Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/1f5feb-7acf-4c1d-8e9f-1f262d9c9b07/1/TPZkecYVgQWkeVAGvO4nYBYabeU.roa
File: TPZkecYVgQWkeVAGvO4nYBYabeU.roa (raw, json)
Hash identifier: feVX1nzAeUU2PUv28J5bnSiD1IXG8sT2Z4xCADvwWfo=
Subject key identifier: 4C:F6:64:79:C6:15:81:05:A4:79:50:06:BC:EE:27:60:16:1A:6D:E5
Certificate issuer: /CN=24a918f1b10ec1d660b1cfcb1bfe196c2feb06bf
Certificate serial: 019423D714E4367EDCE171FDB88C67A0DD06
Authority key identifier: 24:A9:18:F1:B1:0E:C1:D6:60:B1:CF:CB:1B:FE:19:6C:2F:EB:06:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JKkY8bEOwdZgsc_LG_4ZbC_rBr8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/1f5feb-7acf-4c1d-8e9f-1f262d9c9b07/1/TPZkecYVgQWkeVAGvO4nYBYabeU.roa
Signing time: Wed 01 Jan 2025 21:48:05 +0000
ROA not before: Wed 01 Jan 2025 21:48:05 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 14618
IP address blocks: 193.16.22.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:14:e4:36:7e:dc:e1:71:fd:b8:8c:67:a0:dd:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24a918f1b10ec1d660b1cfcb1bfe196c2feb06bf
Validity
Not Before: Jan 1 21:48:05 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4cf66479c6158105a4795006bcee2760161a6de5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:66:47:4a:d0:3b:7e:2f:48:6b:ca:35:cb:8a:
bf:5a:14:0c:ac:af:79:df:71:5a:fd:ce:ad:da:8b:
07:f6:ac:8e:53:ff:68:79:96:64:56:4b:06:77:52:
60:58:7c:96:38:da:e3:a6:46:60:b8:d8:5c:c5:f0:
96:a2:54:ac:fc:c7:4c:d2:ef:b6:6b:d4:a0:66:f3:
47:5c:61:e8:51:8f:84:41:6c:59:65:7e:89:d3:ad:
0f:28:3a:b5:15:a9:5c:22:52:5d:b0:3e:09:0c:f0:
f1:e6:c8:66:ef:38:46:16:85:56:70:94:5d:09:6b:
a7:73:97:e2:2d:eb:e2:7e:01:cf:ba:fb:6e:5a:40:
62:e2:bd:61:4e:39:bf:1c:cc:b7:af:8c:9a:06:6a:
49:8b:6b:47:47:c5:49:7e:66:2a:1a:1c:26:83:a1:
2c:4f:ac:8d:91:aa:8d:94:a8:bd:86:9f:f4:8e:0c:
7e:29:e5:a6:6c:da:1d:2c:82:d0:12:bd:b5:80:fb:
7a:32:e7:51:e5:de:b6:5e:92:3e:2a:5a:3d:e6:37:
7e:b9:1d:79:8c:b1:67:c0:37:2f:fd:54:ca:7f:dd:
ea:1f:0a:01:0c:8e:64:c7:3e:83:d4:db:f5:f1:9e:
eb:40:d0:4a:18:38:3a:5a:2a:e1:cb:c7:54:bd:f9:
76:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:F6:64:79:C6:15:81:05:A4:79:50:06:BC:EE:27:60:16:1A:6D:E5
X509v3 Authority Key Identifier:
keyid:24:A9:18:F1:B1:0E:C1:D6:60:B1:CF:CB:1B:FE:19:6C:2F:EB:06:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JKkY8bEOwdZgsc_LG_4ZbC_rBr8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/1f5feb-7acf-4c1d-8e9f-1f262d9c9b07/1/TPZkecYVgQWkeVAGvO4nYBYabeU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/1f5feb-7acf-4c1d-8e9f-1f262d9c9b07/1/JKkY8bEOwdZgsc_LG_4ZbC_rBr8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.16.22.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:2b:c2:3f:fa:d6:9d:fe:a9:f9:df:f4:bc:04:4f:24:a8:c0:
b1:db:5e:ab:ef:0d:1f:93:23:8f:4f:3a:38:00:92:6f:6e:52:
12:d0:d4:8c:eb:0a:8d:e9:33:66:c8:c2:6b:b3:77:d3:4f:f5:
a7:3b:bc:de:ec:ed:a7:52:4c:24:e0:81:0b:82:d1:99:96:ca:
dd:76:dc:a9:17:7f:63:24:4f:d4:ba:5e:24:60:f3:6d:b6:ae:
e1:01:aa:7f:a8:1a:df:cd:2c:ea:82:dc:d1:3a:88:45:f2:76:
e3:84:0c:58:5b:e2:5f:51:27:2c:96:7b:14:82:24:05:e7:01:
0f:58:83:c0:00:f9:01:66:a9:6a:ed:7c:ff:dd:e9:6d:bb:b4:
e3:71:20:69:02:70:a2:8a:ce:27:57:23:fe:50:48:a2:6d:ae:
d4:4b:be:18:e2:d5:81:80:18:8e:fb:20:e7:23:75:52:98:1f:
b7:ee:13:e6:ef:12:66:52:94:72:23:c9:35:8e:d6:db:69:6b:
7f:86:06:23:e3:c6:e1:52:ad:9b:f2:ff:e2:fc:e2:63:b7:a6:
7e:01:84:40:05:5f:18:e8:d6:87:f8:97:6a:14:1b:53:bd:90:
d0:33:85:ef:04:c4:f5:2d:a9:1f:37:cc:2f:97:0f:f2:70:90:
22:1e:c8:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:46 2025 by rpki-client on console.sobornost.net