Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/dc2c04-59f6-4f22-b7bd-fe671c1d5150/1/LposyqjV73-zT4I-NkDoALIwk_k.roa
File: LposyqjV73-zT4I-NkDoALIwk_k.roa (raw, json)
Hash identifier: OHnWiOPJ0+vl8RYqLw+3oMseEcMGYzbghowhWqyDjck=
Subject key identifier: 2E:9A:2C:CA:A8:D5:EF:7F:B3:4F:82:3E:36:40:E8:00:B2:30:93:F9
Certificate issuer: /CN=23d34dd3d211e5c2ea7bd2f527a13e1e996820ec
Certificate serial: 019427464E3C17B39837D474DBF65F04FBFC
Authority key identifier: 23:D3:4D:D3:D2:11:E5:C2:EA:7B:D2:F5:27:A1:3E:1E:99:68:20:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I9NN09IR5cLqe9L1J6E-HploIOw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/dc2c04-59f6-4f22-b7bd-fe671c1d5150/1/LposyqjV73-zT4I-NkDoALIwk_k.roa
Signing time: Thu 02 Jan 2025 13:48:26 +0000
ROA not before: Thu 02 Jan 2025 13:48:26 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 205509
IP address blocks: 194.9.29.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:46:4e:3c:17:b3:98:37:d4:74:db:f6:5f:04:fb:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23d34dd3d211e5c2ea7bd2f527a13e1e996820ec
Validity
Not Before: Jan 2 13:48:26 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2e9a2ccaa8d5ef7fb34f823e3640e800b23093f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:69:2c:0a:8b:a3:0e:33:93:50:ba:a8:b2:f1:
5e:17:a4:08:ed:68:8c:06:72:ac:c7:aa:87:8f:2d:
9b:c4:ab:84:2b:c2:be:11:4f:fc:fe:0c:36:3f:13:
85:09:dc:79:16:fc:76:84:30:14:22:ad:20:69:6b:
f9:ad:b8:26:39:17:55:c3:54:b9:60:e3:e1:d2:ef:
db:71:77:5e:09:d9:b5:ad:78:96:24:38:fc:a3:fc:
64:38:83:c0:f5:2e:09:68:c1:ac:2c:67:e3:d7:bc:
81:f0:92:7b:c5:01:13:cf:0c:00:c0:2c:98:62:26:
34:a3:4b:e0:11:01:49:40:7a:79:83:ab:17:2d:a7:
46:a5:76:2c:73:e8:b4:26:00:56:6c:fa:43:61:40:
25:79:e3:d9:81:a8:4a:b2:bf:7e:13:68:4d:7b:a3:
4c:db:32:4e:1e:83:f0:87:c7:73:1c:33:83:44:28:
5f:a3:65:30:7c:5a:02:95:62:89:78:73:26:04:58:
3e:1e:d0:91:77:04:5b:a8:58:12:85:d6:12:2d:95:
40:76:54:74:c6:83:be:4d:f2:11:95:7d:b5:d3:ba:
6a:d6:01:2e:41:e6:a4:08:57:a3:cd:30:08:bf:bb:
cd:8e:56:26:33:05:e2:7a:83:ad:4b:2a:37:ae:d9:
1c:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:9A:2C:CA:A8:D5:EF:7F:B3:4F:82:3E:36:40:E8:00:B2:30:93:F9
X509v3 Authority Key Identifier:
keyid:23:D3:4D:D3:D2:11:E5:C2:EA:7B:D2:F5:27:A1:3E:1E:99:68:20:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I9NN09IR5cLqe9L1J6E-HploIOw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/dc2c04-59f6-4f22-b7bd-fe671c1d5150/1/LposyqjV73-zT4I-NkDoALIwk_k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/dc2c04-59f6-4f22-b7bd-fe671c1d5150/1/I9NN09IR5cLqe9L1J6E-HploIOw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.9.29.0/24
Signature Algorithm: sha256WithRSAEncryption
01:7c:5c:e1:32:1a:5f:29:61:6b:79:25:bb:45:42:42:cc:7e:
53:2a:8f:c4:ea:d8:d0:20:30:8c:39:95:84:ce:08:5f:75:b9:
ab:d3:0c:ca:38:bf:4b:3e:67:fe:7a:99:7f:1b:34:b3:c9:57:
b1:13:9b:da:e9:f8:f4:a2:6d:57:48:71:e9:6b:1e:45:c4:e6:
bb:db:e7:74:f9:a5:93:89:53:fe:a8:cc:8a:d3:39:de:c2:de:
96:d1:02:e0:b0:93:07:b1:32:a8:0f:1f:3d:6d:ce:0a:ee:e5:
99:52:7a:91:51:6b:2e:79:d9:4a:bf:f3:a6:9f:f9:e7:ca:88:
ec:c9:cc:f9:66:96:16:dc:55:78:9d:08:64:0c:58:e6:6c:58:
dd:bb:49:64:a6:4b:cf:b4:ba:02:3c:c7:db:f0:4f:12:50:8d:
47:ec:01:6a:cf:e4:9e:b6:50:57:dc:8c:83:d4:b8:e0:a3:0e:
c9:fe:c8:f5:18:84:13:bb:f1:11:9b:22:4f:b2:68:fe:6f:1d:
88:c6:7b:d4:b8:ab:af:ec:25:ad:cf:ae:e0:56:03:cf:e5:f0:
7d:c2:6a:46:8e:74:ba:db:a7:f9:ec:a8:b4:ae:21:07:21:76:
13:d8:55:24:96:59:2e:f1:7c:48:8e:56:98:7e:1c:16:db:2d:
83:04:eb:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:45 2025 by rpki-client on console.sobornost.net