Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/TJRDNcLYjVkFDa8GTWW7c5Jaqg4.roa
File: TJRDNcLYjVkFDa8GTWW7c5Jaqg4.roa (raw, json)
Hash identifier: EtbZl28hIr0ys88lPqneWH8Fsm5XHl1chOZCfdmmrEE=
Subject key identifier: 4C:94:43:35:C2:D8:8D:59:05:0D:AF:06:4D:65:BB:73:92:5A:AA:0E
Certificate issuer: /CN=70f9b16adf2fd31988859922b4457481dd7eef40
Certificate serial: 019514A17E8CCBD98E5D48EBB6D0D3E2FF57
Authority key identifier: 70:F9:B1:6A:DF:2F:D3:19:88:85:99:22:B4:45:74:81:DD:7E:EF:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cPmxat8v0xmIhZkitEV0gd1-70A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/TJRDNcLYjVkFDa8GTWW7c5Jaqg4.roa
Signing time: Mon 17 Feb 2025 15:58:02 +0000
ROA not before: Mon 17 Feb 2025 15:58:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 141.226.245.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:14:a1:7e:8c:cb:d9:8e:5d:48:eb:b6:d0:d3:e2:ff:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70f9b16adf2fd31988859922b4457481dd7eef40
Validity
Not Before: Feb 17 15:58:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4c944335c2d88d59050daf064d65bb73925aaa0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:42:6b:1b:0f:10:e1:50:2c:14:01:94:79:3e:
93:16:1c:af:9c:23:86:95:3f:a4:78:65:c8:c6:f7:
bf:ec:a4:18:75:a3:51:79:6d:4b:10:98:42:65:d3:
dc:0a:c3:c6:5a:2d:ec:90:cb:69:39:c4:c2:eb:5e:
8c:c1:2a:86:3a:3f:38:b0:48:83:d1:98:4c:35:56:
43:31:54:f3:67:4c:c9:46:cd:95:3c:74:7b:04:88:
6c:75:c3:37:c6:1f:c1:8e:1d:c9:68:b9:c7:8e:0a:
5b:db:9c:a7:84:49:a2:12:bf:a1:d0:53:cd:37:c1:
b1:a2:70:a1:a9:66:03:87:2b:9c:de:19:1b:17:4e:
99:b3:cb:9a:9e:82:20:41:7c:63:c3:17:c2:39:89:
99:4f:a2:d1:dc:c0:83:cd:d7:0e:ba:03:97:1a:8f:
00:88:d3:c7:1a:c5:83:86:67:24:c3:40:ab:0d:62:
27:5d:32:e3:20:b5:24:b6:16:1f:39:1c:bf:0d:ec:
17:95:f0:6e:77:55:02:dc:8d:c5:92:61:0b:1f:a1:
b0:c0:9f:51:fc:10:15:8a:2c:49:fb:b1:c9:d2:2b:
e6:38:98:55:79:25:9a:cd:d7:31:73:90:ba:5a:4f:
ae:b1:88:5a:34:11:45:5d:6d:a9:b1:0f:9e:20:fc:
21:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:94:43:35:C2:D8:8D:59:05:0D:AF:06:4D:65:BB:73:92:5A:AA:0E
X509v3 Authority Key Identifier:
keyid:70:F9:B1:6A:DF:2F:D3:19:88:85:99:22:B4:45:74:81:DD:7E:EF:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cPmxat8v0xmIhZkitEV0gd1-70A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/TJRDNcLYjVkFDa8GTWW7c5Jaqg4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/cPmxat8v0xmIhZkitEV0gd1-70A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.226.245.0/24
Signature Algorithm: sha256WithRSAEncryption
18:62:dd:5d:0b:49:49:3a:fd:9f:55:7a:83:f0:05:cd:0c:8f:
35:f5:d0:92:fe:bc:38:b2:39:50:1a:bb:7d:bf:e4:f8:b1:77:
ad:1a:4d:b4:74:91:21:81:87:09:a1:63:a1:91:a3:99:c0:79:
59:c4:76:70:a3:b6:93:3f:af:fd:35:e0:aa:3e:5b:e6:9a:97:
22:0d:63:6f:3d:e1:70:03:54:51:22:91:c5:1f:42:83:0e:21:
65:49:7f:d6:7b:d1:90:1a:f5:c8:bb:49:38:e4:1c:cf:b4:f8:
1c:90:8f:3f:82:21:c0:73:f3:84:8f:a4:d9:f7:3e:c8:8e:38:
fb:23:86:c3:a7:28:7a:0b:79:b1:99:f7:1f:de:05:ed:a8:be:
57:1b:ed:be:3f:03:9b:81:1d:9a:f0:89:13:10:2d:dc:6d:1e:
ca:ce:02:b5:41:15:10:e1:9f:bc:0e:2d:5d:63:f8:19:43:c7:
32:3e:55:65:32:c1:de:22:84:fa:86:0e:40:0b:50:11:ed:2f:
e9:ff:d9:7e:88:96:cf:88:46:9c:21:a1:1c:a8:91:61:0f:be:
19:d9:5c:89:81:4e:6b:2b:d1:1e:b5:96:9a:7a:f6:c5:5a:bd:
cc:34:46:05:08:da:d9:1f:56:be:d2:d3:d1:b9:48:a0:43:67:
63:0a:0e:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 8 04:49:46 2025 by rpki-client on console.sobornost.net