Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/afae93-e79f-499f-9203-0fe8bd6556d5/1/cnQVVqPjrlGXZ4bRJUOH3uMmisQ.roa
File: cnQVVqPjrlGXZ4bRJUOH3uMmisQ.roa (raw, json)
Hash identifier: ctdicnlvbHDU3uh0Yfd3l/2DNRusbBU6IrhnO1MfguA=
Subject key identifier: 72:74:15:56:A3:E3:AE:51:97:67:86:D1:25:43:87:DE:E3:26:8A:C4
Certificate issuer: /CN=6aeba0f2374120d54fa5bcdc2a9d24514172ea6d
Certificate serial: 01941FFA48BE9D0E1F7819EA231CD75E0DE3
Authority key identifier: 6A:EB:A0:F2:37:41:20:D5:4F:A5:BC:DC:2A:9D:24:51:41:72:EA:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/auug8jdBINVPpbzcKp0kUUFy6m0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/afae93-e79f-499f-9203-0fe8bd6556d5/1/cnQVVqPjrlGXZ4bRJUOH3uMmisQ.roa
Signing time: Wed 01 Jan 2025 03:48:03 +0000
ROA not before: Wed 01 Jan 2025 03:48:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 15542
IP address blocks: 193.177.166.0/24 maxlen: 24
2001:67c:45c::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:48:be:9d:0e:1f:78:19:ea:23:1c:d7:5e:0d:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6aeba0f2374120d54fa5bcdc2a9d24514172ea6d
Validity
Not Before: Jan 1 03:48:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=72741556a3e3ae51976786d1254387dee3268ac4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:49:52:f2:1f:29:8d:f9:de:2e:dd:8d:6f:06:
59:18:6a:a8:11:81:67:bb:51:e3:8d:35:3e:2b:50:
2a:94:9a:7e:a7:a4:98:c4:67:79:52:64:ac:f8:70:
0a:fc:02:59:81:14:56:5a:97:1a:f2:6f:00:67:2a:
61:44:24:ca:ec:15:60:54:99:43:ae:99:a4:c6:83:
3f:d5:6b:b3:f0:9a:ee:d4:b4:4b:8e:53:72:44:50:
12:32:d2:8b:19:2c:87:01:39:3a:3b:2d:f6:ac:c5:
91:d1:28:4d:b1:dc:50:4c:cf:4c:2e:40:55:e1:80:
ef:26:65:a1:ec:4f:6f:c9:4a:77:41:95:48:28:80:
4e:51:9b:56:c8:11:17:fb:07:f6:df:a2:67:a5:65:
98:6e:cf:a0:86:bf:24:13:02:d1:d8:dc:fc:c0:f9:
b4:33:fc:7a:6c:eb:93:45:f7:b9:2d:7e:cf:68:13:
80:20:3c:9e:7e:7b:54:4f:39:9f:93:31:e8:86:60:
26:ec:4e:67:1f:d7:05:21:5d:70:20:a0:3c:cf:21:
1c:ba:25:cd:97:d8:56:36:be:0c:98:be:08:de:44:
32:5a:99:f5:68:e0:fc:1f:cd:31:d3:8e:58:49:41:
2d:14:7f:95:d4:08:9e:17:37:1e:df:3a:95:83:d2:
d5:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:74:15:56:A3:E3:AE:51:97:67:86:D1:25:43:87:DE:E3:26:8A:C4
X509v3 Authority Key Identifier:
keyid:6A:EB:A0:F2:37:41:20:D5:4F:A5:BC:DC:2A:9D:24:51:41:72:EA:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/auug8jdBINVPpbzcKp0kUUFy6m0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/afae93-e79f-499f-9203-0fe8bd6556d5/1/cnQVVqPjrlGXZ4bRJUOH3uMmisQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/afae93-e79f-499f-9203-0fe8bd6556d5/1/auug8jdBINVPpbzcKp0kUUFy6m0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.177.166.0/24
IPv6:
2001:67c:45c::/48
Signature Algorithm: sha256WithRSAEncryption
9c:37:9a:05:34:35:32:5a:09:26:4c:34:a7:b8:e8:25:a5:1d:
5d:c0:6c:a1:64:b9:1c:7b:d1:f5:1e:a4:04:32:f3:3c:3b:08:
2d:66:eb:8a:70:5b:b5:b5:42:7e:0c:dd:62:14:82:9c:83:12:
6c:4b:17:5e:0a:c0:cb:ab:25:b7:a4:2c:f1:46:63:9f:77:69:
70:63:d8:25:f4:08:d1:26:29:68:e5:8f:b1:c8:d3:86:07:f6:
7d:f3:10:98:a7:df:9a:08:4d:99:6f:b4:5f:88:41:9a:88:74:
30:16:de:a8:a5:ae:a0:11:19:9e:a4:8b:13:79:a9:12:ed:e7:
f1:e1:8e:32:93:f0:d0:b4:ec:0f:c9:6c:3b:b7:8b:a6:0a:d6:
71:ed:53:be:03:ac:86:6c:39:a6:95:e7:46:70:f4:81:2e:64:
82:c5:43:13:15:0e:bb:7a:0b:7b:39:4c:73:e4:d1:55:d8:25:
99:41:5f:90:92:0e:b2:29:07:04:fd:ca:9b:23:f3:06:da:c6:
77:46:c7:55:b9:81:7c:e2:7b:48:98:1e:19:5b:ff:9b:d7:ec:
30:d4:3a:9d:70:ab:33:56:84:08:03:bb:0b:0d:7f:6b:43:1e:
e2:b2:c2:2e:dc:ab:76:de:ad:af:b5:71:74:f6:89:d3:46:b1:
47:e0:cd:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:42 2025 by rpki-client on console.sobornost.net