Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/130a65-1b7a-4575-b280-90c3cce569f0/1/GGXhG4jYLlNwNhb_4jLsATV3sZ4.roa
File: GGXhG4jYLlNwNhb_4jLsATV3sZ4.roa (raw, json)
Hash identifier: coSPb15gvXo5/kLV6jjcSbTa8zuHjiQZwBsQ1ZTodzg=
Subject key identifier: 18:65:E1:1B:88:D8:2E:53:70:36:16:FF:E2:32:EC:01:35:77:B1:9E
Certificate issuer: /CN=2f3eaf4ec754f4a0e3d84ca253ad406ee9c7de15
Certificate serial: 019611555FB7D1181AB3DE53A5F6AFEE8401
Authority key identifier: 2F:3E:AF:4E:C7:54:F4:A0:E3:D8:4C:A2:53:AD:40:6E:E9:C7:DE:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Lz6vTsdU9KDj2EyiU61AbunH3hU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/130a65-1b7a-4575-b280-90c3cce569f0/1/GGXhG4jYLlNwNhb_4jLsATV3sZ4.roa
Signing time: Mon 07 Apr 2025 17:38:49 +0000
ROA not before: Mon 07 Apr 2025 17:38:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 208324
IP address blocks: 195.7.9.0/24 maxlen: 24
195.7.10.0/24 maxlen: 24
195.7.11.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:11:55:5f:b7:d1:18:1a:b3:de:53:a5:f6:af:ee:84:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f3eaf4ec754f4a0e3d84ca253ad406ee9c7de15
Validity
Not Before: Apr 7 17:38:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1865e11b88d82e53703616ffe232ec013577b19e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:f3:f0:93:c2:b0:9a:e7:e4:c8:bc:7e:e1:f3:
21:ec:32:3c:f9:b3:0d:37:25:45:35:2c:ef:a3:54:
a4:d3:b5:1f:80:84:f5:5f:7b:79:51:35:38:75:5b:
ae:2e:0f:4a:9f:92:b1:59:bd:96:b1:a8:f9:cc:8a:
c0:00:c2:e2:cf:0e:44:a7:12:32:0a:e3:f4:5e:23:
34:0b:0a:25:9f:3f:6f:85:bf:de:1e:f3:bc:e4:6f:
ca:03:77:29:04:1a:56:87:fa:fc:ac:f2:79:8a:3d:
44:4b:3f:05:3c:26:63:21:60:d2:18:84:db:bf:f6:
59:dc:f9:69:a4:c8:b1:ed:16:74:82:9f:bd:8f:87:
fb:77:d1:1e:31:55:2e:c7:04:1b:97:a9:75:0d:b1:
87:ff:c3:93:9f:3b:24:05:e2:b1:5d:94:50:a4:89:
52:77:b0:76:80:38:75:b9:9d:08:06:4f:5c:58:ec:
2a:8b:a6:ad:5e:ed:09:9a:8d:4b:cf:90:12:95:26:
e3:67:63:76:21:92:3f:fc:5e:5a:0c:dc:c3:92:c1:
04:23:a3:3f:76:d4:b9:06:ff:60:9e:c7:dc:48:45:
ec:0e:ba:ac:c4:c8:b2:d9:dd:02:a3:ab:09:7e:e0:
eb:16:ef:61:90:23:cf:96:65:15:9b:c2:bb:cd:df:
54:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:65:E1:1B:88:D8:2E:53:70:36:16:FF:E2:32:EC:01:35:77:B1:9E
X509v3 Authority Key Identifier:
keyid:2F:3E:AF:4E:C7:54:F4:A0:E3:D8:4C:A2:53:AD:40:6E:E9:C7:DE:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Lz6vTsdU9KDj2EyiU61AbunH3hU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/130a65-1b7a-4575-b280-90c3cce569f0/1/GGXhG4jYLlNwNhb_4jLsATV3sZ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/130a65-1b7a-4575-b280-90c3cce569f0/1/Lz6vTsdU9KDj2EyiU61AbunH3hU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.7.9.0-195.7.11.255
Signature Algorithm: sha256WithRSAEncryption
0d:9a:ec:62:61:d8:30:d9:be:32:70:e2:b6:04:6d:96:73:14:
44:da:01:03:b0:86:4c:72:c9:53:65:97:fc:de:42:c0:4c:06:
d5:21:18:31:dc:42:90:23:46:ef:f2:2c:65:f5:cd:10:73:83:
3f:72:aa:99:6d:60:28:c6:cf:01:0d:a0:e3:4c:fd:80:c5:d8:
1d:0b:05:89:83:3a:96:fb:c2:ae:2f:07:93:2c:f5:d7:e1:61:
33:50:5e:ba:eb:9d:11:28:7b:06:c6:3e:b4:8d:46:c2:eb:a7:
a9:11:be:75:eb:af:71:41:ad:f3:8b:24:65:7d:9a:66:d6:4a:
98:06:f4:83:39:1b:ed:75:7f:f8:84:90:b7:79:09:e7:1a:ac:
8d:77:d3:4d:fb:42:6f:7e:bc:b8:81:8a:50:e4:a9:6c:59:43:
3d:62:5a:a8:20:4d:dd:4a:bf:f9:98:80:8e:9b:bc:98:71:f4:
26:8a:60:1a:24:26:41:dc:ac:b6:b7:07:ff:4f:78:5c:fe:a5:
27:96:39:93:5e:cb:3d:c7:54:af:7b:79:8a:28:20:2f:39:d3:
70:e1:84:69:da:94:55:c4:ae:d5:b5:1e:d3:67:dc:3f:51:57:
ff:ff:cb:e9:c6:6f:bb:f8:33:a1:e6:ff:5b:2f:8a:3b:8b:22:
37:70:cf:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:33:04 2025 by rpki-client on console.sobornost.net