Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/2309cc-fa79-44d1-8986-4d537cf01809/1/0tIESyblj1X2dLuOI_4dwtIbAGk.roa
File: 0tIESyblj1X2dLuOI_4dwtIbAGk.roa (raw, json)
Hash identifier: idjfq2bjhi01HcCWKceI06Z11yPeDXaUk7WJO8YC8DA=
Subject key identifier: D2:D2:04:4B:26:E5:8F:55:F6:74:BB:8E:23:FE:1D:C2:D2:1B:00:69
Certificate issuer: /CN=68417da8aa4fe0b8cff188412eedda63cbdcf996
Certificate serial: 01942143D979B7493C46E664905658140531
Authority key identifier: 68:41:7D:A8:AA:4F:E0:B8:CF:F1:88:41:2E:ED:DA:63:CB:DC:F9:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aEF9qKpP4LjP8YhBLu3aY8vc-ZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/2309cc-fa79-44d1-8986-4d537cf01809/1/0tIESyblj1X2dLuOI_4dwtIbAGk.roa
Signing time: Wed 01 Jan 2025 09:48:02 +0000
ROA not before: Wed 01 Jan 2025 09:48:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211274
IP address blocks: 193.56.11.0/24 maxlen: 24
2a0b:4740::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:43:d9:79:b7:49:3c:46:e6:64:90:56:58:14:05:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68417da8aa4fe0b8cff188412eedda63cbdcf996
Validity
Not Before: Jan 1 09:48:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d2d2044b26e58f55f674bb8e23fe1dc2d21b0069
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:7d:1b:27:c0:16:f1:30:3a:0f:82:bc:dc:9d:
27:f4:cb:b9:db:3b:34:86:2c:19:6d:98:9f:52:79:
9f:6c:92:57:e1:bf:7b:c0:4f:2a:60:4e:cf:d8:2d:
94:04:6f:85:a6:1e:55:a6:c6:b7:fb:3a:4c:16:25:
4c:2d:89:98:54:c7:58:37:77:60:d4:44:57:d5:c8:
89:32:43:7a:0d:57:0f:33:af:02:a2:a7:66:7d:a4:
3c:19:5c:16:61:11:e2:93:47:27:8f:d2:38:7d:35:
e0:ef:27:b6:db:35:04:7f:79:13:47:0e:01:59:9b:
52:46:25:cb:77:f8:cf:a9:1b:7f:de:bc:4f:3c:e6:
40:f4:b4:ad:0a:13:ab:33:69:c6:e7:84:64:d6:9a:
aa:3b:5c:ea:a3:c9:d4:c9:3e:61:da:02:c6:d2:53:
ef:f2:42:41:7e:ee:87:3b:4e:03:44:66:3a:37:3f:
2c:53:10:79:dd:3d:e4:4f:64:f4:85:4a:b4:33:11:
84:8d:bc:45:fb:32:63:69:83:e9:ec:6c:75:42:84:
1e:e1:8d:ea:be:7c:80:34:9d:30:b6:e5:59:23:f9:
9b:9c:da:4b:f5:97:8f:ab:1a:26:b0:3a:77:c3:f9:
68:dc:7c:65:4d:0a:2f:0d:37:2f:0b:1d:a4:3b:3e:
03:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:D2:04:4B:26:E5:8F:55:F6:74:BB:8E:23:FE:1D:C2:D2:1B:00:69
X509v3 Authority Key Identifier:
keyid:68:41:7D:A8:AA:4F:E0:B8:CF:F1:88:41:2E:ED:DA:63:CB:DC:F9:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aEF9qKpP4LjP8YhBLu3aY8vc-ZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/2309cc-fa79-44d1-8986-4d537cf01809/1/0tIESyblj1X2dLuOI_4dwtIbAGk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/2309cc-fa79-44d1-8986-4d537cf01809/1/aEF9qKpP4LjP8YhBLu3aY8vc-ZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.56.11.0/24
IPv6:
2a0b:4740::/29
Signature Algorithm: sha256WithRSAEncryption
3f:81:59:d5:dd:c4:ac:72:70:9c:c6:55:cc:49:98:3f:65:ce:
04:86:1a:85:43:09:79:fd:76:e0:d1:03:e7:41:c3:51:69:ea:
1a:92:86:a3:37:34:29:a9:e9:97:9f:b8:26:b5:b7:e9:5c:39:
50:bf:8a:d3:be:60:53:39:ba:0e:97:e0:62:0f:f2:ab:57:32:
12:b7:46:e1:98:32:f3:5e:0c:26:b8:1c:79:df:cd:e4:ca:94:
55:27:24:35:c1:52:48:6b:9a:5c:68:0a:66:1f:0a:87:b8:99:
f8:f4:7a:73:48:6e:d1:b3:17:5c:de:89:58:d0:2b:2c:f5:8e:
8d:85:cb:b8:8f:df:ba:54:45:39:27:7f:8b:70:63:67:e9:d7:
89:18:25:15:c1:24:06:bf:11:b4:97:70:8e:cd:ba:2f:e4:f2:
4b:77:57:bd:08:3e:2d:f3:32:a1:7d:b8:87:4d:13:cf:9c:0d:
e7:43:d1:12:1d:c4:67:4f:0b:87:39:a0:0e:28:e4:e3:88:82:
53:6f:3b:ff:47:58:48:07:c6:af:9f:fe:f3:31:0e:6c:11:c0:
17:79:0e:ac:0c:54:2c:67:8f:c3:6c:31:6a:f4:59:e9:2a:38:
b6:e1:74:ef:f9:bc:78:10:1f:d1:6b:77:eb:18:67:33:f1:62:
66:95:0c:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:33:08 2025 by rpki-client on console.sobornost.net