Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/23e07b-e9e4-42a5-b8e0-a8d3838052d0/1/T-ndwyW2lzOqFwfi0HlwvxGN6hA.roa
File: T-ndwyW2lzOqFwfi0HlwvxGN6hA.roa (raw, json)
Hash identifier: SwBUiR0PUxgXxZT0VaCgm/zNAN819Fxo/yeUtptTXzQ=
Subject key identifier: 4F:E9:DD:C3:25:B6:97:33:AA:17:07:E2:D0:79:70:BF:11:8D:EA:10
Certificate issuer: /CN=f7a58d1b12aeb5583328dda525d0698674bb1def
Certificate serial: 0194236A0ED9548C2896DD9195F7B744A4A3
Authority key identifier: F7:A5:8D:1B:12:AE:B5:58:33:28:DD:A5:25:D0:69:86:74:BB:1D:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/96WNGxKutVgzKN2lJdBphnS7He8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/23e07b-e9e4-42a5-b8e0-a8d3838052d0/1/T-ndwyW2lzOqFwfi0HlwvxGN6hA.roa
Signing time: Wed 01 Jan 2025 19:49:00 +0000
ROA not before: Wed 01 Jan 2025 19:49:00 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 201117
IP address blocks: 185.245.156.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:6a:0e:d9:54:8c:28:96:dd:91:95:f7:b7:44:a4:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7a58d1b12aeb5583328dda525d0698674bb1def
Validity
Not Before: Jan 1 19:49:00 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4fe9ddc325b69733aa1707e2d07970bf118dea10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:b9:32:a3:8f:42:72:1b:3d:03:07:c8:b9:e3:
9c:8f:9a:e8:d7:27:c6:0c:81:e2:27:54:fc:06:56:
18:e1:99:fd:fc:9c:52:75:dc:23:7a:0b:c9:2b:6b:
91:e1:21:00:c9:bf:a6:06:04:d1:83:a1:52:fc:06:
23:0d:99:ab:4d:3a:13:98:6c:74:33:8c:55:ba:3d:
ca:7a:6a:f5:74:1e:61:d0:a9:ee:c9:f9:cb:57:b5:
e1:76:60:6a:1d:f2:a0:1e:29:7e:89:f2:b1:d7:66:
0f:fe:7d:55:b0:fa:86:01:f9:17:2e:c0:53:7e:a2:
7d:de:43:0f:ee:a8:40:cd:31:17:45:7b:22:d2:ff:
cd:04:b1:22:ab:59:4b:03:20:77:5b:ca:07:d5:93:
fa:e0:fa:aa:81:57:60:d4:a9:30:40:93:d6:76:f6:
ba:f9:64:b1:8f:44:11:e2:05:96:77:35:fa:32:64:
51:30:7a:81:55:a2:e9:6a:49:51:21:50:91:85:3a:
1e:89:23:a0:28:60:69:4c:1d:49:2a:53:c9:ff:d8:
98:f3:a2:26:b4:14:64:81:be:b7:f3:c3:78:f9:87:
c6:99:3f:96:da:8d:9a:a4:b2:61:1a:4d:81:fb:12:
3b:fa:10:83:81:ad:51:a4:62:99:ab:c3:9d:58:30:
18:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:E9:DD:C3:25:B6:97:33:AA:17:07:E2:D0:79:70:BF:11:8D:EA:10
X509v3 Authority Key Identifier:
keyid:F7:A5:8D:1B:12:AE:B5:58:33:28:DD:A5:25:D0:69:86:74:BB:1D:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/96WNGxKutVgzKN2lJdBphnS7He8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/23e07b-e9e4-42a5-b8e0-a8d3838052d0/1/T-ndwyW2lzOqFwfi0HlwvxGN6hA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/23e07b-e9e4-42a5-b8e0-a8d3838052d0/1/96WNGxKutVgzKN2lJdBphnS7He8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.245.156.0/22
Signature Algorithm: sha256WithRSAEncryption
2e:86:64:30:3d:91:cd:c0:94:61:9d:4e:da:73:44:67:ea:e3:
36:59:15:40:88:e7:58:9e:92:6e:25:3d:3a:e9:4b:f7:a5:0a:
0b:5f:f5:89:d2:89:c6:84:74:33:b2:29:c0:10:d9:aa:3b:d7:
b8:f7:b7:38:4e:10:59:8a:44:6f:c0:d2:10:7a:4b:d2:68:58:
b9:66:bd:ea:3a:d0:66:29:cd:c3:17:54:17:50:25:3a:1f:54:
67:e9:17:d8:6e:64:bf:04:73:47:3a:f6:25:e3:2c:3e:da:d1:
e5:60:b1:4e:b2:ce:20:3a:e5:cc:fc:27:3b:4d:16:7d:db:38:
b2:6c:be:c4:5c:15:a2:fe:60:ee:27:9d:9f:e4:c8:aa:25:f7:
1b:38:af:14:66:e4:22:f5:f2:ac:a3:10:fe:7a:42:17:4f:f5:
87:34:3a:c5:ad:a5:c5:95:27:86:33:d2:51:33:e1:ce:eb:b4:
17:37:66:80:74:37:6a:ed:58:be:17:0e:46:7a:bc:7b:50:6a:
09:93:61:31:04:08:90:04:8b:24:26:b3:b9:f2:ad:e9:c0:5c:
88:81:b0:5f:98:0c:2f:b6:4b:3b:80:f6:5d:db:a5:6b:ac:2a:
93:54:6c:1d:bb:52:66:2a:40:a8:dd:26:a6:a6:0c:c4:9f:61:
53:eb:c8:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:16 2025 by rpki-client on console.sobornost.net