Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/3e3b4b-f827-4347-9022-2818f6578d1b/1/sJO10EU5Nx8_dkPBaPnnB2dtYNM.roa
File: sJO10EU5Nx8_dkPBaPnnB2dtYNM.roa (raw, json)
Hash identifier: XB5B7Wmp004sDj3pl5z8PdpWXfh6a+r4ST0GRlHwVWY=
Subject key identifier: B0:93:B5:D0:45:39:37:1F:3F:76:43:C1:68:F9:E7:07:67:6D:60:D3
Certificate issuer: /CN=41b8c2f37bd8d7e04e76985a4ced4559d7651c43
Certificate serial: 019421B258E04E5A74E41FC9B86A1E39745F
Authority key identifier: 41:B8:C2:F3:7B:D8:D7:E0:4E:76:98:5A:4C:ED:45:59:D7:65:1C:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QbjC83vY1-BOdphaTO1FWddlHEM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/3e3b4b-f827-4347-9022-2818f6578d1b/1/sJO10EU5Nx8_dkPBaPnnB2dtYNM.roa
Signing time: Wed 01 Jan 2025 11:48:43 +0000
ROA not before: Wed 01 Jan 2025 11:48:43 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 210336
IP address blocks: 195.242.90.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b2:58:e0:4e:5a:74:e4:1f:c9:b8:6a:1e:39:74:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41b8c2f37bd8d7e04e76985a4ced4559d7651c43
Validity
Not Before: Jan 1 11:48:43 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b093b5d04539371f3f7643c168f9e707676d60d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:0e:7b:ad:cb:2d:44:dc:47:41:8a:0c:ae:1f:
75:2e:2a:da:b1:97:71:bd:b0:c0:63:69:de:53:a4:
a9:52:ce:d5:d9:d8:4a:90:88:cc:fe:b0:27:a8:5c:
42:b5:f8:a6:db:ef:0b:3d:49:ab:29:09:18:0c:96:
36:eb:f3:59:e7:f4:47:c7:a9:59:60:b5:09:1f:23:
da:04:74:65:d6:b4:f3:67:8f:b7:1d:98:f8:d2:c4:
07:ef:5f:9c:56:d9:a1:3b:1c:0a:e1:8c:22:89:23:
51:5b:24:7c:1c:af:e3:6d:df:2b:74:f9:de:30:62:
30:49:9e:f9:ec:7a:31:cf:e9:e7:5c:60:2b:24:3e:
fc:c7:bb:d7:75:b6:ed:f5:30:91:79:5e:e8:67:67:
af:2a:be:4d:49:ce:cf:46:94:d3:55:94:ff:e4:c4:
21:0a:f7:54:99:37:5d:4f:f2:29:03:fe:df:68:d4:
cb:be:37:cc:1c:a1:9b:b1:66:85:ab:67:ef:4a:f1:
2b:ae:e7:d5:29:24:60:7e:62:94:e8:e4:ac:52:92:
f4:d0:ad:b5:5d:16:c8:2e:ea:9f:cd:a5:a7:82:04:
6d:59:40:d4:df:61:2f:b7:24:d0:a3:77:1c:af:f3:
03:12:35:2c:24:6d:f0:92:8b:b7:a9:19:94:28:fe:
11:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:93:B5:D0:45:39:37:1F:3F:76:43:C1:68:F9:E7:07:67:6D:60:D3
X509v3 Authority Key Identifier:
keyid:41:B8:C2:F3:7B:D8:D7:E0:4E:76:98:5A:4C:ED:45:59:D7:65:1C:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QbjC83vY1-BOdphaTO1FWddlHEM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/3e3b4b-f827-4347-9022-2818f6578d1b/1/sJO10EU5Nx8_dkPBaPnnB2dtYNM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/3e3b4b-f827-4347-9022-2818f6578d1b/1/QbjC83vY1-BOdphaTO1FWddlHEM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.242.90.0/23
Signature Algorithm: sha256WithRSAEncryption
c3:55:f0:0a:ed:cb:32:e5:f7:38:fd:52:c5:b4:00:bf:92:73:
e8:fe:35:b7:c2:ef:41:e9:6a:3c:fb:79:a2:e6:50:3c:fc:ef:
09:9d:83:45:6e:9a:ea:82:c2:3b:4d:bb:93:34:e4:63:3a:5d:
7f:7a:90:0b:53:ff:48:4d:81:2d:0d:46:a7:07:aa:3c:0a:54:
d4:5e:32:0c:e1:91:b8:96:36:cd:01:64:5b:47:31:7c:8d:d9:
7d:08:11:00:2a:d5:18:cf:30:b8:6a:52:e5:e4:31:d0:fd:df:
51:e9:68:fc:47:1e:68:a7:5e:3a:ec:a8:67:5f:20:be:a5:7e:
f8:f0:d3:e8:99:b4:67:bf:7b:1f:b7:2f:8d:41:1c:7a:eb:0c:
83:62:06:cd:4d:b3:8c:40:da:0e:a8:6c:31:da:df:c9:e9:a2:
23:3c:df:21:15:aa:47:d0:dc:5d:50:51:28:42:eb:45:c1:7f:
0a:61:23:8f:2c:e0:ed:a4:fe:61:c6:ff:15:91:3e:21:6a:b2:
77:2b:b0:67:dc:b5:52:03:cd:17:5c:aa:70:98:08:84:de:ac:
50:84:d2:7b:2f:0a:d7:98:f4:15:cc:92:4d:46:d0:94:bf:9b:
41:f3:47:bb:38:7b:b7:bd:69:54:fe:ee:04:be:ab:cf:97:dc:
d5:48:6b:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:29 2025 by rpki-client on console.sobornost.net