Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/9fc14c-c366-46ff-aaf7-8949e751b219/1/KW800OmJGIdT7uikc0QcQ975IG4.roa
File: KW800OmJGIdT7uikc0QcQ975IG4.roa (raw, json)
Hash identifier: dwHKNqVSICACPiCia+yUDPbsR26gug+E9f0Pra0zV6s=
Subject key identifier: 29:6F:34:D0:E9:89:18:87:53:EE:E8:A4:73:44:1C:43:DE:F9:20:6E
Certificate issuer: /CN=de19baa8c880a9459dc5f44d675dea4ef96dbdef
Certificate serial: 019425217C76ACC6840FC512852BCCFA6ED0
Authority key identifier: DE:19:BA:A8:C8:80:A9:45:9D:C5:F4:4D:67:5D:EA:4E:F9:6D:BD:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3hm6qMiAqUWdxfRNZ13qTvltve8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/9fc14c-c366-46ff-aaf7-8949e751b219/1/KW800OmJGIdT7uikc0QcQ975IG4.roa
Signing time: Thu 02 Jan 2025 03:48:58 +0000
ROA not before: Thu 02 Jan 2025 03:48:58 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 553
IP address blocks: 141.59.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:7c:76:ac:c6:84:0f:c5:12:85:2b:cc:fa:6e:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de19baa8c880a9459dc5f44d675dea4ef96dbdef
Validity
Not Before: Jan 2 03:48:58 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=296f34d0e989188753eee8a473441c43def9206e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:36:33:b7:df:59:6e:5d:71:14:14:7b:35:14:
07:f9:4a:2b:2b:3b:c5:eb:a6:0d:d7:b2:77:00:44:
94:fe:bc:7b:08:62:a2:21:31:b3:0a:fa:df:12:e3:
08:1f:1e:a8:4f:31:7d:45:e5:42:5d:df:0f:2a:aa:
72:46:73:c7:00:e2:5d:4b:87:9d:dc:e8:57:65:26:
45:a8:ef:d8:76:df:79:d1:3f:72:b0:b3:1e:bb:e3:
b3:d8:63:72:fa:d2:36:7e:15:22:f8:97:93:7e:07:
67:d1:12:57:41:29:66:d0:cc:97:0c:f9:dd:f8:02:
d3:f3:fd:8b:8a:4d:d7:e6:0d:71:51:ce:d9:7d:47:
a4:a6:c4:5c:24:20:76:1a:a2:44:fd:20:e4:43:78:
11:02:ac:cd:6c:36:7d:65:5c:29:07:45:d5:7f:65:
a9:55:fa:33:92:df:b9:68:68:4e:16:8e:bf:11:53:
cd:b7:ac:91:cd:df:3f:dc:a7:41:02:07:b8:8b:33:
84:f3:e5:4d:30:1a:a0:b0:3e:6e:c6:ff:03:96:28:
a6:70:e3:3c:e1:d1:62:83:7c:45:31:53:be:59:ba:
6c:15:a2:35:c7:bc:5a:cc:2d:ac:72:a3:2c:10:a6:
6b:30:5f:d2:35:7e:ff:e3:66:64:9c:0d:e6:48:50:
ab:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:6F:34:D0:E9:89:18:87:53:EE:E8:A4:73:44:1C:43:DE:F9:20:6E
X509v3 Authority Key Identifier:
keyid:DE:19:BA:A8:C8:80:A9:45:9D:C5:F4:4D:67:5D:EA:4E:F9:6D:BD:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3hm6qMiAqUWdxfRNZ13qTvltve8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/9fc14c-c366-46ff-aaf7-8949e751b219/1/KW800OmJGIdT7uikc0QcQ975IG4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/9fc14c-c366-46ff-aaf7-8949e751b219/1/3hm6qMiAqUWdxfRNZ13qTvltve8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.59.0.0/16
Signature Algorithm: sha256WithRSAEncryption
6a:58:76:5b:c2:20:f5:c2:db:14:52:ef:b8:a3:41:ff:c9:39:
09:d3:6a:b9:90:2f:8a:85:bd:07:b5:03:c0:92:8d:fa:6b:ee:
d2:7c:65:4a:7e:67:85:0e:8c:f7:3b:d8:a0:8b:5b:07:fd:c9:
28:b2:cf:23:ce:58:cc:5c:28:6b:e1:fb:29:2d:ed:74:df:d8:
ee:b0:c2:42:63:8d:d6:a5:59:2f:b8:b1:fa:3f:86:3d:3f:2b:
41:c8:cd:19:c0:c0:e7:71:16:02:df:88:95:a1:1d:a1:da:0a:
f4:17:3f:40:20:38:ff:1c:02:20:09:f5:41:fd:6b:53:74:00:
4f:5d:80:74:30:b1:3f:ee:34:12:dc:df:7f:22:a6:5a:e5:a9:
78:4f:ca:8c:92:99:ad:c5:9a:67:ef:43:96:ab:a1:4e:12:06:
3b:44:79:22:bd:7a:9a:d1:23:53:3c:64:c1:21:8e:62:59:5c:
1d:55:b6:86:c0:33:5d:05:76:2c:16:78:4d:5a:5b:28:d8:ca:
03:38:25:6a:31:67:a7:90:69:e6:db:b1:90:5e:c1:1b:d5:35:
ab:9f:d3:e4:06:fb:80:e1:2a:c7:79:a5:6e:6f:7d:c6:64:8f:
24:44:11:34:0b:08:d8:21:f7:9b:0d:be:df:5c:76:e2:d3:4e:
60:77:1d:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:28 2025 by rpki-client on console.sobornost.net