Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/8kRNSM2VTbo1jQ_pRxzvNGnvWKk.roa
File: 8kRNSM2VTbo1jQ_pRxzvNGnvWKk.roa (raw, json)
Hash identifier: XOaX4HbiK+05HPyf4CeGUjzF+fJRG08YDnl8SJi4Yag=
Subject key identifier: F2:44:4D:48:CD:95:4D:BA:35:8D:0F:E9:47:1C:EF:34:69:EF:58:A9
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 01962B18FC62A16191AA3B1138691667C678
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/8kRNSM2VTbo1jQ_pRxzvNGnvWKk.roa
Signing time: Sat 12 Apr 2025 17:42:59 +0000
ROA not before: Sat 12 Apr 2025 17:42:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 14576
IP address blocks: 2a0f:2840::/29 maxlen: 29
2a0f:9e00::/29 maxlen: 29
2a10:3540::/29 maxlen: 29
2a10:7900::/29 maxlen: 29
2a10:7f00::/29 maxlen: 29
2a11:4800::/29 maxlen: 32
2a11:5c80::/29 maxlen: 29
2a11:e580::/29 maxlen: 29
2a12:2c80::/29 maxlen: 29
2a12:4b00::/29 maxlen: 29
2a12:5e00::/29 maxlen: 29
2a12:d5c0::/29 maxlen: 29
2a13:9680::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:2b:18:fc:62:a1:61:91:aa:3b:11:38:69:16:67:c6:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Apr 12 17:42:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f2444d48cd954dba358d0fe9471cef3469ef58a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:e7:6d:4f:8e:a5:71:40:8e:6e:64:ff:80:0e:
c5:17:1f:77:71:b8:65:2f:4b:64:36:d1:f8:08:33:
4d:bb:82:49:a9:cb:7a:51:81:7d:a2:71:71:d4:a0:
01:30:b3:2c:8d:72:15:3b:d7:3c:30:4b:80:2d:b8:
68:31:b6:6a:16:22:13:1d:9d:fb:b4:8e:5b:04:b4:
99:6e:90:5f:91:6c:ff:87:02:c3:8c:b8:5e:e1:97:
26:cd:c9:c8:c8:7f:0a:50:fe:89:a9:55:07:2f:44:
00:b0:55:4a:56:c2:71:85:a3:99:8d:97:ab:98:d4:
7a:1f:27:ed:2a:2d:8c:3f:40:ba:a3:15:16:59:56:
e6:e9:a0:45:7c:7b:ac:3c:93:dd:7a:e6:4c:46:af:
a8:14:03:a8:9f:29:19:65:3e:c7:63:82:02:de:4e:
9b:5a:a6:97:96:0a:53:2c:46:e4:83:4c:42:fe:4d:
4f:d7:db:09:f9:04:ee:f4:5c:8e:66:24:46:3c:37:
eb:21:98:85:85:68:92:67:a1:39:f8:90:0d:1b:7b:
98:ce:cd:bd:67:bb:6f:e0:26:39:82:57:ae:1a:41:
9f:62:ed:c7:b4:ad:54:01:d8:e2:47:0f:e9:1c:87:
1c:24:e2:b1:bc:9d:5e:3a:23:62:b4:5d:9a:27:53:
0c:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:44:4D:48:CD:95:4D:BA:35:8D:0F:E9:47:1C:EF:34:69:EF:58:A9
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/8kRNSM2VTbo1jQ_pRxzvNGnvWKk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:2840::/29
2a0f:9e00::/29
2a10:3540::/29
2a10:7900::/29
2a10:7f00::/29
2a11:4800::/29
2a11:5c80::/29
2a11:e580::/29
2a12:2c80::/29
2a12:4b00::/29
2a12:5e00::/29
2a12:d5c0::/29
2a13:9680::/29
