Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/01f08c-065e-4ac1-8e80-b15e3f09e01b/1/SgC5XX8Qpyktpn49KE3wk3UlhlY.roa
File: SgC5XX8Qpyktpn49KE3wk3UlhlY.roa (raw, json)
Hash identifier: 41S/J8YnksuouhYoKMnMmatC+0bH9VnEEqtf/4TdAbg=
Subject key identifier: 4A:00:B9:5D:7F:10:A7:29:2D:A6:7E:3D:28:4D:F0:93:75:25:86:56
Certificate issuer: /CN=0c7161e622f63c0db8568d8cb4c4d7c0d9808346
Certificate serial: 01942369E696873819CB9BA20F9EBE75A635
Authority key identifier: 0C:71:61:E6:22:F6:3C:0D:B8:56:8D:8C:B4:C4:D7:C0:D9:80:83:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DHFh5iL2PA24Vo2MtMTXwNmAg0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/01f08c-065e-4ac1-8e80-b15e3f09e01b/1/SgC5XX8Qpyktpn49KE3wk3UlhlY.roa
Signing time: Wed 01 Jan 2025 19:48:50 +0000
ROA not before: Wed 01 Jan 2025 19:48:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212122
IP address blocks: 195.7.10.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:69:e6:96:87:38:19:cb:9b:a2:0f:9e:be:75:a6:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c7161e622f63c0db8568d8cb4c4d7c0d9808346
Validity
Not Before: Jan 1 19:48:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4a00b95d7f10a7292da67e3d284df09375258656
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:68:d7:fb:1b:b7:7d:07:f9:18:35:f9:b2:38:
15:13:7a:80:6c:0e:6c:20:95:92:f6:2b:bd:f3:df:
d1:e3:d7:fa:24:24:08:06:62:08:9c:54:7a:79:1f:
dd:7b:80:c9:37:3c:ee:91:e7:89:bf:45:d6:75:c8:
bb:ab:86:a1:1f:08:2c:99:a2:03:74:63:84:65:3c:
02:63:5b:15:29:14:06:30:ef:12:23:a1:d3:78:c9:
79:e4:e4:99:0d:ee:c5:04:fc:72:51:f1:02:b1:69:
4f:f6:81:3a:7f:51:82:6f:04:e2:90:35:f2:78:aa:
54:55:06:12:c3:d6:0a:b2:c4:14:06:dc:ee:c5:78:
5f:0f:39:72:d2:e7:c1:2a:51:76:80:4d:d5:1c:41:
21:33:2b:7f:ba:e8:a3:0d:80:54:14:1a:54:75:df:
bb:4c:ac:ab:a6:9f:b3:07:79:f4:41:30:28:58:90:
f3:f4:92:f1:c1:74:ac:14:d7:ba:5b:e7:91:88:b8:
bd:b4:5c:97:f4:21:d0:d6:fa:02:44:7b:57:4e:19:
a9:ef:48:f4:b4:d4:09:76:30:cb:6c:1e:7e:55:88:
d8:6c:ce:9b:ec:d6:df:a1:e0:84:a4:c3:da:6b:81:
c5:66:3a:84:49:37:f0:91:88:f1:5d:1c:67:bc:84:
df:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:00:B9:5D:7F:10:A7:29:2D:A6:7E:3D:28:4D:F0:93:75:25:86:56
X509v3 Authority Key Identifier:
keyid:0C:71:61:E6:22:F6:3C:0D:B8:56:8D:8C:B4:C4:D7:C0:D9:80:83:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DHFh5iL2PA24Vo2MtMTXwNmAg0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01f08c-065e-4ac1-8e80-b15e3f09e01b/1/SgC5XX8Qpyktpn49KE3wk3UlhlY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01f08c-065e-4ac1-8e80-b15e3f09e01b/1/DHFh5iL2PA24Vo2MtMTXwNmAg0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.7.10.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:59:10:9d:f0:4c:e7:58:19:c5:bf:64:c4:0a:0f:0a:4e:22:
9c:eb:6a:d9:f6:63:92:17:22:b1:a1:e0:2d:e6:ba:77:ec:69:
12:65:e1:fe:fc:21:d8:f2:d8:15:84:d0:80:da:33:4b:51:59:
5b:d1:2e:c2:b3:1e:4a:29:c4:20:ad:47:e2:89:a1:60:92:5c:
af:31:e3:b8:0f:ee:2f:1f:9a:f7:7e:cb:de:26:4a:21:db:a8:
a2:50:2a:d6:e3:55:a6:88:6a:59:a0:d8:c8:1a:c7:6e:34:aa:
5f:5b:fe:bc:97:6f:7c:fc:e1:b5:d3:db:5d:72:7b:4a:05:90:
d6:fc:a6:e8:28:c6:23:45:25:44:05:35:bc:c5:75:d2:4b:5c:
8a:b7:cf:44:74:55:cd:1f:9f:34:c7:e3:a0:dc:7c:4b:ef:8d:
5f:51:bc:55:3e:b2:3e:2f:62:69:16:70:13:0d:15:78:1c:fb:
56:42:62:9b:d5:a3:75:f6:82:9f:2e:f8:7c:80:d4:7f:7d:07:
9a:04:61:fa:25:98:87:5f:36:9c:61:c1:cf:ae:25:5c:9d:9a:
ca:5c:d7:03:18:9e:1b:90:38:f7:fd:52:6a:89:02:e3:cc:6f:
4e:63:4c:d3:9b:dc:eb:d8:f8:01:c8:5e:bf:a1:46:d4:94:10:
b6:67:e4:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 23 19:16:48 2025 by rpki-client on console.sobornost.net