Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/1-g251HXg2_N0vUC0Ux35dc1VJKo.roa
File: 1-g251HXg2_N0vUC0Ux35dc1VJKo.roa (raw, json)
Hash identifier: GQTHtqI3sNIROIp7vHCEPZRaPzN+6JjFIBZaSsv3vJA=
Subject key identifier: FA:0D:B9:D4:75:E0:DB:F3:74:BD:40:B4:53:1D:F9:75:CD:55:24:AA
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0195FA87F901476307EFF436F9E8861E0101
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/1-g251HXg2_N0vUC0Ux35dc1VJKo.roa
Signing time: Thu 03 Apr 2025 07:22:49 +0000
ROA not before: Thu 03 Apr 2025 07:22:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 49505
IP address blocks: 2a05:b300::/29 maxlen: 29
2a0e:8880::/29 maxlen: 29
2a0f:3f80::/29 maxlen: 29
2a0f:b400::/29 maxlen: 29
2a10:3240::/29 maxlen: 29
2a10:3840::/29 maxlen: 29
2a10:5c00::/29 maxlen: 29
2a10:7700::/29 maxlen: 29
2a11:8880::/29 maxlen: 29
2a12:4ac0::/29 maxlen: 29
2a12:ba00::/29 maxlen: 29
2a12:dc00::/29 maxlen: 29
2a13:7400::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:fa:87:f9:01:47:63:07:ef:f4:36:f9:e8:86:1e:01:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Apr 3 07:22:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=fa0db9d475e0dbf374bd40b4531df975cd5524aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fc:6e:fe:f4:1f:65:a4:e8:10:bc:3a:ab:6d:12:
c8:f5:ea:ac:60:6a:8e:3a:00:48:c2:48:d1:8d:fe:
1f:c4:ac:32:2f:14:0a:16:44:50:ae:84:6c:a0:d7:
88:8a:a9:1d:35:7c:7f:df:97:c0:e7:7c:5b:bc:c2:
a8:d8:da:82:68:99:b8:ad:88:b7:48:71:7f:42:33:
0f:1f:fd:6b:a3:00:c3:d8:c5:3b:5b:70:b8:a6:f9:
d9:bb:51:a3:46:1b:1d:f0:bd:58:23:79:e4:88:2d:
c6:01:5b:dd:1b:de:44:83:1f:60:af:98:16:1f:01:
79:9d:2f:5d:cc:4f:89:b7:70:8f:cd:ea:b7:2c:66:
4c:84:da:92:53:d8:41:63:ec:51:84:f9:ce:9d:65:
01:da:99:3c:5d:44:ff:32:e3:43:e7:e5:7d:83:48:
07:4f:aa:ae:29:0f:f2:bd:9e:25:1f:61:87:fe:bb:
76:f2:9f:1a:04:61:0e:54:df:22:51:dc:f2:79:eb:
ca:d9:47:75:d4:e2:69:00:8a:61:ff:a6:aa:05:12:
df:5a:f8:c4:2e:87:5d:09:04:7c:c6:21:74:17:da:
ad:6b:ca:04:a8:21:7d:f1:f2:3b:f5:36:60:99:51:
e4:a5:96:f5:f6:3f:06:25:10:48:4e:3f:86:0f:6e:
ce:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:0D:B9:D4:75:E0:DB:F3:74:BD:40:B4:53:1D:F9:75:CD:55:24:AA
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/1-g251HXg2_N0vUC0Ux35dc1VJKo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:b300::/29
2a0e:8880::/29
2a0f:3f80::/29
2a0f:b400::/29
2a10:3240::/29
2a10:3840::/29
2a10:5c00::/29
2a10:7700::/29
2a11:8880::/29
2a12:4ac0::/29
2a12:ba00::/29
2a12:dc00::/29
2a13:7400::/29
Signature Algorithm: sha256WithRSAEncryption
7e:75:7d:ca:55:f0:22:46:89:11:67:b2:47:94:de:83:b0:61:
2a:af:af:02:a7:60:15:9f:6a:0c:12:8d:6b:02:12:42:55:b0:
37:46:6b:18:4a:07:72:0e:7f:55:85:1d:0b:dd:bb:7b:a5:2d:
22:78:65:92:8a:60:5c:3c:23:a8:db:15:29:24:13:7f:83:31:
fe:91:10:01:1c:43:5d:9a:84:d6:5e:fc:bd:f8:1e:51:4d:1e:
d8:b0:c4:8b:68:e8:b0:d0:25:8f:e3:23:67:0d:44:58:48:74:
80:1f:dd:2e:ad:84:0f:03:f4:3a:74:a8:4a:35:92:e3:a0:7a:
72:be:7c:f5:2e:3c:c6:fa:a3:58:0d:68:c0:9c:b4:ec:ad:5f:
ee:b5:66:2f:b7:d2:ed:41:ef:e7:44:f2:79:73:99:e7:80:44:
25:83:fd:02:d5:a2:0a:80:1b:2f:dc:92:f8:f1:ef:a0:a1:1d:
d4:d0:4c:21:1d:b3:d3:d2:3a:8e:b8:c0:3c:9b:4e:b5:6c:48:
0f:26:d2:e7:6a:bb:75:a1:4f:35:31:35:cf:3c:e2:f7:49:5c:
8e:cb:f8:ca:e4:ad:56:8e:0a:e5:ea:b6:4c:95:12:7a:15:16:
65:bf:ff:02:40:39:03:ea:be:9a:ba:78:16:68:40:1f:f9:33:
6c:98:bd:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:56 2025 by rpki-client on console.sobornost.net