Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/h4vrO4VIyC7Sman50qWypMrYMoM.roa
File: h4vrO4VIyC7Sman50qWypMrYMoM.roa (raw, json)
Hash identifier: 8dl8onNn9Y9Z6Y1+ttISPNqPlOb08Cov994HNCCFAd0=
Subject key identifier: 87:8B:EB:3B:85:48:C8:2E:D2:99:A9:F9:D2:A5:B2:A4:CA:D8:32:83
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 0194266C6EE6C0BFA1E289303BF55787EB19
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/h4vrO4VIyC7Sman50qWypMrYMoM.roa
Signing time: Thu 02 Jan 2025 09:50:28 +0000
ROA not before: Thu 02 Jan 2025 09:50:28 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 34291
IP address blocks: 195.54.10.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6c:6e:e6:c0:bf:a1:e2:89:30:3b:f5:57:87:eb:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Jan 2 09:50:28 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=878beb3b8548c82ed299a9f9d2a5b2a4cad83283
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:75:55:0d:cb:a6:e3:3b:92:42:d6:67:b5:be:
f9:ac:8b:2e:87:71:bc:df:f5:6a:cc:00:45:ae:6a:
bd:b0:fc:c4:36:e9:3a:96:26:67:94:db:56:d7:27:
0e:18:7b:8c:88:25:13:ee:ed:d7:ee:85:2a:da:cd:
e2:90:32:62:ce:79:64:8b:4b:db:96:f9:e2:44:c9:
9e:32:15:78:0e:15:8a:03:4a:45:38:45:af:e2:07:
6f:52:b3:ce:ea:04:37:3a:3e:84:57:16:79:78:b9:
6d:0a:62:af:98:bb:0c:1f:cd:0c:69:07:30:41:d2:
62:70:63:df:9a:0b:9c:a0:76:8a:3e:f4:b2:0b:32:
ce:42:b2:0c:c9:3a:6a:d8:2b:b7:60:3e:53:68:11:
a4:8f:45:e8:8d:32:35:34:a3:06:ae:42:9b:35:b5:
8f:04:e9:60:ab:9b:6c:0d:d5:5f:f6:a1:04:cc:76:
22:37:f3:de:41:73:d7:a4:5c:d6:bb:2e:e0:b3:0c:
91:9f:19:c6:57:eb:c1:b9:3d:0c:13:e4:7e:01:37:
82:5f:3a:d9:0a:90:43:9a:6d:63:f6:b3:43:84:b1:
61:ea:3f:4d:71:13:9b:fc:95:ed:5f:fe:5d:9d:6e:
1d:43:5c:ce:f8:21:d0:38:8c:3d:dc:c0:32:c8:cf:
60:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:8B:EB:3B:85:48:C8:2E:D2:99:A9:F9:D2:A5:B2:A4:CA:D8:32:83
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/h4vrO4VIyC7Sman50qWypMrYMoM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.54.10.0/23
Signature Algorithm: sha256WithRSAEncryption
38:ab:02:25:f9:ad:41:d0:65:99:f5:c6:7a:2b:2d:21:eb:0a:
db:7c:ba:1d:c2:9a:88:db:4e:b6:4f:01:73:a9:69:00:2d:64:
81:a0:89:82:e9:ec:e6:16:7a:48:9e:24:1e:f6:66:3b:93:15:
9b:89:af:4a:40:cd:0d:6a:c2:bc:2c:95:0b:39:ce:17:18:33:
df:73:29:05:f4:c5:42:13:43:da:dc:3d:8d:a3:6d:92:22:2a:
c5:db:7d:b4:8f:e1:fd:13:83:f3:5c:f0:61:e6:70:1e:c7:01:
99:f8:cf:4e:57:60:c2:4a:6a:85:c6:7c:0a:d5:7e:e9:b6:fb:
84:e8:a0:57:24:f5:15:e8:c1:c0:99:15:ca:f9:86:65:24:d7:
34:8f:d7:d2:89:63:77:7f:c6:8d:5b:d7:26:04:c2:06:7d:6f:
8b:a5:32:22:31:90:23:40:db:15:ce:75:1d:55:d8:73:7d:8d:
94:38:77:6a:94:7c:26:f8:62:b2:62:e6:2f:78:56:dc:c3:95:
4a:cb:89:f6:8d:d3:9e:a4:48:9c:ec:11:5f:8d:70:74:cd:08:
ba:12:07:12:f8:62:05:7e:f5:ee:32:26:71:44:7a:f0:1c:fd:
8c:4a:18:1a:da:61:d4:73:e9:52:b7:32:48:db:44:66:f5:65:
a4:37:e0:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:33:07 2025 by rpki-client on console.sobornost.net