Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/8a8487-931a-42fb-b664-c52df4aa521d/1/jp2EKc78qzNJwAA6CKUCtN1_xPs.roa
File: jp2EKc78qzNJwAA6CKUCtN1_xPs.roa (raw, json)
Hash identifier: N30Shs4kxpb93kdcL0yQH4lpcXuNQixmuCGD2o86d10=
Subject key identifier: 8E:9D:84:29:CE:FC:AB:33:49:C0:00:3A:08:A5:02:B4:DD:7F:C4:FB
Certificate issuer: /CN=b55800300fa4017f970c95d767d812fd10d0dcbc
Certificate serial: 019425FD3BD56B28CCC1C73CD1EE2978965A
Authority key identifier: B5:58:00:30:0F:A4:01:7F:97:0C:95:D7:67:D8:12:FD:10:D0:DC:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVgAMA-kAX-XDJXXZ9gS_RDQ3Lw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/8a8487-931a-42fb-b664-c52df4aa521d/1/jp2EKc78qzNJwAA6CKUCtN1_xPs.roa
Signing time: Thu 02 Jan 2025 07:49:00 +0000
ROA not before: Thu 02 Jan 2025 07:49:00 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48967
IP address blocks: 95.130.110.0/24 maxlen: 24
195.93.197.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fd:3b:d5:6b:28:cc:c1:c7:3c:d1:ee:29:78:96:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b55800300fa4017f970c95d767d812fd10d0dcbc
Validity
Not Before: Jan 2 07:49:00 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8e9d8429cefcab3349c0003a08a502b4dd7fc4fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:12:d7:68:a3:94:18:c7:78:68:42:50:01:49:
db:6d:c7:9a:fd:c3:95:45:e0:53:d1:7d:b1:d2:77:
a2:f9:45:ab:cd:e5:d5:2f:d1:da:c0:96:22:79:c0:
e2:df:85:ed:bd:9d:aa:d8:f6:8c:ae:c9:b2:51:c7:
49:a9:f6:07:5b:dd:54:76:fe:ed:68:15:73:7d:61:
da:14:f0:e1:89:52:b5:17:82:bd:f9:a2:ba:f5:10:
a7:b0:5f:24:36:9b:19:ac:9f:7f:ed:fa:87:85:7a:
07:10:ee:8f:31:c1:1d:b0:77:3e:0d:ae:2a:44:ff:
18:18:67:21:16:66:a6:0b:78:f9:8a:be:56:9c:30:
f6:5c:c8:4a:bd:8b:78:a1:cd:b5:15:5e:7e:4a:47:
82:31:0b:b0:ae:c3:3a:8b:9c:48:1d:bd:3c:74:c7:
45:ce:d9:88:cf:04:48:d3:42:ce:1e:f1:7a:7e:a3:
b9:57:52:11:8c:0b:9e:ba:83:64:05:af:3a:4f:91:
ad:d4:8e:7f:04:5e:01:41:ba:1c:a8:83:de:37:55:
2a:0d:05:a7:ff:aa:93:c1:b8:f2:c9:8c:78:eb:ec:
fd:a5:ec:fb:30:aa:f9:3e:e2:d4:86:38:2c:a2:0b:
76:70:ab:86:98:a3:87:87:be:59:f7:97:0f:76:07:
26:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:9D:84:29:CE:FC:AB:33:49:C0:00:3A:08:A5:02:B4:DD:7F:C4:FB
X509v3 Authority Key Identifier:
keyid:B5:58:00:30:0F:A4:01:7F:97:0C:95:D7:67:D8:12:FD:10:D0:DC:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVgAMA-kAX-XDJXXZ9gS_RDQ3Lw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/8a8487-931a-42fb-b664-c52df4aa521d/1/jp2EKc78qzNJwAA6CKUCtN1_xPs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/8a8487-931a-42fb-b664-c52df4aa521d/1/tVgAMA-kAX-XDJXXZ9gS_RDQ3Lw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.130.110.0/24
195.93.197.0/24
Signature Algorithm: sha256WithRSAEncryption
47:70:4d:7d:04:fb:48:4c:d4:68:1e:1d:29:33:ec:f6:b4:a6:
06:1a:64:4f:a4:cc:f0:2f:31:b1:f6:50:ac:0a:fc:5b:d8:11:
97:c7:d8:3d:e8:0f:7e:17:53:0b:1a:7d:e9:54:e5:b6:73:97:
b1:2e:6b:b9:45:79:0c:59:f0:d6:ee:6b:ff:08:67:3c:50:cd:
a0:83:a1:31:3f:aa:cc:02:fb:fb:77:1c:e5:c8:7e:83:c7:51:
8c:37:f0:a5:0e:82:49:1c:8e:f0:9c:ac:c6:ca:70:fb:f8:9b:
17:ba:e2:94:52:7e:8c:1f:da:94:13:34:d8:ef:44:92:42:35:
d6:bb:24:74:1f:a8:d5:1a:00:d6:8a:75:45:c8:b4:54:83:be:
29:02:e8:0b:a9:cd:e4:8c:13:29:eb:0b:f3:19:a6:ba:68:f9:
71:d5:f6:dc:c1:23:a3:d0:06:16:f8:73:20:01:70:19:53:c0:
69:6a:88:b5:f8:87:78:1e:55:a6:7b:16:a6:7c:8b:db:00:45:
eb:21:9b:c0:d4:5a:fe:db:a0:1c:24:92:dd:b0:d1:30:cf:77:
95:82:64:db:ba:14:6f:78:42:25:02:c2:95:02:64:55:85:08:
ff:6c:0a:bf:4d:fd:c1:20:11:e1:83:49:52:1b:6e:e8:97:0c:
89:70:f7:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:31 2025 by rpki-client on console.sobornost.net