Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/a8c318-338d-4932-8acb-e97ae5c60568/1/RFRyemMh5cFgw6G_Hs8rXpd2Ve4.roa
File: RFRyemMh5cFgw6G_Hs8rXpd2Ve4.roa (raw, json)
Hash identifier: Q/GgNiv43TfFu8lH2/Qowfw2+WyW8sNGbwKNhf/jdeM=
Subject key identifier: 44:54:72:7A:63:21:E5:C1:60:C3:A1:BF:1E:CF:2B:5E:97:76:55:EE
Certificate issuer: /CN=f6516d7f28cdbe8b3f55d75372aad4d3b10be09f
Certificate serial: 01942747A829663F074951A80DFD0F38E94C
Authority key identifier: F6:51:6D:7F:28:CD:BE:8B:3F:55:D7:53:72:AA:D4:D3:B1:0B:E0:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9lFtfyjNvos_VddTcqrU07EL4J8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/a8c318-338d-4932-8acb-e97ae5c60568/1/RFRyemMh5cFgw6G_Hs8rXpd2Ve4.roa
Signing time: Thu 02 Jan 2025 13:49:55 +0000
ROA not before: Thu 02 Jan 2025 13:49:55 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 565
IP address blocks: 130.188.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:47:a8:29:66:3f:07:49:51:a8:0d:fd:0f:38:e9:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f6516d7f28cdbe8b3f55d75372aad4d3b10be09f
Validity
Not Before: Jan 2 13:49:55 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4454727a6321e5c160c3a1bf1ecf2b5e977655ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:a4:6c:a7:37:f4:20:6d:25:a4:9b:5f:bb:f1:
56:32:0d:16:b5:28:1f:9c:aa:2a:76:be:5a:ac:50:
9e:4e:5a:46:63:2e:21:73:4e:51:1a:52:24:6a:6c:
34:d5:be:64:00:67:75:92:72:22:ab:80:44:9d:2e:
7e:53:c2:65:ef:d0:7a:77:7b:cd:df:b8:ab:b6:33:
ec:7a:63:56:d1:da:3f:43:6d:62:44:4b:2a:c9:17:
42:7f:07:03:9b:62:a7:81:2d:c3:9c:8e:db:75:42:
ff:1a:cb:12:bc:13:a4:c5:b9:ee:ec:72:d0:6a:09:
c9:b8:14:91:c9:28:cf:03:f3:70:67:c3:34:b0:7c:
ae:06:5d:2f:a2:59:e1:92:53:4d:c3:7e:9b:4f:bc:
33:06:b8:ce:9e:a2:fc:f7:e5:4f:a2:d0:79:e5:a5:
23:40:2a:b8:1f:1a:0d:94:0c:81:af:c4:9a:39:dd:
0d:96:52:ea:b5:3c:18:43:5a:a4:f8:0b:ff:41:47:
c3:3f:40:c6:f1:11:5c:9d:ec:bb:1f:51:c6:d9:6a:
7f:54:2d:6b:62:41:8a:d4:a2:0c:10:37:99:ac:e0:
cd:1b:07:09:ea:19:e7:fa:02:4b:c1:79:d4:8b:45:
a7:ed:f3:11:6a:46:61:8b:46:15:4b:74:b2:03:e0:
50:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:54:72:7A:63:21:E5:C1:60:C3:A1:BF:1E:CF:2B:5E:97:76:55:EE
X509v3 Authority Key Identifier:
keyid:F6:51:6D:7F:28:CD:BE:8B:3F:55:D7:53:72:AA:D4:D3:B1:0B:E0:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9lFtfyjNvos_VddTcqrU07EL4J8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/a8c318-338d-4932-8acb-e97ae5c60568/1/RFRyemMh5cFgw6G_Hs8rXpd2Ve4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/a8c318-338d-4932-8acb-e97ae5c60568/1/9lFtfyjNvos_VddTcqrU07EL4J8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
130.188.0.0/16
Signature Algorithm: sha256WithRSAEncryption
4c:72:6a:cb:07:86:a8:6e:64:41:9d:91:6d:7c:47:37:ea:24:
8c:7b:cb:8d:69:54:d9:cb:d6:c0:9d:52:e8:93:8a:da:81:f1:
bb:fe:55:2d:cf:18:a2:12:7b:15:a1:ca:07:97:4b:8b:38:5b:
b8:5c:01:ec:e5:a2:78:f5:09:b7:88:cf:3b:0a:21:93:c3:fa:
a3:9c:16:43:b7:b8:ad:c4:85:f2:de:0b:4e:0d:ad:b1:81:32:
93:e6:1e:c0:d6:4a:ec:ea:49:d5:a5:b0:96:88:41:d9:39:40:
20:3f:16:c4:15:41:73:28:ca:c0:e1:79:61:6b:26:ac:be:89:
03:67:fb:e0:a1:59:a8:88:4a:09:8b:f8:98:a3:1c:9f:35:7a:
a8:1a:66:50:2e:4c:9c:dd:0e:09:a5:c5:91:41:ad:41:67:ee:
2f:e0:38:d0:3a:3c:4d:9a:0f:bd:91:06:2a:70:17:05:89:92:
9c:61:fb:18:da:9e:c5:c2:e1:60:85:46:72:f4:93:6e:0b:6d:
8e:68:6a:97:49:db:2d:7c:ba:4b:fb:6c:96:26:b8:db:2f:eb:
43:41:af:26:41:e7:81:c8:21:c9:c1:18:1b:c9:66:f0:08:7b:
53:93:2a:d7:4c:6b:e2:45:4c:f8:a5:5b:0f:15:0f:4c:6e:c6:
f3:c5:d5:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:01 2025 by rpki-client on console.sobornost.net