Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/151c6c-617c-4643-9f6e-69809d8b9c20/1/XGm_swis7gPqLxLCw4_WpqKe8Ac.roa
File: XGm_swis7gPqLxLCw4_WpqKe8Ac.roa (raw, json)
Hash identifier: HuoRGpzlvzmJtj6Rn/56OaSHzb/3wfWOGTlv62srzB8=
Subject key identifier: 5C:69:BF:B3:08:AC:EE:03:EA:2F:12:C2:C3:8F:D6:A6:A2:9E:F0:07
Certificate issuer: /CN=4ccc60495b2a34d89211cc1c79524eab61ba1656
Certificate serial: 019425FC462BC049C87052AB12F864ECB0AE
Authority key identifier: 4C:CC:60:49:5B:2A:34:D8:92:11:CC:1C:79:52:4E:AB:61:BA:16:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TMxgSVsqNNiSEcwceVJOq2G6FlY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/151c6c-617c-4643-9f6e-69809d8b9c20/1/XGm_swis7gPqLxLCw4_WpqKe8Ac.roa
Signing time: Thu 02 Jan 2025 07:47:57 +0000
ROA not before: Thu 02 Jan 2025 07:47:57 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 24971
IP address blocks: 2a04:16c0:200::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fc:46:2b:c0:49:c8:70:52:ab:12:f8:64:ec:b0:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ccc60495b2a34d89211cc1c79524eab61ba1656
Validity
Not Before: Jan 2 07:47:57 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5c69bfb308acee03ea2f12c2c38fd6a6a29ef007
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:9b:0f:58:39:a2:9f:2a:45:fe:bf:0b:44:05:
a5:77:34:d9:ee:ea:86:86:11:82:26:35:94:45:28:
a8:fb:96:8d:07:4d:4a:a7:65:24:08:25:c1:fd:a3:
52:95:56:4b:5e:c4:ef:4d:f4:57:c9:12:2b:59:ac:
8c:50:21:4f:d0:21:cb:40:a1:c8:f4:92:cb:1b:cb:
44:77:62:83:33:f6:fe:0f:5a:38:b0:b2:f6:34:de:
4c:a2:e4:cf:ba:28:2f:21:7d:97:2d:ac:c9:cb:3e:
e3:89:a4:46:e2:d1:71:a6:94:11:6a:95:06:f0:c6:
93:cd:96:54:79:1e:a5:0f:02:9d:14:d7:1d:1f:ff:
4d:09:6b:58:0f:c8:6d:7a:a1:7b:fc:9b:e1:e1:ba:
c3:87:45:01:25:48:6a:02:fd:b0:41:34:ec:30:04:
d4:12:99:99:87:3e:8f:49:c7:c4:45:43:6b:67:c3:
96:ba:d4:e2:0d:cd:b5:79:a7:94:29:fb:46:cd:aa:
2f:01:68:04:81:30:8b:a5:39:06:1c:be:32:5b:0d:
ce:05:b1:40:22:8a:1d:18:98:8c:dc:9a:a3:b3:73:
8f:af:05:44:fa:e6:e9:e5:74:d8:77:37:23:84:36:
15:88:a4:29:28:1d:cb:dc:03:de:06:41:5d:79:7b:
f9:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:69:BF:B3:08:AC:EE:03:EA:2F:12:C2:C3:8F:D6:A6:A2:9E:F0:07
X509v3 Authority Key Identifier:
keyid:4C:CC:60:49:5B:2A:34:D8:92:11:CC:1C:79:52:4E:AB:61:BA:16:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TMxgSVsqNNiSEcwceVJOq2G6FlY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/151c6c-617c-4643-9f6e-69809d8b9c20/1/XGm_swis7gPqLxLCw4_WpqKe8Ac.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/151c6c-617c-4643-9f6e-69809d8b9c20/1/TMxgSVsqNNiSEcwceVJOq2G6FlY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a04:16c0:200::/48
Signature Algorithm: sha256WithRSAEncryption
40:05:14:49:05:31:a8:70:23:df:ac:6f:54:bc:c1:22:98:6c:
34:9b:b0:7e:5e:9d:b1:ff:58:09:92:a8:27:bf:f3:77:c6:24:
a7:88:aa:99:76:d5:da:af:91:9b:8e:b2:6d:fb:c3:a3:13:98:
71:c5:fd:10:7d:cd:61:86:ff:0a:23:be:f9:c5:22:eb:4d:9e:
0f:3e:8c:7b:d7:21:20:92:b6:35:2d:c3:9d:0a:ed:d9:5f:f3:
a8:ad:6b:45:70:5e:07:3f:94:6c:a0:2f:d6:a1:9a:9b:7f:a3:
1e:8e:f7:6a:92:b2:21:6d:08:0e:0b:d5:c7:57:5a:90:76:55:
05:ea:15:ef:59:6e:6f:ee:9b:0b:83:67:5e:34:45:20:b1:a6:
50:a1:ac:53:d2:aa:a8:84:5a:e0:0a:01:22:5d:e3:74:c0:b0:
9f:c9:63:78:71:25:8a:8c:ba:99:09:73:65:a2:a9:d1:76:bc:
45:ae:7c:b9:55:ae:f9:29:d5:7f:eb:ff:c0:52:ac:e0:41:43:
e6:af:e2:53:d7:29:ec:7b:69:d9:55:1c:87:af:8e:34:9f:7c:
de:70:45:25:4f:ef:89:8c:6d:a4:fc:95:bf:a3:a9:b6:cb:8e:
30:1d:7d:95:bd:52:15:1c:a8:c7:8b:ed:f6:a2:ab:72:90:59:
52:09:b1:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:16 2025 by rpki-client on console.sobornost.net