Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/b3987a-4504-4749-9d73-df572fe9672a/1/IRtJwO1rMsZ5krPb4z5r224EhIk.roa
File: IRtJwO1rMsZ5krPb4z5r224EhIk.roa (raw, json)
Hash identifier: H9ADZ9WOfOD9WwvizcVpSCf1EzoQQKyBZQR2iEiWJrY=
Subject key identifier: 21:1B:49:C0:ED:6B:32:C6:79:92:B3:DB:E3:3E:6B:DB:6E:04:84:89
Certificate issuer: /CN=dbb396dfa951ec4157f211e5ed740ed97e1b0f3f
Certificate serial: 019422FC2BAEEBE72FD5C2B32FAFD74B0B5C
Authority key identifier: DB:B3:96:DF:A9:51:EC:41:57:F2:11:E5:ED:74:0E:D9:7E:1B:0F:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/27OW36lR7EFX8hHl7XQO2X4bDz8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/b3987a-4504-4749-9d73-df572fe9672a/1/IRtJwO1rMsZ5krPb4z5r224EhIk.roa
Signing time: Wed 01 Jan 2025 17:48:59 +0000
ROA not before: Wed 01 Jan 2025 17:48:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 204707
IP address blocks: 94.131.204.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fc:2b:ae:eb:e7:2f:d5:c2:b3:2f:af:d7:4b:0b:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbb396dfa951ec4157f211e5ed740ed97e1b0f3f
Validity
Not Before: Jan 1 17:48:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=211b49c0ed6b32c67992b3dbe33e6bdb6e048489
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:8c:a4:04:96:f1:55:03:29:67:99:aa:e8:f8:
95:72:17:b3:d5:7b:e2:3a:09:ad:a9:e2:e1:1e:fe:
bf:5a:f5:93:57:39:d3:d3:9b:47:2b:81:d5:2d:91:
32:e2:4d:6c:ee:86:77:65:df:a2:7e:f3:8f:9d:68:
8a:1a:77:95:bb:1f:5c:6e:04:d6:87:7f:43:48:79:
ad:e7:71:bb:01:5a:e2:47:c7:99:80:ec:34:49:c3:
66:ed:87:3a:06:4e:c5:30:b2:c8:2a:36:f9:a0:12:
af:de:5d:07:25:d7:b2:ac:6b:eb:c2:64:f7:71:d0:
13:dd:94:5e:79:b9:df:70:d0:d6:75:80:78:2e:2b:
58:d4:99:0c:12:29:c2:51:f7:40:a5:6d:0e:96:91:
7a:11:1b:38:5d:cf:c8:64:49:c9:3d:3c:73:e3:93:
5d:4e:75:54:44:c6:30:2a:cc:56:ae:90:e5:2e:8c:
fd:43:13:7f:2b:97:36:c4:fd:5a:99:86:b6:8b:e3:
3b:40:8c:93:c2:22:bc:4c:e2:86:57:ba:9b:23:5a:
7c:6f:19:f4:e8:ef:b1:de:6e:27:0e:ba:0f:17:b4:
a6:26:8a:d0:7c:89:af:00:a9:d2:72:00:8f:20:9e:
3d:03:a9:10:15:34:18:0b:7c:bb:9d:b3:99:40:fd:
d7:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:1B:49:C0:ED:6B:32:C6:79:92:B3:DB:E3:3E:6B:DB:6E:04:84:89
X509v3 Authority Key Identifier:
keyid:DB:B3:96:DF:A9:51:EC:41:57:F2:11:E5:ED:74:0E:D9:7E:1B:0F:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/27OW36lR7EFX8hHl7XQO2X4bDz8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/b3987a-4504-4749-9d73-df572fe9672a/1/IRtJwO1rMsZ5krPb4z5r224EhIk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/b3987a-4504-4749-9d73-df572fe9672a/1/27OW36lR7EFX8hHl7XQO2X4bDz8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.131.204.0/22
Signature Algorithm: sha256WithRSAEncryption
3c:f7:a2:9f:3a:01:47:35:55:a7:85:80:f0:81:18:86:ce:28:
fb:20:76:b9:49:ee:1f:46:16:da:0d:a0:4f:6b:be:10:48:39:
58:ed:89:3e:b9:ee:09:42:1a:be:89:52:23:db:4e:e6:5e:a3:
af:e6:fd:72:2f:60:81:f3:f2:e7:95:1b:9c:83:63:cf:30:ee:
f5:43:78:05:e7:8e:93:94:9a:96:d6:13:88:21:29:83:cf:c7:
c8:7b:bd:d1:65:9c:86:ff:15:46:bc:12:ce:9b:53:1d:69:b3:
51:08:c5:41:2b:be:fc:b7:92:7a:19:bd:da:bc:a9:f9:68:4f:
7d:27:94:33:9b:79:dd:13:16:2a:5e:c2:6d:52:d1:64:55:19:
09:74:ee:95:91:33:c9:bc:61:3e:4d:74:9c:6f:31:5a:4c:e2:
1e:b7:46:f1:ad:bc:d5:2b:f6:3b:03:8f:42:61:58:7d:8f:e0:
31:bf:10:42:b2:f1:9c:de:e4:72:7a:17:a1:17:98:eb:e8:79:
03:1b:2a:8b:3a:72:d6:b4:11:8b:9c:61:bb:5b:1f:26:e9:1b:
e0:8a:35:c4:db:61:6d:4f:cb:28:f0:9c:fe:96:cd:5e:88:a8:
c6:f5:4c:13:cb:96:d7:b0:1e:d2:cc:5d:dc:3c:17:d1:45:4d:
e1:ab:3d:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 8 04:56:05 2025 by rpki-client on console.sobornost.net