Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/4616d7-e808-4e47-a646-5b2f90df796d/1/ThZzWFH5INkQ7ymiA_IBq-KPEM4.roa
File: ThZzWFH5INkQ7ymiA_IBq-KPEM4.roa (raw, json)
Hash identifier: dM5mDKUs0Ppdg4qZBmK0UY+RheCcm2hY4o7VfDpWvQk=
Subject key identifier: 4E:16:73:58:51:F9:20:D9:10:EF:29:A2:03:F2:01:AB:E2:8F:10:CE
Certificate issuer: /CN=16fe0d024cddbaf868229122158971472b24cb4d
Certificate serial: 0194228DC57FEBDC6CECA1C2D609D058F596
Authority key identifier: 16:FE:0D:02:4C:DD:BA:F8:68:22:91:22:15:89:71:47:2B:24:CB:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Fv4NAkzduvhoIpEiFYlxRysky00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/4616d7-e808-4e47-a646-5b2f90df796d/1/ThZzWFH5INkQ7ymiA_IBq-KPEM4.roa
Signing time: Wed 01 Jan 2025 15:48:23 +0000
ROA not before: Wed 01 Jan 2025 15:48:23 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 57048
IP address blocks: 2a0e:f7c0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:c5:7f:eb:dc:6c:ec:a1:c2:d6:09:d0:58:f5:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=16fe0d024cddbaf868229122158971472b24cb4d
Validity
Not Before: Jan 1 15:48:23 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4e16735851f920d910ef29a203f201abe28f10ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:3c:82:4e:ea:a3:a3:40:5e:9a:e6:91:80:a3:
de:0f:19:a0:c6:10:15:85:a8:8e:b0:4c:69:ea:67:
d2:b8:b7:d9:bf:64:37:98:cf:47:c6:44:13:d9:d7:
ce:db:ec:4b:0f:7f:d9:bf:07:2a:81:ae:f2:72:f6:
e0:ea:06:cc:f5:8d:63:9e:4c:aa:d4:0d:c0:27:64:
2b:72:0a:b6:00:60:16:02:62:84:48:b7:84:47:c9:
da:89:fd:f0:fd:04:eb:3f:34:58:42:67:22:48:87:
cc:02:d7:21:da:54:3c:f7:64:7a:3f:2b:89:3f:eb:
dc:eb:8b:73:77:11:ee:6d:2c:9e:d8:e8:c7:65:da:
e9:dc:d1:25:71:f1:85:39:b3:0a:b1:f1:98:21:5c:
3e:2c:14:90:81:b7:eb:6f:9f:14:0b:ad:69:34:53:
35:d3:90:99:26:4f:fd:03:e8:20:f9:7c:15:ee:0b:
20:42:cc:92:0e:ca:96:70:f7:c6:4d:f7:4a:ef:78:
c6:c0:ef:8c:cd:12:ed:2c:ab:a8:98:23:c0:cf:fa:
55:ec:90:6a:64:cd:b0:7b:b3:0b:e5:4f:dd:e2:ed:
fe:cd:9e:6e:b2:4e:89:c6:a4:00:81:ee:6a:37:cd:
49:88:e6:a6:43:49:c0:da:d3:85:e0:97:50:18:27:
02:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:16:73:58:51:F9:20:D9:10:EF:29:A2:03:F2:01:AB:E2:8F:10:CE
X509v3 Authority Key Identifier:
keyid:16:FE:0D:02:4C:DD:BA:F8:68:22:91:22:15:89:71:47:2B:24:CB:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Fv4NAkzduvhoIpEiFYlxRysky00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/4616d7-e808-4e47-a646-5b2f90df796d/1/ThZzWFH5INkQ7ymiA_IBq-KPEM4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/4616d7-e808-4e47-a646-5b2f90df796d/1/Fv4NAkzduvhoIpEiFYlxRysky00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:f7c0::/29
Signature Algorithm: sha256WithRSAEncryption
28:20:b5:b1:e4:7b:b9:7c:fc:ba:78:7b:0f:39:58:bf:08:a3:
ee:8e:83:be:0a:8a:a1:74:2c:35:77:ee:9a:3d:f8:6f:57:57:
3d:ff:49:4e:6c:79:65:40:7f:ec:b9:6f:ce:a2:ee:68:6a:0e:
ff:e0:3e:63:49:11:12:7f:86:60:2b:d8:ee:bd:07:8e:d4:fd:
33:ad:73:cc:68:bb:bc:ef:76:7b:5a:98:0a:98:bd:38:0c:87:
98:2a:b6:68:c0:79:22:4d:9b:74:c6:88:9d:5e:5d:f7:48:0e:
e0:d3:6c:9b:2c:70:5a:9d:7b:f0:a9:13:c4:ed:e5:9c:0c:25:
46:40:cb:60:27:52:56:14:e8:fa:f8:a6:5a:a8:fe:04:37:47:
6a:2f:90:10:46:38:94:43:f9:64:be:89:18:3a:f7:38:48:40:
41:c8:59:c7:c7:2b:c3:c5:dd:ee:25:9d:16:2a:ff:ed:23:f9:
28:e6:54:bf:08:15:fe:6a:21:fe:d4:43:a2:5c:1f:13:86:12:
a8:de:f1:9c:47:52:4b:ba:61:67:d3:27:8b:4c:85:cc:34:74:
cf:89:96:4c:89:a4:f8:e1:e5:24:d6:3b:e2:c8:30:ef:ca:7d:
b9:12:cd:ae:72:d2:ef:03:39:55:9d:c9:0d:e3:fb:b9:24:74:
90:99:dc:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:17 2025 by rpki-client on console.sobornost.net