Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/38tmhdTm4Kj9Dx0WreZ3X7FH2fA.roa
File: 38tmhdTm4Kj9Dx0WreZ3X7FH2fA.roa (raw, json)
Hash identifier: mrQR0s536vOhz79YkYsLJ/DnzxLpGSiQTuAi3k2J4Sw=
Subject key identifier: DF:CB:66:85:D4:E6:E0:A8:FD:0F:1D:16:AD:E6:77:5F:B1:47:D9:F0
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0195E6EDF802960671E51709DB9478C3A016
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/38tmhdTm4Kj9Dx0WreZ3X7FH2fA.roa
Signing time: Sun 30 Mar 2025 12:01:49 +0000
ROA not before: Sun 30 Mar 2025 12:01:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 49505
IP address blocks: 2a05:b300::/29 maxlen: 29
2a0e:8880::/29 maxlen: 29
2a10:3240::/29 maxlen: 29
2a10:3840::/29 maxlen: 29
2a10:5c00::/29 maxlen: 29
2a10:7700::/29 maxlen: 29
2a12:ba00::/29 maxlen: 29
2a12:dc00::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e6:ed:f8:02:96:06:71:e5:17:09:db:94:78:c3:a0:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Mar 30 12:01:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=dfcb6685d4e6e0a8fd0f1d16ade6775fb147d9f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:64:66:36:49:bd:0b:2f:7a:ba:8f:bf:50:0d:
db:3c:07:28:79:44:38:1e:6e:a2:20:4a:37:5c:d8:
f2:ce:03:85:d5:74:f9:80:5e:3e:0e:89:40:fa:c6:
b4:5a:70:e8:76:34:15:2d:db:9e:58:4e:4a:57:e3:
2e:c3:09:52:4c:7f:ff:80:cb:0e:dc:96:c8:d0:56:
d4:7c:ca:29:47:68:05:7c:b8:86:73:7d:08:12:73:
a1:2a:ae:99:7f:8c:8f:98:12:fa:e0:96:b9:4d:d1:
b2:db:b4:46:80:ad:37:77:2f:27:bd:7e:a7:f1:04:
57:25:2a:17:4a:e7:32:7b:b3:fa:c5:d0:04:25:b9:
2e:52:07:90:cb:40:32:61:6c:6a:8c:fd:5e:ac:d9:
3a:49:dd:bc:f3:2b:a2:47:52:8a:66:e3:ab:0e:a5:
94:1f:bf:5a:b6:32:85:83:96:46:8f:74:ec:f9:2b:
ba:50:24:de:c2:2d:8c:5c:cb:76:0e:1e:b9:1c:da:
f4:11:83:24:50:63:37:ac:2b:01:00:cf:99:72:6c:
55:5a:13:61:c3:99:97:7e:1c:4e:bb:c7:a2:0f:6f:
c1:cc:2d:9f:fd:c8:89:de:76:34:30:57:a4:b9:95:
e0:f0:1f:e6:1a:74:1b:f7:51:25:7f:70:67:c4:61:
23:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:CB:66:85:D4:E6:E0:A8:FD:0F:1D:16:AD:E6:77:5F:B1:47:D9:F0
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/38tmhdTm4Kj9Dx0WreZ3X7FH2fA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:b300::/29
2a0e:8880::/29
2a10:3240::/29
2a10:3840::/29
2a10:5c00::/29
2a10:7700::/29
2a12:ba00::/29
2a12:dc00::/29
Signature Algorithm: sha256WithRSAEncryption
98:cc:e0:ca:8f:4e:47:02:c1:de:bd:ba:82:f5:90:f9:1a:ba:
