Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/6e6175-635a-4cc6-94ed-0dcf45a5af3d/1/lTwG7fexEhfG1KlVMWVQwuwbbtc.roa
File: lTwG7fexEhfG1KlVMWVQwuwbbtc.roa (raw, json)
Hash identifier: bfD7+ofvPCOaA8CmUpbLhJtSVYv9giSBukJUfQkg6wo=
Subject key identifier: 95:3C:06:ED:F7:B1:12:17:C6:D4:A9:55:31:65:50:C2:EC:1B:6E:D7
Certificate issuer: /CN=f71b99831d44b0bf7c00c50977f60b1844349cf2
Certificate serial: 019427B3F4B4091848C7AF588203D09A0B3F
Authority key identifier: F7:1B:99:83:1D:44:B0:BF:7C:00:C5:09:77:F6:0B:18:44:34:9C:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9xuZgx1EsL98AMUJd_YLGEQ0nPI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/6e6175-635a-4cc6-94ed-0dcf45a5af3d/1/lTwG7fexEhfG1KlVMWVQwuwbbtc.roa
Signing time: Thu 02 Jan 2025 15:48:12 +0000
ROA not before: Thu 02 Jan 2025 15:48:12 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 42426
IP address blocks: 194.1.178.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b3:f4:b4:09:18:48:c7:af:58:82:03:d0:9a:0b:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f71b99831d44b0bf7c00c50977f60b1844349cf2
Validity
Not Before: Jan 2 15:48:12 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=953c06edf7b11217c6d4a955316550c2ec1b6ed7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:4c:20:3e:06:bd:07:7b:f2:81:8d:4b:68:2d:
83:10:0a:cf:ce:ab:63:1e:26:03:e9:2d:b4:95:85:
6c:df:c4:4b:55:d2:ab:3c:86:c1:85:a4:a5:37:ab:
44:8c:f8:83:f6:ba:55:b9:42:77:60:71:73:ff:a0:
7b:94:4f:cc:79:b9:05:67:2b:79:1c:14:09:79:f9:
84:39:c3:71:8d:af:55:7d:41:7d:5d:23:b0:34:16:
23:57:e6:a4:c4:eb:f8:55:09:33:4b:2c:44:e7:0b:
80:b3:41:d0:24:fe:27:39:eb:cb:4d:9d:7b:17:db:
9e:23:27:ae:ef:d5:a9:f7:bf:94:a3:1a:5f:54:bc:
43:ec:22:6f:d4:d6:e1:c5:87:1a:ba:32:d8:73:2c:
95:78:59:d5:dd:8d:9b:95:de:fe:74:f5:e2:70:6a:
e3:bd:19:fc:bc:14:6c:f0:0a:e0:89:2f:80:5a:ac:
d6:22:d3:0b:a9:3e:ae:63:2c:c5:be:2e:ee:50:d4:
2a:45:fa:02:c5:62:87:a2:d9:90:2d:6a:75:e5:b4:
72:4e:44:31:fa:ee:78:62:7f:e8:52:ed:c1:23:11:
60:9f:cd:31:7a:4e:7d:e7:b3:b7:1d:e1:f1:e1:06:
ee:29:4c:40:54:7f:53:1d:cf:0f:34:69:c5:e0:a7:
99:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:3C:06:ED:F7:B1:12:17:C6:D4:A9:55:31:65:50:C2:EC:1B:6E:D7
X509v3 Authority Key Identifier:
keyid:F7:1B:99:83:1D:44:B0:BF:7C:00:C5:09:77:F6:0B:18:44:34:9C:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9xuZgx1EsL98AMUJd_YLGEQ0nPI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/6e6175-635a-4cc6-94ed-0dcf45a5af3d/1/lTwG7fexEhfG1KlVMWVQwuwbbtc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/6e6175-635a-4cc6-94ed-0dcf45a5af3d/1/9xuZgx1EsL98AMUJd_YLGEQ0nPI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.1.178.0/24
Signature Algorithm: sha256WithRSAEncryption
88:91:71:15:84:e6:8c:67:22:ef:95:67:4a:f1:0d:b5:6d:50:
f3:bc:f3:6d:bf:2a:ac:11:5e:6f:84:62:60:4a:0b:cb:b5:fb:
68:4c:30:1a:bf:ec:72:01:e2:de:52:53:86:d2:21:8c:42:32:
a2:19:fd:18:c5:71:a0:7e:fe:73:c4:d1:8d:d8:7f:63:2e:a1:
2e:3c:03:e4:f2:bd:29:0d:c7:7e:2f:4a:b5:bc:53:d6:1f:5e:
55:f6:92:ea:0e:66:96:b5:d2:be:b0:a7:ba:08:a9:8e:5a:37:
d2:e2:10:9a:4c:7e:4d:25:d1:93:09:5a:dc:41:e2:50:99:4b:
07:2d:5f:7c:f5:6b:6b:2d:94:ee:a6:35:a3:ed:00:8f:ee:c3:
93:8e:9c:a8:b8:0e:3c:bc:75:3a:ee:6e:81:02:6a:91:ed:54:
2b:53:c1:54:64:86:bb:a9:67:21:11:aa:3a:5d:d3:cc:53:b3:
4b:45:e5:b2:d4:2d:d2:4a:d0:f7:c7:cf:cf:11:18:4e:fb:be:
f2:25:52:ac:2a:b5:3b:10:49:4d:69:8f:ce:61:9c:ec:6b:94:
97:5c:de:12:ea:4d:b4:98:49:52:90:9c:b7:6c:fa:e4:55:04:
83:35:c9:f5:77:5f:98:85:a5:4f:14:13:c6:cd:57:05:ec:84:
36:14:95:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:33 2025 by rpki-client on console.sobornost.net