Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/b6a233-6f80-4f4e-9312-e3f49ac49560/1/fS7Vtpenx3ISocQLcsKDmT4cdAc.roa
File: fS7Vtpenx3ISocQLcsKDmT4cdAc.roa (raw, json)
Hash identifier: lsacutCDcdT1KWfBtvedBOBvauWcszwNt+V8+YsxMyc=
Subject key identifier: 7D:2E:D5:B6:97:A7:C7:72:12:A1:C4:0B:72:C2:83:99:3E:1C:74:07
Certificate issuer: /CN=716f6d11f0ce63230181a73f85a666170f7389bd
Certificate serial: 019423D6D4F9F830C5A5D9BBCF5629E1049E
Authority key identifier: 71:6F:6D:11:F0:CE:63:23:01:81:A7:3F:85:A6:66:17:0F:73:89:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cW9tEfDOYyMBgac_haZmFw9zib0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/b6a233-6f80-4f4e-9312-e3f49ac49560/1/fS7Vtpenx3ISocQLcsKDmT4cdAc.roa
Signing time: Wed 01 Jan 2025 21:47:49 +0000
ROA not before: Wed 01 Jan 2025 21:47:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 1741
IP address blocks: 130.231.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d6:d4:f9:f8:30:c5:a5:d9:bb:cf:56:29:e1:04:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=716f6d11f0ce63230181a73f85a666170f7389bd
Validity
Not Before: Jan 1 21:47:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7d2ed5b697a7c77212a1c40b72c283993e1c7407
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:27:20:03:f2:9c:0e:dc:d2:2e:0a:83:08:7c:
0b:13:80:c5:b6:84:ae:9f:5c:06:8f:3e:a5:1e:41:
05:34:09:03:e2:06:89:36:ff:99:39:bc:65:53:28:
84:aa:18:49:e0:14:22:de:14:47:97:36:64:33:7f:
0d:69:c6:85:65:51:5d:0a:43:a8:9b:fb:14:4f:41:
87:c5:d1:34:cc:05:a1:3a:f5:f9:e3:58:3a:3b:30:
b0:07:b7:88:f8:0b:01:85:8f:bc:49:ee:71:1b:fa:
5b:31:ac:15:51:97:b3:b1:d0:e6:ff:50:c2:b9:f0:
cd:64:2a:af:eb:65:72:21:c6:52:b5:cb:d6:aa:5b:
5f:a6:90:0a:36:c6:0d:4d:46:a6:f0:d5:94:0f:1e:
96:1e:a4:e2:bc:1f:cc:f1:70:e5:cb:6a:8a:dd:ed:
70:d2:66:2b:19:8b:22:10:5d:70:c6:06:ca:8b:69:
87:ac:5c:b9:06:ee:c9:03:e0:8a:84:9c:5d:b4:5f:
dd:7d:28:ad:dc:9d:85:d8:e0:16:61:44:be:62:89:
ef:b1:28:6a:76:c8:63:ce:28:8e:21:0e:22:4e:e4:
d2:f7:b5:b9:e5:42:a3:bc:90:bb:75:3d:c9:0f:27:
2d:0d:19:d6:2e:91:98:41:b3:60:35:51:52:3e:ca:
66:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:2E:D5:B6:97:A7:C7:72:12:A1:C4:0B:72:C2:83:99:3E:1C:74:07
X509v3 Authority Key Identifier:
keyid:71:6F:6D:11:F0:CE:63:23:01:81:A7:3F:85:A6:66:17:0F:73:89:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cW9tEfDOYyMBgac_haZmFw9zib0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/b6a233-6f80-4f4e-9312-e3f49ac49560/1/fS7Vtpenx3ISocQLcsKDmT4cdAc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/b6a233-6f80-4f4e-9312-e3f49ac49560/1/cW9tEfDOYyMBgac_haZmFw9zib0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
130.231.0.0/16
Signature Algorithm: sha256WithRSAEncryption
5d:fc:d2:d0:0a:67:af:25:75:6d:2c:a0:a1:51:54:2b:b1:ab:
6a:dc:db:e2:73:04:45:ed:ac:f7:37:dd:af:9d:fb:58:9d:80:
75:4a:07:93:31:f8:c5:41:7c:8a:ce:22:ea:ac:ef:d0:12:40:
19:0d:ff:4a:82:34:0b:73:97:23:8b:75:3e:61:6f:e6:20:78:
61:48:a6:16:af:87:fe:63:06:0b:8f:3d:80:19:8a:f2:61:7f:
5b:e9:06:85:00:07:97:79:df:57:3b:9c:ac:25:dc:3d:aa:fb:
bb:c3:ec:29:41:f5:ff:ff:89:e7:d7:95:de:f4:a0:fa:cd:17:
5e:37:ea:ae:c1:74:a6:a0:9b:b6:b6:67:27:fa:05:54:0c:7b:
10:2e:1a:e1:3e:94:af:dd:29:26:57:47:d6:d7:46:27:92:5c:
c1:3f:a0:9c:a4:5c:34:51:9c:27:33:32:34:68:13:54:ed:df:
4e:bc:ad:e6:e0:c5:fa:07:2e:b5:7c:b5:97:01:8a:08:e9:f2:
ab:a6:33:ca:a3:b8:2e:97:b2:14:ab:12:87:2a:1a:ee:1a:84:
35:43:06:58:ab:cd:04:b2:1c:d2:4f:b3:ca:01:d1:6f:06:91:
e9:a6:4f:1b:5a:e3:ba:95:2e:83:17:4a:6e:ac:99:aa:8e:8d:
b3:83:1f:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:35 2025 by rpki-client on console.sobornost.net