6d:0b:f3:03:20:96:8f:51:83:5c:ae:95:ec:d5:39:76:94:d6:
5b:27:d2:0c:4b:35:b6:9a:60:f9:7a:3a:83:73:bc:ab:55:77:
f9:a5:4e:74:c5:fc:87:86:bd:f8:83:ab:c5:a4:a6:26:09:0b:
0c:39:c2:2b:58:31:2f:3c:06:87:f6:06:40:84:5f:13:9a:af:
2a:73:3e:68:b2:e8:83:35:63:68:db:9a:6a:2e:82:54:9f:74:
63:84:5f:ff:33:01:83:00:b4:31:7c:c9:5e:68:cb:ac:9a:7c:
28:fc:0d:25:77:cc:5c:ae:e2:27:0f:b2:a9:da:73:8b:d7:0c:
3e:4a:03:04:3d:1b:ff:1a:de:dd:0c:b2:36:55:ae:cb:05:86:
91:d6:34:70:ab:76:15:a3:81:97:98:6f:c1:88:31:96:36:cd:
a5:cd:d7:74:9e:0e:4f:00:af:cb:5f:28:29:80:be:d5:30:df:
55:e2:eb:3d:e3:a6:46:08:3c:7d:c4:51:5b:84:45:95:83:93:
c0:2a:e0:2f:9c:db:2a:97:cc:ae:85:97:8b:a3:18:3c:d1:8b:
07:5c:c7:63:5a:a0:22:65:44:de:9e:67:d8:ec:df:5c:00:2f:
6b:41:73:65
-----BEGIN CERTIFICATE-----
MIIFLzCCBBegAwIBAgISAZXm7fgClgZx5RcJ25R4w6AWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkNTU5YWFmYmZjMDkzMTI0MmUxZDYzNzI5OGNmMWRkMjIz
ZTRjMjYwHhcNMjUwMzMwMTIwMTQ5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZmNiNjY4NWQ0ZTZlMGE4ZmQwZjFkMTZhZGU2Nzc1ZmIxNDdkOWYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4WRmNkm9Cy96uo+/UA3bPAcoeUQ4
Hm6iIEo3XNjyzgOF1XT5gF4+DolA+sa0WnDodjQVLdueWE5KV+MuwwlSTH//gMsO
3JbI0FbUfMopR2gFfLiGc30IEnOhKq6Zf4yPmBL64Ja5TdGy27RGgK03dy8nvX6n
8QRXJSoXSucye7P6xdAEJbkuUgeQy0AyYWxqjP1erNk6Sd288yuiR1KKZuOrDqWU
H79atjKFg5ZGj3Ts+Su6UCTewi2MXMt2Dh65HNr0EYMkUGM3rCsBAM+ZcmxVWhNh
w5mXfhxOu8eiD2/BzC2f/ciJ3nY0MFekuZXg8B/mGnQb91Elf3BnxGEjHwIDAQAB
o4ICOzCCAjcwHQYDVR0OBBYEFN/LZoXU5uCo/Q8dFq3md1+xR9nwMB8GA1UdIwQY
MBaAFH1Vmq+/wJMSQuHWNymM8d0iPkwmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTkt
OGM1MDA3YzJhNGI2LzEvMzh0bWhkVG00S2o5RHgwV3JlWjNYN0ZIMmZBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTktOGM1MDA3YzJhNGI2
LzEvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMFEGCCsGAQUFBwEHAQH/BEIwQDA+BAIAAjA4AwUDKgWzAAMF
AyoOiIADBQMqEDJAAwUDKhA4QAMFAyoQXAADBQMqEHcAAwUDKhK6AAMFAyoS3AAw
DQYJKoZIhvcNAQELBQADggEBAJjM4MqPTkcCwd69uoL1kPkaum0L8wMglo9Rg1yu
lezVOXaU1lsn0gxLNbaaYPl6OoNzvKtVd/mlTnTF/IeGvfiDq8WkpiYJCww5witY
MS88Bof2BkCEXxOarypzPmiy6IM1Y2jbmmouglSfdGOEX/8zAYMAtDF8yV5oy6ya
fCj8DSV3zFyu4icPsqnac4vXDD5KAwQ9G/8a3t0MsjZVrssFhpHWNHCrdhWjgZeY
b8GIMZY2zaXN13SeDk8Ar8tfKCmAvtUw31Xi6z3jpkYIPH3EUVuERZWDk8Aq4C+c
2yqXzK6Fl4ujGDzRiwdcx2NaoCJlRN6eZ9js31wAL2tBc2U=
-----END CERTIFICATE-----
Generated at Wed Apr 2 00:21:50 2025 by rpki-client on console.sobornost.net