Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/9cc5e0-78df-4da6-ab0a-de9712c6e7c7/1/7p9fYepg7S5sPZLFet1T6ZdUO0A.roa
File: 7p9fYepg7S5sPZLFet1T6ZdUO0A.roa (raw, json)
Hash identifier: 2r3FGqEA9Im8wCkJsvxrPrJGP9I8oT0rHkJZAkKFfAQ=
Subject key identifier: EE:9F:5F:61:EA:60:ED:2E:6C:3D:92:C5:7A:DD:53:E9:97:54:3B:40
Certificate issuer: /CN=d21682877b6c8af75e2760cf8540e78452d4bec0
Certificate serial: 0194236A44A8A3ECC0C595BB6B8A5F521B79
Authority key identifier: D2:16:82:87:7B:6C:8A:F7:5E:27:60:CF:85:40:E7:84:52:D4:BE:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0haCh3tsivdeJ2DPhUDnhFLUvsA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/9cc5e0-78df-4da6-ab0a-de9712c6e7c7/1/7p9fYepg7S5sPZLFet1T6ZdUO0A.roa
Signing time: Wed 01 Jan 2025 19:49:14 +0000
ROA not before: Wed 01 Jan 2025 19:49:14 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 1741
IP address blocks: 130.232.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:6a:44:a8:a3:ec:c0:c5:95:bb:6b:8a:5f:52:1b:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d21682877b6c8af75e2760cf8540e78452d4bec0
Validity
Not Before: Jan 1 19:49:14 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ee9f5f61ea60ed2e6c3d92c57add53e997543b40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:c0:1e:ab:2a:f9:a1:76:4f:85:d4:66:fd:1f:
37:c7:cc:43:d4:c0:db:90:a5:86:e4:6b:68:d4:a2:
bd:2d:ee:9c:f3:18:10:80:a4:ca:16:64:66:d0:77:
6b:1d:50:4c:2f:79:5b:e9:e3:03:71:e4:eb:18:b3:
50:24:34:3a:b8:35:09:61:90:80:6c:0c:48:59:a1:
81:98:45:f8:0d:bd:bc:ae:20:1a:f2:e5:c3:45:ba:
ca:0e:c0:99:b1:4d:4c:72:cb:4a:63:56:c8:a0:2d:
20:c6:28:05:53:36:e3:01:76:69:ba:5c:a2:11:d4:
76:b9:17:e2:a0:35:c1:17:18:b1:12:e3:78:4d:ba:
a2:5a:56:ab:1a:ba:eb:2b:8f:1b:61:47:5c:6a:42:
a8:cd:6e:6e:ca:f4:0a:e3:75:69:c2:b5:0d:12:57:
13:4f:0f:e4:bd:57:32:57:65:1f:17:08:1a:f8:16:
e5:b5:bd:19:c7:c4:7b:4f:b3:a3:92:f0:f0:e0:e4:
ca:43:98:46:19:8d:60:98:da:6b:fc:4a:32:d7:c8:
5d:33:0f:80:53:b8:c4:62:68:37:9c:5e:98:c7:79:
46:f2:fc:8f:1d:23:80:db:e0:d1:4c:90:0c:52:04:
46:c9:64:d0:ec:a9:0e:34:95:5b:f9:5a:2e:15:c1:
60:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:9F:5F:61:EA:60:ED:2E:6C:3D:92:C5:7A:DD:53:E9:97:54:3B:40
X509v3 Authority Key Identifier:
keyid:D2:16:82:87:7B:6C:8A:F7:5E:27:60:CF:85:40:E7:84:52:D4:BE:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0haCh3tsivdeJ2DPhUDnhFLUvsA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/9cc5e0-78df-4da6-ab0a-de9712c6e7c7/1/7p9fYepg7S5sPZLFet1T6ZdUO0A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/9cc5e0-78df-4da6-ab0a-de9712c6e7c7/1/0haCh3tsivdeJ2DPhUDnhFLUvsA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
130.232.0.0/16
Signature Algorithm: sha256WithRSAEncryption
5e:22:82:0e:6a:7b:ec:4d:ad:ae:1f:9e:0c:52:00:32:50:a0:
66:b1:48:f8:45:e4:0b:5c:19:83:37:bc:65:29:b0:fa:3d:91:
eb:80:42:6f:34:18:69:22:29:f1:04:1e:f6:af:35:7b:ac:23:
3f:ef:f4:a0:6b:0b:2a:a4:f4:49:4f:e7:5d:72:c7:82:37:c2:
a4:fe:10:c1:91:d3:2c:cd:1c:4e:98:94:6c:73:cd:ab:24:bb:
7d:40:92:9b:c6:08:10:d8:e4:09:8d:a9:23:37:f2:5d:f2:9d:
64:75:73:a8:a6:e7:f6:43:87:d2:8c:1b:14:bf:fe:b4:2b:ff:
4f:ff:bb:00:6f:4c:59:37:40:68:6c:a5:0f:36:cf:d9:e7:8d:
13:0f:1b:b6:a6:7d:ad:90:c4:ad:f6:9f:ae:c5:22:aa:3f:e0:
fc:56:2c:38:46:d8:bf:ce:9c:a9:e3:34:a7:ca:bd:01:de:7e:
5e:dc:cc:80:67:10:25:15:0f:c2:56:dd:f8:14:18:07:f3:ca:
eb:f8:b1:40:ba:f7:bb:bc:02:29:c0:27:6e:d8:79:b0:9e:f9:
7e:b4:4c:60:b6:8d:09:06:b4:48:98:2f:e9:f4:43:14:f8:78:
e1:0e:c3:52:bc:cc:02:f8:71:48:38:73:8a:48:24:f7:70:2e:
9a:a0:0a:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:05 2025 by rpki-client on console.sobornost.net