Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/2cf2c1-1962-4b70-9e5b-fe855dabb75e/1/LV0PrwUwApuyDUZikJDi74P4PbM.roa
File: LV0PrwUwApuyDUZikJDi74P4PbM.roa (raw, json)
Hash identifier: CRURkBwcTmvzFW2izVL5pwlfr/5l3k8aD0Pamg8MVGM=
Subject key identifier: 2D:5D:0F:AF:05:30:02:9B:B2:0D:46:62:90:90:E2:EF:83:F8:3D:B3
Certificate issuer: /CN=43fad79548afc5c83e59bbfe388c64492cb55013
Certificate serial: 01942444D4D1063DB9ACE61C0140D25E4478
Authority key identifier: 43:FA:D7:95:48:AF:C5:C8:3E:59:BB:FE:38:8C:64:49:2C:B5:50:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q_rXlUivxcg-Wbv-OIxkSSy1UBM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/2cf2c1-1962-4b70-9e5b-fe855dabb75e/1/LV0PrwUwApuyDUZikJDi74P4PbM.roa
Signing time: Wed 01 Jan 2025 23:47:58 +0000
ROA not before: Wed 01 Jan 2025 23:47:58 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44407
IP address blocks: 188.231.0.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:44:d4:d1:06:3d:b9:ac:e6:1c:01:40:d2:5e:44:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43fad79548afc5c83e59bbfe388c64492cb55013
Validity
Not Before: Jan 1 23:47:58 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2d5d0faf0530029bb20d46629090e2ef83f83db3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:c9:60:a4:49:db:d0:db:97:b5:d4:25:40:5c:
f9:66:fd:d4:0c:eb:43:d2:31:f1:a2:20:7e:2c:ad:
49:b5:d6:8e:fb:93:d7:2c:11:81:bc:ad:fb:aa:69:
1c:60:48:82:96:5f:8f:ae:2f:0f:dd:b0:ea:ec:a1:
50:57:83:4d:ed:33:81:b1:02:5e:8d:ee:f0:59:03:
8f:1c:1c:e6:d2:0e:89:4f:40:d0:c2:1c:09:e2:7d:
6f:20:85:aa:fa:9e:d0:dd:30:f8:13:ed:3a:c4:c7:
cc:71:de:65:aa:44:37:29:12:1b:bb:66:12:60:09:
d0:24:1d:07:f0:c9:d7:cb:fc:f1:c4:80:f6:9b:83:
6b:62:2e:b1:1c:11:3d:e6:a6:17:7e:e8:4c:d3:7d:
87:ae:a6:49:21:dc:c2:6c:cf:21:23:28:4b:8d:41:
e9:1a:2a:bc:57:ad:1d:36:86:a9:7e:0d:88:85:1d:
46:73:54:22:c4:e3:5d:bb:55:09:6c:b1:7f:a9:d7:
eb:d3:40:76:fb:11:21:61:90:5b:47:8e:c7:c4:6f:
8a:7a:4d:d6:e7:d0:7f:44:4f:9e:26:0b:ba:6f:cf:
21:60:55:6c:4e:ce:96:51:71:5a:75:6c:c8:1e:09:
78:39:5e:d2:42:d5:a3:3a:81:8b:0d:fe:29:8d:e0:
bd:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:5D:0F:AF:05:30:02:9B:B2:0D:46:62:90:90:E2:EF:83:F8:3D:B3
X509v3 Authority Key Identifier:
keyid:43:FA:D7:95:48:AF:C5:C8:3E:59:BB:FE:38:8C:64:49:2C:B5:50:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q_rXlUivxcg-Wbv-OIxkSSy1UBM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/2cf2c1-1962-4b70-9e5b-fe855dabb75e/1/LV0PrwUwApuyDUZikJDi74P4PbM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/2cf2c1-1962-4b70-9e5b-fe855dabb75e/1/Q_rXlUivxcg-Wbv-OIxkSSy1UBM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.231.0.0/17
Signature Algorithm: sha256WithRSAEncryption
b1:76:93:46:d1:4b:f2:8f:10:f6:49:61:0b:d1:7b:47:47:5c:
c1:88:ed:3b:91:a7:01:61:74:56:82:3f:54:c3:54:6c:96:1e:
aa:56:a0:f9:8e:3b:44:ec:74:a7:ab:3a:80:21:00:9c:63:8e:
dc:df:5d:e4:77:ab:93:d4:65:92:05:59:74:47:fb:b1:a1:5b:
19:ff:5a:9e:83:70:80:b6:a5:32:58:5e:ee:11:ae:0a:32:7a:
b1:6a:ae:a4:09:2f:83:17:3d:1a:20:4e:9c:18:53:78:56:f2:
dd:db:e2:72:c9:e1:a1:3f:0e:3b:a9:eb:25:cc:05:38:74:3c:
29:ed:6c:3a:4c:f1:4a:89:f2:fd:c7:56:6d:a7:ae:1e:10:5d:
33:c8:b5:d6:1e:45:b8:d6:98:24:57:2b:e2:fa:d1:02:98:c6:
2a:f1:81:b1:53:2d:7e:c1:7e:55:84:7c:e3:db:92:92:20:12:
98:a3:15:11:83:91:96:46:a3:3f:d8:1d:a7:0e:44:8d:23:74:
fe:70:48:98:4a:f4:0e:76:db:3d:e1:db:0d:41:fc:26:f2:79:
d7:e5:9b:ee:14:57:5c:c0:9e:38:82:f3:3f:61:4b:38:6b:1f:
01:b3:98:a3:16:70:a2:43:a7:10:2f:e3:16:f2:9c:33:75:a5:
79:e8:c0:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:48 2025 by rpki-client on console.sobornost.net