Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/01608d-08f1-4ab5-a926-be561ccded2c/1/_-ujCkb2AK4IkutlVxIW61CZKcg.roa
File: _-ujCkb2AK4IkutlVxIW61CZKcg.roa (raw, json)
Hash identifier: ZnHaosgaFt/JXW9m08DluSmRz1C9FDWxKl8XbDANYsM=
Subject key identifier: FF:EB:A3:0A:46:F6:00:AE:08:92:EB:65:57:12:16:EB:50:99:29:C8
Certificate issuer: /CN=ff8ced3b09a905eb96869c58f66b4f8b591503b0
Certificate serial: 0194221FBE2D70B53EF63CDDC7BD6BD719BD
Authority key identifier: FF:8C:ED:3B:09:A9:05:EB:96:86:9C:58:F6:6B:4F:8B:59:15:03:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_4ztOwmpBeuWhpxY9mtPi1kVA7A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/01608d-08f1-4ab5-a926-be561ccded2c/1/_-ujCkb2AK4IkutlVxIW61CZKcg.roa
Signing time: Wed 01 Jan 2025 13:48:13 +0000
ROA not before: Wed 01 Jan 2025 13:48:13 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 50204
IP address blocks: 193.106.220.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:be:2d:70:b5:3e:f6:3c:dd:c7:bd:6b:d7:19:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff8ced3b09a905eb96869c58f66b4f8b591503b0
Validity
Not Before: Jan 1 13:48:13 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ffeba30a46f600ae0892eb65571216eb509929c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:73:f6:21:9d:c1:25:c8:07:62:c7:43:6d:ea:
08:36:7c:c6:85:7a:00:2c:60:c2:14:10:66:f1:a5:
8d:42:04:4b:3a:93:e4:c8:39:81:4d:b0:2c:e1:38:
2d:bd:b1:50:9f:e8:1a:70:54:7b:9c:fc:50:53:1e:
9b:82:78:54:39:f3:d0:6c:3c:d9:5d:bc:ab:9a:0b:
0c:83:5e:3e:8e:e2:a0:7a:e6:73:e3:bf:b5:a8:f1:
97:2a:06:8e:87:31:76:7c:51:75:24:27:b8:fc:a0:
17:f6:e2:7d:09:e9:57:92:1d:76:09:4c:84:f1:a8:
93:c9:9e:9c:00:74:8d:b7:76:f7:80:a0:d2:94:c3:
ad:e6:39:51:9b:0a:a2:cd:8b:d5:da:29:af:e9:09:
57:73:6e:a0:15:59:8f:95:f4:71:58:ef:92:8f:8e:
75:1e:c9:fe:70:4d:f0:e4:ef:fd:a1:cd:ef:7f:42:
55:b4:b2:25:36:4d:53:85:7b:76:4d:f8:b2:b0:82:
f1:a4:d8:09:81:cb:55:a7:ae:62:29:4b:f4:57:db:
87:85:a7:f5:ff:13:e6:59:57:ec:52:f2:ee:aa:f1:
87:4a:d0:68:ef:da:71:d4:df:95:66:35:38:72:55:
b6:05:e1:40:d0:d7:e3:c3:1e:01:c3:1e:d8:4e:4f:
13:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:EB:A3:0A:46:F6:00:AE:08:92:EB:65:57:12:16:EB:50:99:29:C8
X509v3 Authority Key Identifier:
keyid:FF:8C:ED:3B:09:A9:05:EB:96:86:9C:58:F6:6B:4F:8B:59:15:03:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_4ztOwmpBeuWhpxY9mtPi1kVA7A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/01608d-08f1-4ab5-a926-be561ccded2c/1/_-ujCkb2AK4IkutlVxIW61CZKcg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/01608d-08f1-4ab5-a926-be561ccded2c/1/_4ztOwmpBeuWhpxY9mtPi1kVA7A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.106.220.0/22
Signature Algorithm: sha256WithRSAEncryption
89:58:2d:de:74:a6:ad:56:fd:b0:eb:05:b4:5f:12:d1:8f:31:
89:0d:5e:83:4f:28:57:ca:67:54:76:54:d3:2f:8d:d8:f2:8f:
d4:e3:03:8c:c8:99:4f:fc:0d:a6:d1:99:78:5e:81:0f:dc:85:
0f:97:ac:dc:30:1a:74:7e:6f:b2:4b:c1:71:da:16:70:67:d1:
29:49:95:30:d5:99:3c:3f:90:58:36:4f:59:db:c9:9b:0c:f5:
45:ce:f9:a1:93:88:f7:65:db:af:d7:52:a5:b6:68:3a:57:19:
e8:0c:1c:47:02:b8:1b:87:93:a3:9b:b0:39:cc:9e:f5:43:65:
33:ac:e6:41:4c:ff:40:29:59:51:1e:25:ab:a4:27:12:a0:a6:
98:26:47:26:db:f9:3e:28:df:ed:b6:7b:5b:76:68:db:4f:23:
5b:75:95:38:2f:30:1d:24:75:73:d3:e9:28:26:30:f8:09:8e:
54:c1:c7:53:e9:24:4f:09:97:05:45:b7:b6:e9:96:45:84:1d:
b5:84:42:1e:50:4a:c6:55:75:2b:32:33:ed:2d:46:38:04:f2:
5f:ff:0c:8e:04:ba:4c:a4:d3:e0:61:0b:1f:94:28:78:20:12:
91:bc:3d:a0:2b:5e:95:e7:e0:59:62:3f:98:b1:18:fe:f1:bd:
b3:4a:1d:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:47 2025 by rpki-client on console.sobornost.net