Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/5b788e-f847-4df9-9334-964cca722f73/1/dxfaqcbOBYRpYzoiD3a-nfzNgyI.roa
File: dxfaqcbOBYRpYzoiD3a-nfzNgyI.roa (raw, json)
Hash identifier: 9S4UtPoorxm2Y5jeo5Ht7EgjOkb+pCS05uOlyENLKPI=
Subject key identifier: 77:17:DA:A9:C6:CE:05:84:69:63:3A:22:0F:76:BE:9D:FC:CD:83:22
Certificate issuer: /CN=4cad185414c16ae5d229a8aa2bfa15fefc71a222
Certificate serial: 01942669F87AEB55B115D8ECA4716105531B
Authority key identifier: 4C:AD:18:54:14:C1:6A:E5:D2:29:A8:AA:2B:FA:15:FE:FC:71:A2:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TK0YVBTBauXSKaiqK_oV_vxxoiI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/5b788e-f847-4df9-9334-964cca722f73/1/dxfaqcbOBYRpYzoiD3a-nfzNgyI.roa
Signing time: Thu 02 Jan 2025 09:47:46 +0000
ROA not before: Thu 02 Jan 2025 09:47:46 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 553
IP address blocks: 141.7.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:69:f8:7a:eb:55:b1:15:d8:ec:a4:71:61:05:53:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cad185414c16ae5d229a8aa2bfa15fefc71a222
Validity
Not Before: Jan 2 09:47:46 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7717daa9c6ce058469633a220f76be9dfccd8322
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:50:c3:1f:ae:d2:bf:26:1f:97:f3:06:e0:3e:
17:eb:58:db:b1:b7:2e:b8:0d:ad:cd:6f:84:ff:d0:
a5:43:ec:b8:c3:4c:f7:63:b5:de:ef:c0:f1:95:dd:
91:cc:a2:75:32:c8:07:29:f0:7e:9e:af:2a:d7:7e:
eb:a0:31:dd:61:8f:2d:e7:8c:35:74:da:c4:e2:1a:
a0:bf:6a:e9:80:64:7c:a9:1d:b4:9b:d6:a3:7a:d0:
ec:9c:ea:24:b2:9f:2e:e9:2f:eb:c5:61:d2:1e:c9:
bf:05:ba:c5:e5:5b:e2:23:df:3f:e2:34:1f:b7:63:
c7:a8:a3:16:07:0c:71:a5:9b:92:a9:07:73:2b:f5:
e4:fe:18:51:bc:e5:77:7c:1f:3c:a8:c1:80:0f:b9:
4c:4e:e4:21:80:37:6e:a8:20:1a:11:ad:ea:d1:28:
f7:d1:b2:43:20:f0:ed:c6:1d:cb:cb:7c:92:19:46:
fa:e3:86:a8:b9:f7:1c:af:da:78:30:38:7f:92:22:
e3:c4:31:f0:45:d7:4d:eb:61:53:02:cb:de:6d:1a:
37:3d:77:31:62:43:43:51:9a:49:e0:45:09:7a:a5:
30:d4:14:4f:88:62:6d:0c:65:ab:06:23:fd:f8:f1:
aa:33:64:11:68:b4:c5:69:c3:56:67:59:f4:73:c4:
73:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:17:DA:A9:C6:CE:05:84:69:63:3A:22:0F:76:BE:9D:FC:CD:83:22
X509v3 Authority Key Identifier:
keyid:4C:AD:18:54:14:C1:6A:E5:D2:29:A8:AA:2B:FA:15:FE:FC:71:A2:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TK0YVBTBauXSKaiqK_oV_vxxoiI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/5b788e-f847-4df9-9334-964cca722f73/1/dxfaqcbOBYRpYzoiD3a-nfzNgyI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/5b788e-f847-4df9-9334-964cca722f73/1/TK0YVBTBauXSKaiqK_oV_vxxoiI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.7.0.0/16
