Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/R0cDHc3n2qmMEAUS6woEeV4DrUw.roa
File: R0cDHc3n2qmMEAUS6woEeV4DrUw.roa (raw, json)
Hash identifier: QJ/g2HXWAm89HNayhA1QKb5SEB9BRX6t6S4vbuLEEGQ=
Subject key identifier: 47:47:03:1D:CD:E7:DA:A9:8C:10:05:12:EB:0A:04:79:5E:03:AD:4C
Certificate issuer: /CN=d434f1686102876c6216bcea28a5e502ec0d7b6b
Certificate serial: 019423D750CB6DAE6F9018D5B5092659BF5C
Authority key identifier: D4:34:F1:68:61:02:87:6C:62:16:BC:EA:28:A5:E5:02:EC:0D:7B:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1DTxaGECh2xiFrzqKKXlAuwNe2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/R0cDHc3n2qmMEAUS6woEeV4DrUw.roa
Signing time: Wed 01 Jan 2025 21:48:20 +0000
ROA not before: Wed 01 Jan 2025 21:48:20 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 197478
IP address blocks: 62.82.140.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:50:cb:6d:ae:6f:90:18:d5:b5:09:26:59:bf:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d434f1686102876c6216bcea28a5e502ec0d7b6b
Validity
Not Before: Jan 1 21:48:20 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4747031dcde7daa98c100512eb0a04795e03ad4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:11:50:c3:c9:7b:bc:91:52:f6:f5:1d:8f:55:
85:f0:c5:a1:32:7e:a9:b8:2b:ce:e7:dc:a0:e4:df:
b0:c1:f0:8a:5b:7b:78:ee:ad:27:c2:13:c7:31:c6:
de:18:28:d9:7b:6a:a8:a0:22:04:d1:a3:bf:8f:23:
fc:c9:e9:fa:0e:f2:26:08:02:d4:a5:f7:30:f0:8a:
f8:6e:7f:0f:ed:b7:27:09:69:2a:f8:ab:87:62:97:
fe:2e:e3:78:94:3c:10:50:0d:aa:b8:fd:11:e9:d3:
e4:6f:0d:eb:b0:b5:7c:7b:4d:48:d0:4c:75:8a:ea:
7d:2d:54:a8:9c:dd:30:38:87:6f:c3:d1:53:11:0a:
93:0c:59:39:89:aa:ac:b7:dd:9c:11:8f:4e:4f:3e:
05:eb:8f:4b:c3:4f:f6:e0:aa:96:ef:ab:f2:8b:2f:
88:99:20:00:9a:39:99:25:b4:63:25:73:76:e1:11:
98:74:b3:01:82:6b:3f:fb:3b:37:6c:ad:29:05:2c:
3d:44:60:3a:cc:04:a6:e2:b0:70:35:62:90:01:3e:
d3:f1:61:b1:3e:37:2c:c6:cd:5f:8c:e0:41:fb:bd:
a4:4f:02:86:e3:fd:a7:7f:cd:19:c5:36:91:8d:55:
5c:41:b9:df:cc:a2:02:2c:85:07:c0:7c:5a:82:01:
f2:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:47:03:1D:CD:E7:DA:A9:8C:10:05:12:EB:0A:04:79:5E:03:AD:4C
X509v3 Authority Key Identifier:
keyid:D4:34:F1:68:61:02:87:6C:62:16:BC:EA:28:A5:E5:02:EC:0D:7B:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1DTxaGECh2xiFrzqKKXlAuwNe2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/R0cDHc3n2qmMEAUS6woEeV4DrUw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/1DTxaGECh2xiFrzqKKXlAuwNe2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.82.140.0/24
Signature Algorithm: sha256WithRSAEncryption
96:70:c7:84:b6:91:08:9a:d0:d7:97:11:dc:bf:85:87:8d:32:
9b:c5:fd:0c:c9:96:9f:d5:d2:e1:c1:5c:8f:e5:d7:3c:31:72:
f5:a3:2e:ed:e9:65:be:6d:0f:c0:d9:41:e6:f5:c3:7e:e7:06:
1b:d6:08:7f:4b:96:39:22:09:d8:09:05:bb:40:c3:10:cd:09:
87:a5:8b:97:2f:3d:f5:ab:7c:72:5e:3a:76:be:ed:a2:d0:a8:
e9:b8:d4:7d:be:17:11:fb:98:54:d1:19:10:be:e9:19:17:25:
b5:ac:bb:66:96:e8:98:51:db:98:6c:44:8a:5b:34:22:8f:02:
76:6c:32:57:55:f4:7c:8a:bc:dd:cf:e8:04:90:79:70:f9:e0:
65:52:2c:5f:5f:fa:96:19:89:05:4a:89:b5:50:cd:28:6e:50:
31:1a:da:ce:4e:6e:85:d3:b6:73:21:86:68:2c:ff:d6:03:3f:
3e:8c:f7:1c:00:45:72:dd:e6:1a:db:32:24:74:bc:ff:b6:f4:
ed:16:64:d2:ff:1b:51:bf:5b:e4:2c:01:29:00:81:76:55:62:
2a:6a:ca:05:97:b5:1e:55:6c:6c:ec:fd:ee:c9:e6:ab:6e:d2:
67:18:31:83:16:f9:a6:8b:61:c2:61:d4:f3:51:90:cc:49:d4:
bd:e6:81:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:33:07 2025 by rpki-client on console.sobornost.net