Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/ff6401-1f00-4b74-ab99-4d9296e9b3ae/1/Q9tpjWUnZ29Md-50Kxu_HQRQ-Mk.roa
File: Q9tpjWUnZ29Md-50Kxu_HQRQ-Mk.roa (raw, json)
Hash identifier: zHTjqQivC3Wds3ZRsFbwTssRdBvxgxtLcNo5p+QkSKE=
Subject key identifier: 43:DB:69:8D:65:27:67:6F:4C:77:EE:74:2B:1B:BF:1D:04:50:F8:C9
Certificate issuer: /CN=2413a341967aedbe52a8b11c79cb13911a4a9f77
Certificate serial: 019427471E80D0514B643229F498B9055D76
Authority key identifier: 24:13:A3:41:96:7A:ED:BE:52:A8:B1:1C:79:CB:13:91:1A:4A:9F:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JBOjQZZ67b5SqLEcecsTkRpKn3c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/ff6401-1f00-4b74-ab99-4d9296e9b3ae/1/Q9tpjWUnZ29Md-50Kxu_HQRQ-Mk.roa
Signing time: Thu 02 Jan 2025 13:49:19 +0000
ROA not before: Thu 02 Jan 2025 13:49:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 41755
IP address blocks: 193.37.154.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:47:1e:80:d0:51:4b:64:32:29:f4:98:b9:05:5d:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2413a341967aedbe52a8b11c79cb13911a4a9f77
Validity
Not Before: Jan 2 13:49:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=43db698d6527676f4c77ee742b1bbf1d0450f8c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:50:44:a4:e7:ad:4e:b8:31:a7:b5:1c:01:a4:
3c:f7:69:d3:0e:4d:14:2d:04:73:30:0b:3b:aa:54:
c3:f9:08:c7:03:c1:74:d4:d0:85:58:39:ea:78:61:
e9:42:52:74:14:6d:75:7a:bc:c4:e0:70:92:85:d2:
09:c7:29:3a:0f:16:67:57:f4:be:49:4b:a4:9a:45:
3a:6b:e1:c8:3c:27:e6:1a:db:2f:9f:5b:9d:3c:48:
ed:68:ae:6b:d7:2c:f6:d4:da:97:cb:61:5e:b1:62:
4c:fa:15:71:02:de:69:04:42:be:b2:d1:12:ce:2f:
95:d4:e0:00:57:67:38:7e:5e:d9:58:9e:2a:f9:b8:
c9:1f:52:1b:51:4c:92:47:86:a6:c3:10:25:25:3c:
4a:94:57:f1:05:27:9f:5f:38:d8:5a:86:a3:fd:b9:
6e:50:92:59:9e:28:cf:02:c6:b4:25:2b:2e:c7:87:
c1:60:9e:85:6a:d6:bb:25:6b:b5:18:77:e1:80:e7:
63:67:80:ea:bc:4f:6c:e3:a0:f3:4e:d8:f3:21:69:
5f:5f:a2:5e:aa:af:72:75:92:45:c7:64:a9:c9:83:
b2:b7:d5:79:5d:ae:43:8e:4e:18:b9:6a:23:3d:13:
0e:95:fd:d9:35:cd:77:f5:04:81:0d:f9:12:d6:35:
96:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:DB:69:8D:65:27:67:6F:4C:77:EE:74:2B:1B:BF:1D:04:50:F8:C9
X509v3 Authority Key Identifier:
keyid:24:13:A3:41:96:7A:ED:BE:52:A8:B1:1C:79:CB:13:91:1A:4A:9F:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JBOjQZZ67b5SqLEcecsTkRpKn3c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/ff6401-1f00-4b74-ab99-4d9296e9b3ae/1/Q9tpjWUnZ29Md-50Kxu_HQRQ-Mk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/ff6401-1f00-4b74-ab99-4d9296e9b3ae/1/JBOjQZZ67b5SqLEcecsTkRpKn3c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.37.154.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:ac:c2:b7:56:58:86:b1:95:ad:13:ba:c3:f6:f5:49:09:6d:
50:e0:ad:7e:1e:36:98:53:14:d7:57:0e:b4:ea:b5:4d:07:d7:
00:eb:78:73:d7:0e:a3:b9:00:ab:c6:6a:2f:e6:34:85:03:fe:
6d:33:b8:8c:15:a5:10:7e:cc:a4:31:2c:67:17:91:3b:51:b8:
8e:ce:69:e1:2e:5e:02:c5:0d:17:8c:e1:c8:26:fc:4c:f6:13:
80:86:07:e2:29:50:45:6f:e8:d9:74:23:4b:02:d5:2f:a8:0c:
2f:2f:61:2e:28:3c:36:0f:05:31:1f:23:4c:2d:46:79:ee:83:
61:7a:dc:7d:bb:23:ee:60:41:ef:8f:83:da:03:91:c0:58:30:
1e:18:5f:38:b3:fc:48:d9:e8:8b:74:af:c2:a3:c3:ae:08:4b:
c9:5f:4f:fb:5c:b8:cf:96:17:72:5e:07:2a:fa:41:2e:44:54:
d4:14:e4:fe:db:41:15:33:bb:a0:b1:0b:1d:a6:b4:1b:2d:71:
ef:2e:65:9c:8f:93:45:cf:1c:51:37:56:25:41:fb:ab:11:0a:
14:fa:22:0f:2f:76:cf:7e:49:c9:56:ea:5f:b4:84:15:82:bb:
91:50:97:58:e0:84:e5:64:65:0c:b7:2f:b4:d7:57:22:6e:6a:
ba:eb:8d:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:33:06 2025 by rpki-client on console.sobornost.net