Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/0f9f02-c2ad-4ec8-b4d5-dfbfa3fcf021/1/qOKY-IzakK8b3r-fGGAM7SuFUFM.roa
File: qOKY-IzakK8b3r-fGGAM7SuFUFM.roa (raw, json)
Hash identifier: 0xmS3lTVgR47MEU89O0ODLmZ+nEhlRcq1hkGVTaLD7U=
Subject key identifier: A8:E2:98:F8:8C:DA:90:AF:1B:DE:BF:9F:18:60:0C:ED:2B:85:50:53
Certificate issuer: /CN=e4be8efec1fb03d8af979af1cba13a0845a7b0ba
Certificate serial: 019423D76B0665C6352CCCA67ED77289FD40
Authority key identifier: E4:BE:8E:FE:C1:FB:03:D8:AF:97:9A:F1:CB:A1:3A:08:45:A7:B0:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5L6O_sH7A9ivl5rxy6E6CEWnsLo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/0f9f02-c2ad-4ec8-b4d5-dfbfa3fcf021/1/qOKY-IzakK8b3r-fGGAM7SuFUFM.roa
Signing time: Wed 01 Jan 2025 21:48:27 +0000
ROA not before: Wed 01 Jan 2025 21:48:27 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 205384
IP address blocks: 2.57.10.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:6b:06:65:c6:35:2c:cc:a6:7e:d7:72:89:fd:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4be8efec1fb03d8af979af1cba13a0845a7b0ba
Validity
Not Before: Jan 1 21:48:27 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a8e298f88cda90af1bdebf9f18600ced2b855053
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:a7:e2:05:92:6b:db:b2:c5:e6:5a:22:e5:de:
93:2a:df:28:ab:0e:82:36:b8:47:dc:b0:2c:23:74:
02:52:6e:6f:f9:de:3c:3a:1c:28:a0:ff:91:0f:d2:
36:d7:fc:91:4c:e2:61:d3:05:41:a9:e0:a2:30:1c:
de:85:bf:95:88:93:06:97:19:74:e3:ae:46:7b:ae:
7c:9b:fc:27:cb:3f:82:37:db:91:37:15:7f:7e:ac:
87:f1:4f:c1:5b:63:03:c0:9e:cd:cd:b7:44:76:67:
e2:78:19:62:45:2e:aa:e1:94:5f:7c:26:3c:4d:17:
a8:90:5d:fc:d7:18:1e:83:3a:79:35:d7:81:10:f6:
81:11:ca:45:53:73:3f:d2:68:02:d4:6b:ea:46:3a:
46:f8:aa:8f:01:75:3d:52:e8:3f:aa:d5:aa:c9:38:
23:20:97:1f:3a:5c:24:f0:69:f6:9f:d2:5f:f6:f1:
fb:ce:56:66:a6:bc:d2:f4:bc:71:10:30:40:d9:20:
b0:d1:fe:c9:26:35:8d:fb:90:f2:66:9b:4a:b9:61:
5f:cb:5d:8e:a5:ee:b9:b6:c5:7d:4a:53:38:3b:0f:
a2:d6:59:b6:e1:ce:5d:52:cb:58:55:d5:ea:c0:c4:
cc:2e:41:29:d6:e1:30:55:7d:42:90:a4:a9:e7:e4:
42:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:E2:98:F8:8C:DA:90:AF:1B:DE:BF:9F:18:60:0C:ED:2B:85:50:53
X509v3 Authority Key Identifier:
keyid:E4:BE:8E:FE:C1:FB:03:D8:AF:97:9A:F1:CB:A1:3A:08:45:A7:B0:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5L6O_sH7A9ivl5rxy6E6CEWnsLo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/0f9f02-c2ad-4ec8-b4d5-dfbfa3fcf021/1/qOKY-IzakK8b3r-fGGAM7SuFUFM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/0f9f02-c2ad-4ec8-b4d5-dfbfa3fcf021/1/5L6O_sH7A9ivl5rxy6E6CEWnsLo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.10.0/23
Signature Algorithm: sha256WithRSAEncryption
23:3c:c5:1c:65:52:42:38:31:17:2a:b0:6c:6e:b4:62:35:e2:
a2:92:ac:d9:81:47:0b:1b:55:3e:61:be:71:f7:24:dc:7f:54:
e5:38:9e:aa:0b:ea:9a:c3:d2:6e:0d:78:b1:66:5d:e6:e8:b5:
fc:fd:16:39:91:40:3f:6f:17:d9:0f:d1:41:cd:05:ab:e7:ef:
34:a3:59:fb:2c:8e:55:d1:23:43:ac:6b:9f:ee:74:f4:46:39:
54:cb:da:26:d6:29:61:8e:64:1c:b5:7e:a7:78:eb:6b:3d:6a:
e9:15:e4:b5:fd:12:17:a9:02:1f:56:ab:a3:c5:56:b7:a8:3f:
fb:ef:02:b1:53:92:b4:b7:a7:d4:9e:d4:05:4f:2a:17:ea:f4:
4c:51:91:ef:be:cb:db:83:12:85:00:8b:5c:e1:55:10:c7:53:
de:45:19:b2:d6:0d:02:b1:66:1a:52:b1:1b:de:1d:26:24:8a:
d7:63:91:8a:6d:e1:92:c3:82:31:3e:81:a4:f2:de:fb:52:0f:
d4:a3:cd:9d:6d:7d:24:68:a7:d3:e5:f2:74:d1:36:28:be:53:
30:7b:0a:23:25:ff:9f:cc:c1:64:e2:9e:23:20:df:f5:ad:2c:
65:ed:4d:ab:62:80:ce:2d:08:58:8d:f6:34:e3:f9:ed:10:a5:
53:95:65:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:29 2025 by rpki-client on console.sobornost.net