Signature Algorithm: sha256WithRSAEncryption
64:f8:f4:e0:50:0f:2c:22:ab:09:24:48:e5:c6:6b:47:6a:e8:
5d:3b:ad:91:f2:83:65:10:08:d1:e5:36:c7:ba:d4:a8:f4:aa:
9f:9a:1b:29:ec:24:cc:e1:47:24:52:0e:24:5d:04:02:64:c8:
4a:9b:2c:07:0b:29:72:e0:d7:21:88:a8:01:f6:e9:3d:a2:e3:
b8:1d:5a:1f:d6:5d:bb:75:fd:a4:a5:37:4a:4d:87:fe:c7:47:
a1:e0:15:77:19:79:8d:45:ea:98:e1:12:8d:7d:76:2b:a6:5c:
38:20:8e:aa:74:13:43:86:58:ca:61:1a:45:8e:46:bf:22:0f:
b8:59:b0:da:17:7f:12:e1:f8:41:83:49:10:82:90:3b:ff:80:
4a:c6:94:4a:7c:aa:11:76:89:16:4a:d5:99:78:a2:e1:50:28:
73:5c:0d:55:70:51:77:63:9b:f3:f4:67:18:c1:01:df:bd:c0:
00:d9:3a:02:21:80:10:23:cf:3e:5a:7d:be:bd:b6:05:7e:c0:
78:e0:0b:3d:a0:67:7d:38:17:e4:54:9b:e2:f7:36:c6:da:4b:
ff:ee:66:53:89:93:35:18:c2:8e:ea:eb:25:43:16:6e:c4:37:
58:eb:2e:83:5e:0f:10:de:88:60:a7:c1:d7:e4:68:70:6d:17:
b2:1e:9f:55
-----BEGIN CERTIFICATE-----
MIIE/DCCA+SgAwIBAgISAZQmafh661WxFdjspHFhBVMbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRjYWQxODU0MTRjMTZhZTVkMjI5YThhYTJiZmExNWZlZmM3
MWEyMjIwHhcNMjUwMTAyMDk0NzQ2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NzE3ZGFhOWM2Y2UwNTg0Njk2MzNhMjIwZjc2YmU5ZGZjY2Q4MzIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr1DDH67SvyYfl/MG4D4X61jbsbcu
uA2tzW+E/9ClQ+y4w0z3Y7Xe78Dxld2RzKJ1MsgHKfB+nq8q137roDHdYY8t54w1
dNrE4hqgv2rpgGR8qR20m9ajetDsnOoksp8u6S/rxWHSHsm/BbrF5VviI98/4jQf
t2PHqKMWBwxxpZuSqQdzK/Xk/hhRvOV3fB88qMGAD7lMTuQhgDduqCAaEa3q0Sj3
0bJDIPDtxh3Ly3ySGUb644aoufccr9p4MDh/kiLjxDHwRddN62FTAsvebRo3PXcx
YkNDUZpJ4EUJeqUw1BRPiGJtDGWrBiP9+PGqM2QRaLTFacNWZ1n0c8RzewIDAQAB
o4ICCDCCAgQwHQYDVR0OBBYEFHcX2qnGzgWEaWM6Ig92vp38zYMiMB8GA1UdIwQY
MBaAFEytGFQUwWrl0imoqiv6Ff78caIiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVEswWVZCVEJhdVhTS2FpcUtfb1Zfdnh4b2lJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS81Yjc4OGUtZjg0Ny00ZGY5LTkzMzQt
OTY0Y2NhNzIyZjczLzEvZHhmYXFjYk9CWVJwWXpvaUQzYS1uZnpOZ3lJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNS81Yjc4OGUtZjg0Ny00ZGY5LTkzMzQtOTY0Y2NhNzIyZjcz
LzEvVEswWVZCVEJhdVhTS2FpcUtfb1Zfdnh4b2lJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAjQcwDQYJ
KoZIhvcNAQELBQADggEBAGT49OBQDywiqwkkSOXGa0dq6F07rZHyg2UQCNHlNse6
1Kj0qp+aGynsJMzhRyRSDiRdBAJkyEqbLAcLKXLg1yGIqAH26T2i47gdWh/WXbt1
/aSlN0pNh/7HR6HgFXcZeY1F6pjhEo19diumXDggjqp0E0OGWMphGkWORr8iD7hZ
sNoXfxLh+EGDSRCCkDv/gErGlEp8qhF2iRZK1Zl4ouFQKHNcDVVwUXdjm/P0ZxjB
Ad+9wADZOgIhgBAjzz5afb69tgV+wHjgCz2gZ304F+RUm+L3NsbaS//uZlOJkzUY
wo7q6yVDFm7EN1jrLoNeDxDeiGCnwdfkaHBtF7Ien1U=
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:15 2025 by rpki-client on console.sobornost.net