Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/371f8f-8ea6-47a4-8959-9fc3babbafdf/1/Ok4j3kiPWCLQ9jcNdWujNm_MVrA.roa
File: Ok4j3kiPWCLQ9jcNdWujNm_MVrA.roa (raw, json)
Hash identifier: nZXhOq2r3JC9ctLBU1jIFYVtIuvQKy3kuUGg+TXWe5Q=
Subject key identifier: 3A:4E:23:DE:48:8F:58:22:D0:F6:37:0D:75:6B:A3:36:6F:CC:56:B0
Certificate issuer: /CN=6eb49e870712abb64b19a8eceb61e51a8e0c1768
Certificate serial: 01954738CE11AA23E8A98BAB6F33488C4D25
Authority key identifier: 6E:B4:9E:87:07:12:AB:B6:4B:19:A8:EC:EB:61:E5:1A:8E:0C:17:68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/brSehwcSq7ZLGajs62HlGo4MF2g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/371f8f-8ea6-47a4-8959-9fc3babbafdf/1/Ok4j3kiPWCLQ9jcNdWujNm_MVrA.roa
Signing time: Thu 27 Feb 2025 11:44:19 +0000
ROA not before: Thu 27 Feb 2025 11:44:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 49033
IP address blocks: 45.8.236.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:47:38:ce:11:aa:23:e8:a9:8b:ab:6f:33:48:8c:4d:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6eb49e870712abb64b19a8eceb61e51a8e0c1768
Validity
Not Before: Feb 27 11:44:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3a4e23de488f5822d0f6370d756ba3366fcc56b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:9e:d5:aa:ba:b1:c4:aa:8c:95:45:24:80:39:
08:c6:2e:b8:fd:ae:59:bc:7d:7f:82:9e:69:1d:df:
b0:98:86:c5:5c:fd:82:e5:a6:91:32:63:6e:e2:9e:
13:81:7d:92:26:39:0a:e3:43:2e:2b:7b:f0:7b:c4:
32:94:57:d4:36:79:71:ab:e6:d8:bd:2a:d9:7c:9d:
71:79:5e:4a:7e:5d:59:0d:9c:df:02:eb:b8:d9:75:
1e:d5:13:64:03:13:46:b5:b8:c3:e8:04:74:21:8d:
a3:16:d2:1f:9e:19:72:1d:23:5f:33:45:a7:bd:f8:
eb:6b:71:ba:2f:db:9f:ad:77:e9:49:f8:86:45:38:
61:b4:33:1d:19:fd:56:9f:ec:c6:54:22:9a:80:80:
20:c8:34:39:8e:91:4b:ac:d6:d6:d0:48:60:81:c4:
6b:a0:ad:14:aa:5a:7f:b3:a8:8f:fa:b1:9d:79:ba:
ce:8c:aa:6e:66:30:bd:10:cb:bd:b6:e1:85:4d:81:
44:97:43:0c:f9:9f:08:bb:77:03:d7:cf:0c:98:1f:
85:4d:3d:3f:2a:19:9a:a5:96:d5:55:28:e3:bc:d6:
59:31:19:3d:46:96:fe:25:4e:0d:ab:65:52:a4:65:
eb:5f:b0:bf:91:78:4b:0a:bc:57:19:d4:33:b0:f4:
a2:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:4E:23:DE:48:8F:58:22:D0:F6:37:0D:75:6B:A3:36:6F:CC:56:B0
X509v3 Authority Key Identifier:
keyid:6E:B4:9E:87:07:12:AB:B6:4B:19:A8:EC:EB:61:E5:1A:8E:0C:17:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/brSehwcSq7ZLGajs62HlGo4MF2g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/371f8f-8ea6-47a4-8959-9fc3babbafdf/1/Ok4j3kiPWCLQ9jcNdWujNm_MVrA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/371f8f-8ea6-47a4-8959-9fc3babbafdf/1/brSehwcSq7ZLGajs62HlGo4MF2g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.236.0/22
Signature Algorithm: sha256WithRSAEncryption
21:19:97:5e:5f:12:4b:ac:7c:9b:94:ca:79:3d:a3:86:32:ca:
19:ae:99:87:93:c5:bb:6d:95:08:d0:3e:5b:1d:51:17:42:f1:
05:8d:f0:be:39:6f:69:ea:fd:7d:1a:1e:e1:44:13:c7:90:bd:
77:4e:db:64:44:0d:5b:ff:c0:88:a2:ca:1f:8e:f1:4c:73:e7:
e7:03:69:02:b1:a4:fe:55:58:98:b6:f2:d6:49:fb:57:aa:a2:
65:cb:56:87:2b:e2:f5:c9:dd:9c:ff:cb:00:00:46:df:cb:58:
8d:fd:6f:61:78:d6:85:3c:f8:11:b8:ff:77:ff:ac:2e:7c:62:
6d:c9:b2:1f:b2:9a:eb:ec:40:4c:63:64:c9:78:27:00:2c:32:
e1:2e:dd:92:7e:de:e4:25:63:93:b1:36:de:aa:58:21:93:53:
07:94:22:99:b1:23:4f:a5:68:86:3f:91:6d:e7:87:2d:2e:a8:
8c:6e:df:a0:34:15:e1:67:72:2d:2d:3c:67:54:67:a6:45:5f:
79:22:d0:d6:4f:02:06:78:2f:9c:a6:1c:c7:7b:ce:0a:e6:6a:
d7:66:cb:0f:cf:78:8e:3f:b1:5f:13:9d:3e:6b:da:72:34:25:
cf:a8:5e:06:22:46:2a:1a:15:df:ac:96:84:a7:24:2c:3d:9f:
14:80:76:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:33:06 2025 by rpki-client on console.sobornost.net