Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/d39416-f46a-4f82-b1e1-e0d1f7cacff1/1/TIq2cJHpR6KvpC_5zEbT28CzxmQ.roa
File: TIq2cJHpR6KvpC_5zEbT28CzxmQ.roa (raw, json)
Hash identifier: AjELo4AcRNi6tjWnrWUw4e1yYtJi2dPHt3KwG3rn9eY=
Subject key identifier: 4C:8A:B6:70:91:E9:47:A2:AF:A4:2F:F9:CC:46:D3:DB:C0:B3:C6:64
Certificate issuer: /CN=27873afe6330b7ae9ee562e0c988e9fd5ea8f567
Certificate serial: 019422FB02F71575BE7FD31765C417263B66
Authority key identifier: 27:87:3A:FE:63:30:B7:AE:9E:E5:62:E0:C9:88:E9:FD:5E:A8:F5:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J4c6_mMwt66e5WLgyYjp_V6o9Wc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/d39416-f46a-4f82-b1e1-e0d1f7cacff1/1/TIq2cJHpR6KvpC_5zEbT28CzxmQ.roa
Signing time: Wed 01 Jan 2025 17:47:43 +0000
ROA not before: Wed 01 Jan 2025 17:47:43 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 57094
IP address blocks: 141.8.232.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fb:02:f7:15:75:be:7f:d3:17:65:c4:17:26:3b:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27873afe6330b7ae9ee562e0c988e9fd5ea8f567
Validity
Not Before: Jan 1 17:47:43 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4c8ab67091e947a2afa42ff9cc46d3dbc0b3c664
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:2c:cb:52:2b:b8:01:41:e4:18:c6:a6:32:84:
a0:f7:e3:f3:0c:52:51:23:8a:e5:ec:bb:3e:ba:f4:
f9:45:8d:46:0d:b7:a7:84:36:41:2b:56:7e:cd:44:
dc:b6:54:d6:b4:04:6e:e3:d6:45:cd:2c:ea:2f:33:
f6:d7:72:1d:b6:01:2a:b8:ca:31:d8:eb:d1:dd:80:
d0:89:4b:25:f8:7c:0b:1c:03:fa:5b:3b:18:9f:d0:
79:db:3e:6e:99:27:de:9f:1d:c1:2e:f0:67:fb:19:
1d:e2:8f:e7:61:d0:08:4e:6b:9e:82:d1:11:d4:f8:
66:37:87:a3:64:9d:bb:f4:79:d3:d1:fa:51:2f:5d:
c4:8e:ec:1c:5d:5a:e8:01:2c:37:3d:50:a8:bc:85:
40:81:00:ba:43:70:7a:28:4d:af:1e:37:35:59:75:
4b:43:55:a5:06:e5:25:86:16:10:81:f9:80:56:23:
a5:cd:4d:29:20:55:24:e5:4d:cc:d9:e6:86:23:0e:
45:5e:71:d6:07:1f:c3:04:73:5d:99:16:5d:5a:59:
82:44:6a:e0:c0:62:76:06:51:81:7a:5e:bb:7d:4d:
90:d7:59:ca:4f:42:c7:aa:08:ca:d8:4d:66:65:4e:
22:8d:b2:c7:14:b7:ae:72:18:73:a1:cb:79:9d:5a:
b7:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:8A:B6:70:91:E9:47:A2:AF:A4:2F:F9:CC:46:D3:DB:C0:B3:C6:64
X509v3 Authority Key Identifier:
keyid:27:87:3A:FE:63:30:B7:AE:9E:E5:62:E0:C9:88:E9:FD:5E:A8:F5:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J4c6_mMwt66e5WLgyYjp_V6o9Wc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/d39416-f46a-4f82-b1e1-e0d1f7cacff1/1/TIq2cJHpR6KvpC_5zEbT28CzxmQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/d39416-f46a-4f82-b1e1-e0d1f7cacff1/1/J4c6_mMwt66e5WLgyYjp_V6o9Wc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.8.232.0/21
Signature Algorithm: sha256WithRSAEncryption
04:47:65:a6:11:dd:8d:8b:1e:b4:7a:d7:4c:bb:d5:8e:4b:7d:
c1:54:d4:9f:ef:de:0a:ad:37:a9:84:9a:6e:48:6f:eb:65:d0:
f7:95:86:34:3d:81:b1:b2:04:4d:37:9b:42:74:61:ae:1d:7d:
ca:6c:a9:03:91:26:32:a0:4a:b6:41:3c:d9:52:a5:1e:5f:85:
3d:5b:8f:8e:00:fb:15:a5:60:25:21:c9:2e:a1:3f:a7:08:4a:
7e:c9:f5:21:34:ee:e1:05:0d:16:46:be:74:d2:3c:bb:a9:4a:
14:a5:72:3f:fd:f6:a1:6d:27:23:b3:64:2e:66:f8:36:f9:e7:
5f:e9:43:19:8d:e6:b5:97:f5:c8:45:63:f7:2a:ca:bb:fb:f5:
08:1b:97:6a:09:06:47:1c:29:1a:9d:19:59:50:ac:bd:39:69:
92:62:cd:28:56:05:ec:e0:14:c1:d1:29:be:e0:20:eb:50:06:
af:87:f1:ec:1a:31:ce:f9:75:27:88:7e:ff:47:48:31:8c:45:
4c:19:80:aa:7c:18:c0:9f:e0:35:05:34:d7:14:9d:fa:a0:0a:
40:b7:ee:18:bc:d2:d5:28:19:9e:65:08:38:ab:eb:63:9b:f1:
84:c5:a2:6a:da:04:28:2d:f3:3a:fb:36:fe:7f:75:d3:c1:1b:
57:1d:47:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:05 2025 by rpki-client on console.sobornost.net