Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/1eff17-65ec-45ea-a75d-96eb07f7825b/1/oyDkuFI7Lh8_-ReZkAMKowiORyM.roa
File: oyDkuFI7Lh8_-ReZkAMKowiORyM.roa (raw, json)
Hash identifier: 3yAZCKM7m/E+YP0xth4LuRn5Dda6av4q64pWFUUvg/I=
Subject key identifier: A3:20:E4:B8:52:3B:2E:1F:3F:F9:17:99:90:03:0A:A3:08:8E:47:23
Certificate issuer: /CN=68e3ba87e3a93468cc3b3c3f60fa63d5e853c314
Certificate serial: 019421439954573EF4A45495E8B2A178E053
Authority key identifier: 68:E3:BA:87:E3:A9:34:68:CC:3B:3C:3F:60:FA:63:D5:E8:53:C3:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aOO6h-OpNGjMOzw_YPpj1ehTwxQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/1eff17-65ec-45ea-a75d-96eb07f7825b/1/oyDkuFI7Lh8_-ReZkAMKowiORyM.roa
Signing time: Wed 01 Jan 2025 09:47:45 +0000
ROA not before: Wed 01 Jan 2025 09:47:45 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48803
IP address blocks: 195.49.240.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:43:99:54:57:3e:f4:a4:54:95:e8:b2:a1:78:e0:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68e3ba87e3a93468cc3b3c3f60fa63d5e853c314
Validity
Not Before: Jan 1 09:47:45 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a320e4b8523b2e1f3ff9179990030aa3088e4723
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:bc:81:61:15:b5:2b:57:b8:ed:d3:c2:b2:82:
24:4a:d7:78:82:c3:f9:1d:9c:6a:07:7d:e2:f6:b2:
ac:5d:02:1e:5e:58:40:83:20:12:03:1e:80:47:7a:
d7:7a:00:c4:69:4b:33:87:2f:db:2b:e2:0e:e2:58:
61:19:c8:fc:d7:5b:a0:73:58:0b:ed:e2:4e:b8:c8:
23:7f:bb:ac:a2:5c:cf:5b:0e:7a:1f:af:9d:bf:98:
66:19:6b:f2:78:1c:e6:5e:25:20:51:a5:12:67:7b:
d4:7b:1d:40:34:a1:78:96:8f:f4:83:02:d2:b3:5f:
c2:c0:3e:42:a1:ab:b9:1d:b5:db:9b:23:a9:43:3a:
ee:d8:f1:e9:62:d4:cf:11:58:6c:df:5e:aa:e1:6e:
44:ce:ae:89:78:67:24:23:10:28:37:47:90:bd:56:
f4:fb:41:8f:2a:b7:af:da:e8:9e:41:cb:cd:64:d5:
ce:c6:cd:f9:ea:1a:dd:5c:22:5f:35:e6:f9:08:eb:
ad:85:f8:c0:c7:44:63:69:87:8b:9d:ce:89:38:a3:
36:74:88:44:b8:9f:ee:7e:24:4d:16:12:47:e2:da:
01:8d:15:e6:55:7a:92:9a:63:d9:89:9a:06:c3:bf:
2f:35:05:9f:a1:a7:d6:01:68:25:3a:2b:e0:ff:8b:
92:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:20:E4:B8:52:3B:2E:1F:3F:F9:17:99:90:03:0A:A3:08:8E:47:23
X509v3 Authority Key Identifier:
keyid:68:E3:BA:87:E3:A9:34:68:CC:3B:3C:3F:60:FA:63:D5:E8:53:C3:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aOO6h-OpNGjMOzw_YPpj1ehTwxQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/1eff17-65ec-45ea-a75d-96eb07f7825b/1/oyDkuFI7Lh8_-ReZkAMKowiORyM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/1eff17-65ec-45ea-a75d-96eb07f7825b/1/aOO6h-OpNGjMOzw_YPpj1ehTwxQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.49.240.0/21
Signature Algorithm: sha256WithRSAEncryption
9a:6c:e9:08:bc:e8:78:0a:60:b2:b7:89:4c:18:91:42:84:44:
07:db:d6:18:f0:79:10:77:9b:31:c5:92:b7:c0:ce:12:bd:a6:
cf:89:aa:e5:1b:4a:8e:13:e9:23:13:8c:4f:d5:f7:5f:5d:3f:
79:ba:89:f3:bb:e8:33:f2:c0:ce:16:ba:4e:90:cb:45:5c:c1:
cf:d7:f5:91:86:d3:f8:f9:dc:8a:cf:48:90:95:e2:96:d1:03:
61:3c:11:43:59:15:8d:d5:00:ac:ac:0f:e1:ac:5d:23:26:a8:
94:72:26:31:ae:3c:83:19:8a:55:0b:c5:31:e2:37:1c:81:b5:
8c:41:2e:a7:a1:32:d1:1b:57:fe:ce:02:04:4f:0e:cc:c6:aa:
ae:0d:8b:93:61:bd:a4:f8:4f:d8:a0:bd:a2:4a:dc:95:14:00:
7b:75:d6:a3:32:2d:ed:fd:6f:c1:48:e2:29:87:11:28:cb:ac:
7d:31:76:9d:b7:11:7b:12:a3:b4:13:10:49:8a:ef:43:ab:7a:
8d:c0:09:53:29:9e:7b:79:fe:70:8c:7c:54:03:8e:e4:18:76:
3e:ed:66:7a:75:6d:23:b7:c4:a8:9e:12:2f:7a:a2:6c:5d:df:
f7:22:d7:80:4d:9e:d0:13:c5:99:b3:ab:58:e0:b4:58:ae:37:
8c:68:93:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:44 2025 by rpki-client on console.sobornost.net