Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/4ff06f-e97f-4c5a-9da7-7ee090504fba/1/2hxXPcSPbR7reDkSV26LIEjhs-s.roa
File: 2hxXPcSPbR7reDkSV26LIEjhs-s.roa (raw, json)
Hash identifier: fgX/zrhdCcQCsldJ7ZwMFpv61/0L0yZvl/fYJkWClmA=
Subject key identifier: DA:1C:57:3D:C4:8F:6D:1E:EB:78:39:12:57:6E:8B:20:48:E1:B3:EB
Certificate issuer: /CN=a7f00d1bffff3a53e94f867d743d031b922db5b1
Certificate serial: 019422FC39368EA905406F96CA33122F7DC6
Authority key identifier: A7:F0:0D:1B:FF:FF:3A:53:E9:4F:86:7D:74:3D:03:1B:92:2D:B5:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p_ANG___OlPpT4Z9dD0DG5IttbE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/4ff06f-e97f-4c5a-9da7-7ee090504fba/1/2hxXPcSPbR7reDkSV26LIEjhs-s.roa
Signing time: Wed 01 Jan 2025 17:49:02 +0000
ROA not before: Wed 01 Jan 2025 17:49:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 12905
IP address blocks: 46.29.1.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fc:39:36:8e:a9:05:40:6f:96:ca:33:12:2f:7d:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7f00d1bffff3a53e94f867d743d031b922db5b1
Validity
Not Before: Jan 1 17:49:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=da1c573dc48f6d1eeb783912576e8b2048e1b3eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:97:dd:e5:a8:20:bf:2f:28:d3:5b:c3:ff:9a:
9e:75:bc:f5:85:06:72:4f:30:ed:f1:0b:6d:3d:59:
03:81:b2:9e:32:8b:25:26:dc:7b:74:e5:42:0b:d3:
a4:68:d7:3e:62:ff:5b:e4:82:68:3c:b2:08:3a:49:
35:3d:36:b7:27:34:97:59:4e:58:66:d5:c8:61:19:
ab:8d:ee:37:bd:f6:78:06:5a:ed:80:c6:e3:d9:56:
6e:c9:71:12:4a:bc:de:d5:a2:39:4c:a2:12:9d:5f:
88:cb:08:a6:95:ef:3f:37:ea:67:76:4b:1a:39:85:
e9:b8:d6:a5:3a:b3:30:9b:60:6f:a6:ae:cf:c3:34:
7f:2c:c9:16:37:81:52:dd:ef:d6:74:f1:e6:d5:8c:
1c:72:17:d9:87:7c:d7:04:ce:77:fb:1f:e0:f5:14:
73:38:29:d7:b9:c1:b9:45:fe:84:30:47:22:25:e4:
7d:19:e4:57:ae:02:26:6d:d7:71:bb:7a:79:b6:bb:
6d:9e:57:65:c4:a0:f0:26:5c:df:e2:56:94:4a:a7:
0b:b8:48:e3:37:83:a9:27:78:56:60:23:f9:b8:a9:
05:b8:ea:84:1d:e7:70:9d:4c:d5:6f:c6:52:e1:64:
24:30:e6:01:fa:7f:27:07:35:64:f0:88:7b:45:75:
7b:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:1C:57:3D:C4:8F:6D:1E:EB:78:39:12:57:6E:8B:20:48:E1:B3:EB
X509v3 Authority Key Identifier:
keyid:A7:F0:0D:1B:FF:FF:3A:53:E9:4F:86:7D:74:3D:03:1B:92:2D:B5:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p_ANG___OlPpT4Z9dD0DG5IttbE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/4ff06f-e97f-4c5a-9da7-7ee090504fba/1/2hxXPcSPbR7reDkSV26LIEjhs-s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/4ff06f-e97f-4c5a-9da7-7ee090504fba/1/p_ANG___OlPpT4Z9dD0DG5IttbE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.29.1.0/24
Signature Algorithm: sha256WithRSAEncryption
01:61:09:cf:af:06:41:42:82:52:13:dc:ca:da:c3:00:50:7f:
e4:30:66:f4:98:23:30:b0:23:29:58:03:27:d0:09:b5:89:ef:
ba:23:d8:a8:a2:bd:8b:7f:cc:e6:ac:4b:a3:a8:80:ad:3f:df:
32:27:45:54:88:9b:37:e9:7a:c7:97:f3:bc:d2:ae:21:24:f2:
27:c0:90:a1:fe:43:1e:10:c7:a0:7a:01:15:e6:a2:79:25:02:
84:f4:48:be:4a:be:1d:96:dc:34:e1:df:6e:9e:20:9e:90:62:
db:80:a5:15:6b:87:28:a8:69:32:96:a2:7e:4f:4b:4f:7c:25:
1b:d3:d4:31:b8:0a:06:5a:e7:59:08:28:73:5c:7a:53:38:85:
b8:4e:f4:7b:29:29:80:9b:d3:dd:21:28:06:d0:82:51:bd:ba:
49:b9:14:07:47:8c:ae:9d:f9:cb:43:7f:5f:72:2c:1d:27:46:
0d:43:f3:28:71:97:e8:63:5f:ff:a7:68:be:90:63:08:f5:30:
80:fe:24:29:d5:1e:68:49:73:d7:ac:9a:a6:99:88:92:0f:7c:
98:45:d0:0c:a6:41:b8:ea:91:06:97:5e:3f:00:bc:9c:40:61:
22:fa:47:ad:83:f3:86:f0:0e:34:12:75:36:45:a1:c4:ec:8e:
10:fb:e6:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:04 2025 by rpki-client on console.sobornost.net