Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/a91884-6f58-4ddd-8932-bba860b26c02/1/TgKFslseYsCcxq6hrybuWIYEhgE.roa
File: TgKFslseYsCcxq6hrybuWIYEhgE.roa (raw, json)
Hash identifier: +vMPxdsdJB0rdmiczN+V/eLqs7K7ErkjymCEJGzYw2Y=
Subject key identifier: 4E:02:85:B2:5B:1E:62:C0:9C:C6:AE:A1:AF:26:EE:58:86:04:86:01
Certificate issuer: /CN=206f1c32bc0a9006081d552fede67d6842921ec3
Certificate serial: 0194228DCA34EE60BEA0AEF556DEF57E1044
Authority key identifier: 20:6F:1C:32:BC:0A:90:06:08:1D:55:2F:ED:E6:7D:68:42:92:1E:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IG8cMrwKkAYIHVUv7eZ9aEKSHsM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/a91884-6f58-4ddd-8932-bba860b26c02/1/TgKFslseYsCcxq6hrybuWIYEhgE.roa
Signing time: Wed 01 Jan 2025 15:48:25 +0000
ROA not before: Wed 01 Jan 2025 15:48:25 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 204125
IP address blocks: 2a10:4741:29::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:ca:34:ee:60:be:a0:ae:f5:56:de:f5:7e:10:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=206f1c32bc0a9006081d552fede67d6842921ec3
Validity
Not Before: Jan 1 15:48:25 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4e0285b25b1e62c09cc6aea1af26ee5886048601
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:19:87:45:05:9a:b4:6d:96:a4:56:80:19:30:
a1:46:2d:73:53:bc:71:05:0a:e6:c5:1c:3f:b0:ba:
a6:69:ee:0e:c1:88:86:e7:86:0b:20:09:5b:17:f9:
f8:7f:13:4b:92:32:32:1f:10:4a:f3:0b:9c:9c:83:
cc:12:d1:a6:92:d6:24:76:94:4d:de:fd:9e:c3:bc:
d4:14:16:00:8b:46:61:c3:fa:ec:b6:54:83:55:70:
e2:5f:06:72:d7:53:3d:1d:0f:f1:1b:24:f7:75:96:
27:79:13:7f:5c:1d:8c:97:c3:d2:e0:13:08:c7:46:
b1:06:fd:4a:05:d4:35:df:70:3a:f6:34:fb:76:aa:
73:39:66:5a:62:90:df:89:cd:e0:2e:c7:b1:fb:f4:
11:0e:ca:fe:df:a3:51:0e:d1:8c:b3:e1:10:f4:10:
cd:06:fa:34:53:42:d3:4a:f3:00:2c:67:df:71:9f:
b8:04:0e:d7:6e:c2:d5:79:14:18:2e:76:39:e1:3c:
37:a4:23:56:cd:89:ff:18:ef:42:81:3d:d0:37:05:
ba:b5:56:58:69:a3:94:77:59:5a:9b:5d:fc:21:43:
86:94:54:14:89:f2:f9:42:33:fa:80:9e:b0:35:84:
ba:af:e8:f3:a6:3e:18:06:0d:c2:be:eb:31:a6:80:
03:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:02:85:B2:5B:1E:62:C0:9C:C6:AE:A1:AF:26:EE:58:86:04:86:01
X509v3 Authority Key Identifier:
keyid:20:6F:1C:32:BC:0A:90:06:08:1D:55:2F:ED:E6:7D:68:42:92:1E:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IG8cMrwKkAYIHVUv7eZ9aEKSHsM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/a91884-6f58-4ddd-8932-bba860b26c02/1/TgKFslseYsCcxq6hrybuWIYEhgE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/a91884-6f58-4ddd-8932-bba860b26c02/1/IG8cMrwKkAYIHVUv7eZ9aEKSHsM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:4741:29::/48
