Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/c49c08-92ab-4cb1-809b-4ec7b5efae37/1/RXmLcd13ajoTVlcEirVukYVayjY.roa
File: RXmLcd13ajoTVlcEirVukYVayjY.roa (raw, json)
Hash identifier: VMYnLhwMDYwO9ah7mzCKDLgq1vs8pRSHkOzi/+9nkdg=
Subject key identifier: 45:79:8B:71:DD:77:6A:3A:13:56:57:04:8A:B5:6E:91:85:5A:CA:36
Certificate issuer: /CN=b55343aa21c74a39fcd5183f4fdf55dc4679e83d
Certificate serial: 0195F160C1063553DAB5038ECC32A5A3BF43
Authority key identifier: B5:53:43:AA:21:C7:4A:39:FC:D5:18:3F:4F:DF:55:DC:46:79:E8:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVNDqiHHSjn81Rg_T99V3EZ56D0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/c49c08-92ab-4cb1-809b-4ec7b5efae37/1/RXmLcd13ajoTVlcEirVukYVayjY.roa
Signing time: Tue 01 Apr 2025 12:43:24 +0000
ROA not before: Tue 01 Apr 2025 12:43:24 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214335
IP address blocks: 213.163.236.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:f1:60:c1:06:35:53:da:b5:03:8e:cc:32:a5:a3:bf:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b55343aa21c74a39fcd5183f4fdf55dc4679e83d
Validity
Not Before: Apr 1 12:43:24 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=45798b71dd776a3a135657048ab56e91855aca36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:5e:a7:a1:39:10:7e:06:0b:33:0d:7b:6b:59:
5f:f9:b1:45:5c:2c:69:e5:16:7a:22:77:5e:6b:65:
62:e4:79:f8:90:bb:f6:c0:09:0f:8d:af:6f:e1:d0:
eb:30:07:04:ef:1c:d1:e4:4a:f1:6f:d5:7d:41:71:
cd:4b:16:59:18:50:a2:bc:d7:8a:29:bf:97:2f:1c:
3a:14:9a:b0:61:d9:d6:0b:65:69:74:a5:3f:bc:dc:
1c:bc:86:1e:06:bb:49:9e:6c:c4:e5:fa:d7:0e:7e:
94:ac:cc:ab:1c:a8:b5:1f:1b:42:e8:1b:cf:4f:a1:
bc:06:64:f0:0b:79:01:c8:d7:9b:07:fb:83:d4:f2:
8a:6e:23:9e:bb:52:22:ab:73:47:1e:1b:ea:1e:f7:
0a:61:54:f0:c3:6f:a8:6c:8e:c8:1d:3a:e6:43:02:
68:c4:ee:95:9c:43:13:c6:45:45:8b:4a:bf:45:8c:
a3:5b:47:93:69:d9:7a:5f:29:2b:5f:b5:5e:4f:0a:
cf:8a:14:94:a5:97:c2:54:48:d0:89:2d:30:e5:91:
8e:5b:0f:8a:ff:a3:b8:63:02:c4:fd:03:10:32:d1:
69:67:25:16:8d:66:9c:10:cc:6f:f9:00:79:87:b1:
9b:d1:f3:85:bd:1d:ca:5e:78:0a:e0:f3:d7:ca:a9:
d8:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:79:8B:71:DD:77:6A:3A:13:56:57:04:8A:B5:6E:91:85:5A:CA:36
X509v3 Authority Key Identifier:
keyid:B5:53:43:AA:21:C7:4A:39:FC:D5:18:3F:4F:DF:55:DC:46:79:E8:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVNDqiHHSjn81Rg_T99V3EZ56D0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/c49c08-92ab-4cb1-809b-4ec7b5efae37/1/RXmLcd13ajoTVlcEirVukYVayjY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/c49c08-92ab-4cb1-809b-4ec7b5efae37/1/tVNDqiHHSjn81Rg_T99V3EZ56D0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.163.236.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:a4:bb:bd:06:52:76:59:1a:73:cd:ee:7e:93:3c:33:47:54:
dd:b7:b0:b2:79:53:2c:05:e2:db:e0:88:b7:1d:45:de:14:54:
94:b1:3a:8d:f0:05:f2:91:b0:07:1f:86:53:49:66:79:41:c6:
c9:c2:17:9b:38:87:c4:1c:29:3d:bc:51:49:05:d4:f7:49:77:
55:c8:f7:5f:2b:36:2e:f9:3c:4f:bb:fc:28:4e:ce:f4:14:b8:
a3:47:39:13:e7:29:4d:1e:0c:1f:ff:ea:b6:29:f6:b2:83:ff:
a4:38:f5:bf:80:01:79:4e:8b:32:3f:ad:ca:1a:64:84:c6:38:
38:98:e8:87:7c:6a:0a:1a:b6:f0:72:e4:0a:9f:9e:ba:9f:d2:
9f:c6:ca:b1:64:31:f2:70:c7:a3:d7:c1:5a:9e:e5:8c:6e:33:
ad:9a:2e:fc:df:7f:50:42:86:1d:0a:44:71:a3:af:bd:bf:f2:
f2:2b:a5:82:79:eb:9a:a8:28:0b:9a:3f:8c:c1:85:ce:bb:ab:
c0:30:df:97:c2:b1:0b:a0:10:27:e4:f4:25:8e:78:22:f4:d2:
ac:37:b4:77:9f:3a:b1:e7:24:dc:98:55:b4:10:55:ef:b6:50:
70:21:0e:0d:75:f2:36:5f:c4:c1:32:32:8a:1b:84:ac:87:23:
f4:84:3c:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:49 2025 by rpki-client on console.sobornost.net