Signature Algorithm: sha256WithRSAEncryption
64:a8:b6:af:03:3f:3e:18:c2:32:c3:56:6e:26:de:53:85:1a:
81:07:09:0e:9f:42:20:d2:54:31:c3:e1:40:1e:07:72:8a:aa:
b8:bd:7e:75:01:79:de:5f:37:5f:73:46:a8:8e:8f:11:fe:14:
85:d7:0d:2c:9f:74:3c:2b:c3:73:73:26:19:9e:cf:0c:2b:8e:
00:49:1a:6c:3b:27:d2:26:e1:af:52:aa:21:e3:aa:80:e8:86:
f0:ce:de:e4:64:38:f4:7e:47:08:87:1b:07:cd:b1:fe:f8:a7:
90:02:bb:3c:05:b1:bf:33:19:a8:19:26:2a:ee:2f:21:02:ad:
c4:7b:84:e1:3c:3e:ea:a2:d2:70:9f:93:47:c9:4b:5f:e0:45:
ae:c4:c3:27:22:84:be:17:31:0d:24:d0:20:76:3e:29:6c:c8:
d2:3a:f4:26:db:ee:a9:da:e5:ba:34:35:ee:21:9b:6f:b7:53:
58:3d:35:e1:fc:54:75:55:9e:38:1f:70:bf:9c:06:28:0d:7a:
d6:90:69:0a:35:2f:40:f3:2c:9d:27:fb:82:e5:a5:6a:68:85:
15:f4:86:4e:46:48:df:80:da:3d:bd:86:0f:2d:7a:22:a5:65:
88:99:f7:a3:35:a1:68:68:1a:e2:84:53:34:5f:ea:dc:79:6e:
8c:2d:8a:62
-----BEGIN CERTIFICATE-----
MIIFUjCCBDqgAwIBAgISAZYrGPxioWGRqjsROGkWZ8Z4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkNTU5YWFmYmZjMDkzMTI0MmUxZDYzNzI5OGNmMWRkMjIz
ZTRjMjYwHhcNMjUwNDEyMTc0MjU5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMjQ0NGQ0OGNkOTU0ZGJhMzU4ZDBmZTk0NzFjZWYzNDY5ZWY1OGE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvedtT46lcUCObmT/gA7FFx93cbhl
L0tkNtH4CDNNu4JJqct6UYF9onFx1KABMLMsjXIVO9c8MEuALbhoMbZqFiITHZ37
tI5bBLSZbpBfkWz/hwLDjLhe4ZcmzcnIyH8KUP6JqVUHL0QAsFVKVsJxhaOZjZer
mNR6HyftKi2MP0C6oxUWWVbm6aBFfHusPJPdeuZMRq+oFAOonykZZT7HY4IC3k6b
WqaXlgpTLEbkg0xC/k1P19sJ+QTu9FyOZiRGPDfrIZiFhWiSZ6E5+JANG3uYzs29
Z7tv4CY5gleuGkGfYu3HtK1UAdjiRw/pHIccJOKxvJ1eOiNitF2aJ1MM4wIDAQAB
o4ICXjCCAlowHQYDVR0OBBYEFPJETUjNlU26NY0P6Ucc7zRp71ipMB8GA1UdIwQY
MBaAFH1Vmq+/wJMSQuHWNymM8d0iPkwmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTkt
OGM1MDA3YzJhNGI2LzEvOGtSTlNNMlZUYm8xalFfcFJ4enZOR252V0trLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTktOGM1MDA3YzJhNGI2
LzEvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHQGCCsGAQUFBwEHAQH/BGUwYzBhBAIAAjBbAwUDKg8oQAMF
AyoPngADBQMqEDVAAwUDKhB5AAMFAyoQfwADBQMqEUgAAwUDKhFcgAMFAyoR5YAD
BQMqEiyAAwUDKhJLAAMFAyoSXgADBQMqEtXAAwUDKhOWgDANBgkqhkiG9w0BAQsF
AAOCAQEAZKi2rwM/PhjCMsNWbibeU4UagQcJDp9CINJUMcPhQB4HcoqquL1+dQF5
3l83X3NGqI6PEf4UhdcNLJ90PCvDc3MmGZ7PDCuOAEkabDsn0ibhr1KqIeOqgOiG
8M7e5GQ49H5HCIcbB82x/vinkAK7PAWxvzMZqBkmKu4vIQKtxHuE4Tw+6qLScJ+T
R8lLX+BFrsTDJyKEvhcxDSTQIHY+KWzI0jr0JtvuqdrlujQ17iGbb7dTWD014fxU
dVWeOB9wv5wGKA161pBpCjUvQPMsnSf7guWlamiFFfSGTkZI34DaPb2GDy16IqVl
iJn3ozWhaGga4oRTNF/q3HlujC2KYg==
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:56 2025 by rpki-client on console.sobornost.net