Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/01f08c-065e-4ac1-8e80-b15e3f09e01b/1/D38daQHYCwoAg-5xGFKxHbY6agw.roa
File: D38daQHYCwoAg-5xGFKxHbY6agw.roa (raw, json)
Hash identifier: eqoa1y5UwX8l0G43hUzSn3bv+T7ZduU5QAZl0BhYR+c=
Subject key identifier: 0F:7F:1D:69:01:D8:0B:0A:00:83:EE:71:18:52:B1:1D:B6:3A:6A:0C
Certificate issuer: /CN=0c7161e622f63c0db8568d8cb4c4d7c0d9808346
Certificate serial: 01942369E5AA161B121B08083AA9378B58B3
Authority key identifier: 0C:71:61:E6:22:F6:3C:0D:B8:56:8D:8C:B4:C4:D7:C0:D9:80:83:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DHFh5iL2PA24Vo2MtMTXwNmAg0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/01f08c-065e-4ac1-8e80-b15e3f09e01b/1/D38daQHYCwoAg-5xGFKxHbY6agw.roa
Signing time: Wed 01 Jan 2025 19:48:50 +0000
ROA not before: Wed 01 Jan 2025 19:48:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 208341
IP address blocks: 195.7.10.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:69:e5:aa:16:1b:12:1b:08:08:3a:a9:37:8b:58:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c7161e622f63c0db8568d8cb4c4d7c0d9808346
Validity
Not Before: Jan 1 19:48:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0f7f1d6901d80b0a0083ee711852b11db63a6a0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:82:27:e5:b8:a0:97:71:48:df:ed:1f:f7:07:
ce:5b:5d:10:ab:30:26:be:61:7e:a6:ee:f9:7c:22:
47:e3:f5:19:e6:77:f7:26:9a:34:70:fe:46:e1:39:
5e:32:bc:1f:7c:b5:04:50:18:11:de:c9:b2:6f:06:
95:3a:68:03:69:5c:a1:21:53:0c:72:b5:c0:f9:b5:
62:64:64:60:70:76:ea:15:dd:00:bd:fd:7c:00:23:
2f:9b:13:ce:91:00:12:91:4d:92:9e:8d:ca:5f:85:
f1:b6:d8:fa:7f:c9:b0:d4:7f:e8:2d:17:79:36:b2:
82:7d:24:df:42:d9:21:e1:d8:4f:d8:d4:08:1a:3f:
6d:db:84:38:8c:91:0f:4d:21:58:f1:89:62:82:f7:
0f:8b:2e:32:a7:a2:da:89:5d:08:b7:ff:6a:d1:a4:
41:32:5c:fd:4c:ce:4b:7e:01:bf:05:07:6e:29:4f:
7e:25:33:fe:ce:27:ab:61:b5:09:ec:c5:2b:0a:e6:
a6:f9:80:b8:54:65:3a:03:4e:66:16:a6:83:4b:fa:
3a:76:c1:65:20:73:98:e2:14:a3:fa:2c:a4:31:9f:
95:ed:91:50:32:68:1c:58:e0:93:d1:83:24:db:75:
57:8f:39:75:2d:94:8b:e0:8b:c0:87:25:0c:0b:45:
3d:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:7F:1D:69:01:D8:0B:0A:00:83:EE:71:18:52:B1:1D:B6:3A:6A:0C
X509v3 Authority Key Identifier:
keyid:0C:71:61:E6:22:F6:3C:0D:B8:56:8D:8C:B4:C4:D7:C0:D9:80:83:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DHFh5iL2PA24Vo2MtMTXwNmAg0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01f08c-065e-4ac1-8e80-b15e3f09e01b/1/D38daQHYCwoAg-5xGFKxHbY6agw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01f08c-065e-4ac1-8e80-b15e3f09e01b/1/DHFh5iL2PA24Vo2MtMTXwNmAg0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.7.10.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:5c:bc:a6:24:d7:c1:59:46:4a:36:6e:0d:af:a7:32:2f:7a:
60:67:57:fe:69:b4:a4:22:64:dd:04:cd:eb:67:94:2b:fd:85:
01:dc:9b:50:3e:68:f7:89:c1:a4:47:34:a1:54:81:99:ab:cd:
5b:4c:9c:b4:69:5d:fb:60:f4:c5:01:d5:da:c3:31:b9:12:33:
5e:75:48:84:e7:04:68:21:43:13:10:f4:a5:2e:9c:9f:9e:62:
44:0a:20:72:97:d5:a8:b4:32:11:6c:15:d2:d2:84:c2:1f:d9:
12:36:39:1d:d9:db:a8:ef:30:03:60:c6:de:a6:31:e4:e4:2f:
25:02:94:9a:f2:18:2e:91:06:c9:00:cc:f7:31:77:32:63:53:
03:52:00:00:30:e1:37:56:58:30:44:8c:22:86:72:5e:70:6b:
c4:2e:0c:41:94:a6:df:74:6b:8a:0e:fc:c4:88:b4:f3:6c:6b:
e5:28:91:d8:c3:9d:d3:51:6d:5a:6c:65:4a:e5:8f:db:46:cc:
8a:05:50:6f:22:be:1e:10:92:20:05:dc:a6:f0:7a:35:17:38:
a8:50:c3:ac:4d:42:46:03:3d:f2:41:6a:a1:9f:03:54:bb:32:
95:f1:e3:d4:07:3a:b9:a7:83:ce:85:71:8f:e9:6c:b2:3d:48:
0e:4a:3a:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 23 19:16:48 2025 by rpki-client on console.sobornost.net