Signature Algorithm: sha256WithRSAEncryption
12:87:2e:53:0e:4a:49:65:00:ba:d3:cc:73:01:ae:05:8c:ae:
4b:8a:8d:af:a0:76:d8:69:3f:7b:e9:1d:3e:5e:f5:b7:9f:88:
77:be:ed:ea:c9:51:26:b5:2e:11:1e:93:67:2a:e0:c4:a3:0c:
0f:f2:79:f9:30:72:ef:c3:48:b4:dd:e9:ad:a0:d8:58:ed:97:
e7:cf:dc:80:44:b6:64:92:d4:5a:49:b4:e0:ab:7b:4e:d9:92:
e3:49:cf:7b:ea:35:48:ef:06:d7:b0:b6:8b:b9:6a:4b:8c:dd:
dd:ba:43:33:b0:d2:33:a1:e5:d5:d8:12:a0:ee:81:70:ea:ba:
76:1a:26:9c:39:40:37:87:3e:40:75:33:d0:19:b0:fd:40:90:
67:d4:2c:02:1e:21:98:3b:da:9c:07:06:38:f5:28:97:7f:11:
91:86:d7:6d:04:9e:50:34:d3:e8:e0:d8:6b:87:c0:04:ea:c8:
7a:06:52:0b:8c:45:09:85:4a:3c:5e:c2:06:1d:b0:1a:cc:e8:
35:52:fb:2b:2a:57:ab:b7:03:50:0a:23:69:63:8d:82:f0:b0:
ae:33:82:7a:8d:e2:02:b6:8d:70:35:31:32:7f:5e:28:8f:19:
0b:24:11:a3:c7:ec:70:9c:69:ad:f0:73:9e:f9:04:b9:12:ce:
b5:59:cb:f5
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAZQijco07mC+oK71Vt71fhBEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIwNmYxYzMyYmMwYTkwMDYwODFkNTUyZmVkZTY3ZDY4NDI5
MjFlYzMwHhcNMjUwMTAxMTU0ODI1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ZTAyODViMjViMWU2MmMwOWNjNmFlYTFhZjI2ZWU1ODg2MDQ4NjAxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyRmHRQWatG2WpFaAGTChRi1zU7xx
BQrmxRw/sLqmae4OwYiG54YLIAlbF/n4fxNLkjIyHxBK8wucnIPMEtGmktYkdpRN
3v2ew7zUFBYAi0Zhw/rstlSDVXDiXwZy11M9HQ/xGyT3dZYneRN/XB2Ml8PS4BMI
x0axBv1KBdQ133A69jT7dqpzOWZaYpDfic3gLsex+/QRDsr+36NRDtGMs+EQ9BDN
Bvo0U0LTSvMALGffcZ+4BA7XbsLVeRQYLnY54Tw3pCNWzYn/GO9CgT3QNwW6tVZY
aaOUd1lam138IUOGlFQUifL5QjP6gJ6wNYS6r+jzpj4YBg3CvusxpoADHwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFE4ChbJbHmLAnMauoa8m7liGBIYBMB8GA1UdIwQY
MBaAFCBvHDK8CpAGCB1VL+3mfWhCkh7DMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSUc4Y01yd0trQVlJSFZVdjdlWjlhRUtTSHNNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9hOTE4ODQtNmY1OC00ZGRkLTg5MzIt
YmJhODYwYjI2YzAyLzEvVGdLRnNsc2VZc0NjeHE2aHJ5YnVXSVlFaGdFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9hOTE4ODQtNmY1OC00ZGRkLTg5MzItYmJhODYwYjI2YzAy
LzEvSUc4Y01yd0trQVlJSFZVdjdlWjlhRUtTSHNNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhBHQQAp
MA0GCSqGSIb3DQEBCwUAA4IBAQAShy5TDkpJZQC608xzAa4FjK5Lio2voHbYaT97
6R0+XvW3n4h3vu3qyVEmtS4RHpNnKuDEowwP8nn5MHLvw0i03emtoNhY7Zfnz9yA
RLZkktRaSbTgq3tO2ZLjSc976jVI7wbXsLaLuWpLjN3dukMzsNIzoeXV2BKg7oFw
6rp2GiacOUA3hz5AdTPQGbD9QJBn1CwCHiGYO9qcBwY49SiXfxGRhtdtBJ5QNNPo
4Nhrh8AE6sh6BlILjEUJhUo8XsIGHbAazOg1UvsrKlertwNQCiNpY42C8LCuM4J6
jeICto1wNTEyf14ojxkLJBGjx+xwnGmt8HOe+QS5Es61Wcv1
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:14 2025 by rpki-client on console.sobornost.net