Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/b3987a-4504-4749-9d73-df572fe9672a/1/q7i4aiNV_N0SqUJ2R4rX0CrQO9M.roa
File: q7i4aiNV_N0SqUJ2R4rX0CrQO9M.roa (raw, json)
Hash identifier: ZtHvrcgyIvzLJwGBx5mDLdpJYJNFwO0huHLDjs6QgkA=
Subject key identifier: AB:B8:B8:6A:23:55:FC:DD:12:A9:42:76:47:8A:D7:D0:2A:D0:3B:D3
Certificate issuer: /CN=dbb396dfa951ec4157f211e5ed740ed97e1b0f3f
Certificate serial: 01942CBB49A932F602394207189908F90877
Authority key identifier: DB:B3:96:DF:A9:51:EC:41:57:F2:11:E5:ED:74:0E:D9:7E:1B:0F:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/27OW36lR7EFX8hHl7XQO2X4bDz8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/b3987a-4504-4749-9d73-df572fe9672a/1/q7i4aiNV_N0SqUJ2R4rX0CrQO9M.roa
Signing time: Fri 03 Jan 2025 15:14:19 +0000
ROA not before: Fri 03 Jan 2025 15:14:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 394814
IP address blocks: 94.131.218.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:2c:bb:49:a9:32:f6:02:39:42:07:18:99:08:f9:08:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbb396dfa951ec4157f211e5ed740ed97e1b0f3f
Validity
Not Before: Jan 3 15:14:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=abb8b86a2355fcdd12a94276478ad7d02ad03bd3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:0a:de:bd:f2:5d:ed:1f:ad:0b:b3:e7:a3:e6:
2e:5a:56:3c:e8:69:68:a7:83:5d:f8:f8:eb:e3:73:
d1:ec:59:87:bb:25:0f:72:fe:b1:73:19:48:5e:fd:
fb:6b:98:3c:d0:8d:a4:3f:cf:3a:bf:3b:27:15:c3:
26:8a:37:f8:c7:99:6b:98:4a:60:53:fa:2f:a2:2b:
f2:e7:56:fa:61:e3:93:8d:75:28:a6:6c:e5:e4:1a:
f8:a8:cd:2a:fb:8e:3e:e1:ef:31:12:3a:cb:6d:96:
80:47:79:16:4c:ee:ba:a5:d7:56:11:d5:da:34:43:
9d:3a:5c:4d:39:34:c4:99:a5:68:bf:d7:e6:73:d9:
a9:7f:9a:8b:09:99:3a:0f:28:c9:6e:8e:5e:84:72:
b6:ff:16:92:b5:51:cf:ee:e9:24:74:ab:aa:39:93:
54:66:3e:72:6f:f0:cd:08:2a:71:67:ea:8c:a0:eb:
9a:7f:ff:80:96:51:f3:56:1e:6d:74:96:bb:f5:cc:
26:0a:54:fa:c8:27:b2:44:2e:30:d0:e8:a1:3c:0d:
99:15:2d:fa:43:6e:a2:2c:61:d2:c7:a4:41:a7:6f:
d0:ed:96:27:08:50:34:1b:e6:2a:f2:03:ea:a9:44:
2f:1b:84:f6:c1:b1:39:55:69:f0:29:9e:3c:70:05:
39:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:B8:B8:6A:23:55:FC:DD:12:A9:42:76:47:8A:D7:D0:2A:D0:3B:D3
X509v3 Authority Key Identifier:
keyid:DB:B3:96:DF:A9:51:EC:41:57:F2:11:E5:ED:74:0E:D9:7E:1B:0F:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/27OW36lR7EFX8hHl7XQO2X4bDz8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/b3987a-4504-4749-9d73-df572fe9672a/1/q7i4aiNV_N0SqUJ2R4rX0CrQO9M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/b3987a-4504-4749-9d73-df572fe9672a/1/27OW36lR7EFX8hHl7XQO2X4bDz8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.131.218.0/24
Signature Algorithm: sha256WithRSAEncryption
87:33:67:a9:62:57:1c:db:d0:0a:0b:8e:05:8e:e0:12:42:15:
8d:91:54:86:86:61:30:16:da:06:c1:da:df:ca:9c:74:07:ce:
d2:60:4d:8f:32:38:32:cc:bc:69:e3:71:50:76:3e:0c:18:8d:
88:bb:2f:00:0e:2c:be:a3:12:50:2c:91:be:a0:37:2c:72:8b:
4a:0b:18:f4:d7:bd:f2:fd:cb:7e:b4:e4:a8:81:2a:45:42:17:
ab:40:20:e5:6e:48:11:c2:73:a5:c0:17:aa:ca:60:91:88:cd:
22:1f:51:4f:d8:bf:4c:43:f5:1a:7b:d1:df:95:07:db:78:f9:
e4:8c:88:af:4f:1e:92:7d:ce:58:ca:ac:07:88:96:63:f0:c2:
bf:d9:1c:01:51:91:bb:22:53:2b:be:2b:14:38:54:97:ec:16:
5f:59:a8:c1:cf:ed:fc:4c:f0:cf:76:59:27:a3:c3:96:92:0f:
d6:b6:7d:cf:57:a5:01:c1:7f:46:10:02:2a:da:03:74:eb:c4:
75:44:ad:ed:92:02:de:30:f4:e5:8d:82:ba:c6:46:cf:aa:10:
e2:b3:ee:96:5b:4b:56:39:fa:e9:4e:9d:89:72:45:c4:a7:9a:
00:9f:c5:17:5d:83:ce:84:24:33:f4:e7:e8:be:83:76:00:c1:
3a:64:23:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 8 04:56:05 2025 by rpki-client on console.sobornost.net