Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/tAcjFos5oDT4EzynP-yphmNjnYw.roa
File: tAcjFos5oDT4EzynP-yphmNjnYw.roa (raw, json)
Hash identifier: VWOhT61czYSeN9S1ms3okP9vpKMGiU0IJN+FU1lJ6sQ=
Subject key identifier: B4:07:23:16:8B:39:A0:34:F8:13:3C:A7:3F:EC:A9:86:63:63:9D:8C
Certificate issuer: /CN=cdb83cfe5489835f294d0af4dd4db6e3dc25f1f3
Certificate serial: 0194221F6B6945242770FD7F664618A04054
Authority key identifier: CD:B8:3C:FE:54:89:83:5F:29:4D:0A:F4:DD:4D:B6:E3:DC:25:F1:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zbg8_lSJg18pTQr03U2249wl8fM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/tAcjFos5oDT4EzynP-yphmNjnYw.roa
Signing time: Wed 01 Jan 2025 13:47:51 +0000
ROA not before: Wed 01 Jan 2025 13:47:51 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 10282
IP address blocks: 57.66.0.0/15 maxlen: 32
57.87.82.0/24 maxlen: 24
57.90.0.0/16 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:6b:69:45:24:27:70:fd:7f:66:46:18:a0:40:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdb83cfe5489835f294d0af4dd4db6e3dc25f1f3
Validity
Not Before: Jan 1 13:47:51 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b40723168b39a034f8133ca73feca98663639d8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:e1:d5:a9:68:4c:af:7f:94:1a:c5:23:fa:9b:
60:91:5b:73:3f:a6:4e:8a:71:e3:d6:1e:8a:9a:62:
48:d8:17:fd:9a:06:ed:c3:b6:af:90:d2:d0:93:e8:
cf:2b:8e:26:c4:10:ed:75:67:d5:49:c2:56:b9:34:
eb:27:eb:1b:a9:35:ef:df:a6:da:97:2c:28:f4:b0:
29:94:2e:cf:2d:de:b7:22:bb:d0:79:9c:95:af:cd:
ac:b7:4c:38:03:73:d7:82:55:a6:72:b0:5d:cd:6e:
8d:1f:21:c2:5d:46:4c:8b:6f:e3:03:f2:59:6a:ef:
55:95:67:ec:b0:cd:fd:83:3a:bc:52:2d:7f:c7:ec:
46:48:3b:9e:04:e9:62:1a:24:f8:07:16:35:f3:74:
ea:75:81:51:f6:9a:fe:95:38:1e:b2:dc:ee:c2:97:
51:ae:25:87:5a:b9:75:e7:f1:2b:cd:34:f4:52:fa:
de:7c:8d:cc:77:ad:a6:f8:21:56:cb:16:bf:cd:18:
ae:56:62:0c:4a:b4:72:53:42:84:4a:0e:1a:63:fc:
ca:70:cf:88:f1:c4:58:6d:59:05:91:6f:a3:fb:ed:
41:4c:ab:48:51:a0:17:1d:9d:ff:d1:39:85:b5:f6:
64:53:50:57:2b:40:1c:c9:2c:12:22:be:33:4b:fa:
ed:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:07:23:16:8B:39:A0:34:F8:13:3C:A7:3F:EC:A9:86:63:63:9D:8C
X509v3 Authority Key Identifier:
keyid:CD:B8:3C:FE:54:89:83:5F:29:4D:0A:F4:DD:4D:B6:E3:DC:25:F1:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zbg8_lSJg18pTQr03U2249wl8fM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/tAcjFos5oDT4EzynP-yphmNjnYw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/zbg8_lSJg18pTQr03U2249wl8fM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
57.66.0.0/15
57.87.82.0/24
57.90.0.0/16
Signature Algorithm: sha256WithRSAEncryption
a5:16:b6:68:77:5b:82:ef:21:d2:5a:d5:b3:5d:0f:da:df:38:
1c:4a:fd:d4:bc:c8:fd:21:af:e0:44:4e:30:fe:0d:75:d6:9a:
f9:70:6d:90:a7:02:73:d6:bc:87:34:82:df:ef:be:f8:c2:58:
c2:0d:a8:25:e5:74:68:40:d9:08:42:83:04:2d:ca:59:ea:7a:
00:43:9d:4e:cd:97:a3:54:74:d2:74:69:11:d0:3f:a6:1c:ab:
d6:57:41:d7:b2:d7:d5:e4:44:53:2a:ee:d8:1b:a5:1d:8a:50:
20:70:9f:83:70:2a:ab:78:d7:70:6c:31:da:c5:d3:13:8b:eb:
94:29:21:6d:9c:c0:02:16:c9:fc:99:2c:b4:22:21:14:50:20:
32:0a:f4:1e:a0:21:ec:4e:0a:81:2c:89:b5:a6:22:71:c5:9c:
2f:16:6d:5d:99:8f:f5:32:92:ce:60:0b:66:83:19:e4:50:8a:
6e:ec:79:d0:37:65:8d:9b:61:fc:ca:04:6f:6d:c4:70:61:53:
7d:f7:4b:cd:e7:98:53:ec:1f:0d:08:53:08:0a:0f:50:c2:27:
61:26:8d:f3:b4:37:dc:d2:f4:50:01:ca:e0:12:2b:28:a4:a3:
5d:ab:b7:1a:b7:8a:17:ff:b3:65:3d:ab:b8:13:76:25:c4:4b:
f0:6b:15:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:54 2025 by rpki-client on console.sobornost.net