:ba:cd:c1:78:88:
b2:8e:cd:08:a1:45:9c:b5:06:75:d2:b9:97:b5:10:
00:bb:9e:35:b9:8b:ad:69:3c:d2:0c:01:a1:98:44:
c9:1b:ef:41:19:6e:a8:ae:9e:e3:3c:32:19:cf:79:
6c:27:94:54:03:54:4b:2d:65:e7:9e:d3:72:48:f8:
e5:db:c9:21:65:63:56:c7:17:46:73:78:34:4a:9e:
c1:b1:5c:8f:20:1c:d5:a5:be:b0:79:2f:a9:82:bc:
f8:13:63:57:d9:ee:89:fc:98:3d:66:0f:bc:07:7a:
db:29:49:92:7d:47:7c:56:4d:68:d6:8d:a7:cc:24:
d6:04:18:ce:fc:cc:44:3f:91:1a:ad:5c:c7:e9:e6:
3e:5a:21:64:24:a5:f6:6b:ae:c5:78:4e:96:c1:e0:
be:c2:d1:3e:4f:a2:23:ed:ce:fc:63:fe:c3:4a:27:
c0:44:06:95:ca:e1:20:39:37:04:46:1d:9b:9e:00:
c0:10:85:dc:ef:47:be:70:30:1c:89:ed:d6:7d:c6:
d8:64:4c:bb:de:97:98:6e:e8:79:33:77:6f:54:f2:
21:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:68:6B:C4:A2:9B:76:64:72:2C:E9:C7:52:23:90:8A:94:00:09:76
X509v3 Authority Key Identifier:
keyid:0C:05:CA:11:1C:00:93:B5:65:14:21:5B:E4:67:B5:15:DD:A5:6C:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DAXKERwAk7VlFCFb5Ge1Fd2lbAY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/0fbf48-5db7-49fe-bf44-6a36705bba6f/1/_2hrxKKbdmRyLOnHUiOQipQACXY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/0fbf48-5db7-49fe-bf44-6a36705bba6f/1/DAXKERwAk7VlFCFb5Ge1Fd2lbAY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.164.39.0/24
IPv6:
2a13:e700:1::/48
Signature Algorithm: sha256WithRSAEncryption
9f:c4:3f:bd:2f:5d:e6:cb:37:a8:02:a0:82:1b:a2:c5:62:1f:
e5:d6:44:3f:65:6f:90:ee:12:b5:9d:0d:00:09:68:a6:45:cc:
55:ca:e4:07:86:19:80:e0:77:11:74:86:41:7b:b4:c2:b2:88:
5c:1b:1a:b7:36:55:4b:2e:39:2a:45:e8:11:0e:68:d4:ff:24:
d6:51:6a:db:28:11:32:df:90:8b:e3:d0:a9:1c:a1:59:4f:69:
ee:fe:c3:e9:37:e8:ae:82:37:d6:49:c5:65:60:62:c7:c7:de:
24:3e:96:a8:1c:82:0c:7f:df:72:d7:5d:18:ae:28:f5:b4:e6:
42:d4:64:8e:1b:a1:7e:89:b6:95:62:e6:a8:8a:e5:9c:f3:a6:
b5:bf:ab:e2:98:a4:00:25:b6:45:62:15:c5:f2:25:15:8d:fd:
e5:f9:29:0d:aa:4f:6c:7f:5a:95:f4:68:0f:60:97:bd:7e:de:
0e:dd:eb:55:b0:ab:7a:28:cb:c2:50:e4:35:3f:82:ff:e8:50:
81:71:82:9e:e3:6b:a5:71:11:2e:be:f5:e3:b1:71:75:9e:37:
f2:1d:6c:cd:9a:6d:61:62:f7:7a:5e:4f:9c:08:69:e9:09:32:
3b:5d:b1:70:f7:5d:0b:6a:17:3b:0b:c0:53:5e:6d:8d:73:80:
c1:55:0a:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:27 2025 by rpki-client on console.sobornost.net