Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/812800-9e70-4cd2-90fd-3bcd2399ee64/1/TImGbHFcysH3yKCENp7I2KDKakw.roa
File: TImGbHFcysH3yKCENp7I2KDKakw.roa (raw, json)
Hash identifier: wV738mzWH7BpaMNjeVJLX60iXYrXwr7zU2chvPIlwaE=
Subject key identifier: 4C:89:86:6C:71:5C:CA:C1:F7:C8:A0:84:36:9E:C8:D8:A0:CA:6A:4C
Certificate issuer: /CN=ad3dd8d32cfc717a6e690ebe3e1db4386d8f6c64
Certificate serial: 019422FC22AE14ABAAC7EAA58A513081279F
Authority key identifier: AD:3D:D8:D3:2C:FC:71:7A:6E:69:0E:BE:3E:1D:B4:38:6D:8F:6C:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rT3Y0yz8cXpuaQ6-Ph20OG2PbGQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/812800-9e70-4cd2-90fd-3bcd2399ee64/1/TImGbHFcysH3yKCENp7I2KDKakw.roa
Signing time: Wed 01 Jan 2025 17:48:56 +0000
ROA not before: Wed 01 Jan 2025 17:48:56 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211727
IP address blocks: 185.243.130.0/24 maxlen: 24
2a10:9d40::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fc:22:ae:14:ab:aa:c7:ea:a5:8a:51:30:81:27:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad3dd8d32cfc717a6e690ebe3e1db4386d8f6c64
Validity
Not Before: Jan 1 17:48:56 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4c89866c715ccac1f7c8a084369ec8d8a0ca6a4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:70:60:16:65:cb:9f:27:5d:5d:7d:97:f3:c9:
9c:6b:01:a3:a3:ec:5e:e0:19:fb:65:29:f2:66:3d:
e0:95:f8:59:52:05:04:7d:d8:21:3d:a6:fe:4e:65:
e6:06:13:ea:33:49:5c:1c:3c:b2:a0:14:7e:a0:50:
1e:b6:fc:cb:7a:a7:5b:18:e6:d3:d9:f0:5e:9b:3e:
11:6a:59:6a:a3:d6:26:86:7a:4d:60:2b:3c:e7:e1:
21:ae:e2:f1:0c:76:30:fe:17:e1:f2:f8:81:ec:82:
38:39:36:b6:83:27:1e:7f:90:85:6f:87:9c:bc:8b:
b6:06:cb:71:d4:d2:00:71:e7:47:df:ce:6e:de:b1:
0c:fc:e0:f4:6a:79:9d:f4:ba:30:e0:bb:aa:ed:e7:
59:5a:6c:92:b3:c7:8b:6a:55:bb:64:ff:5a:42:8d:
87:10:2f:a9:4a:fb:2f:d7:8b:fd:5a:b4:64:2d:f9:
8e:88:3f:e5:b2:09:36:36:d8:4b:02:53:d1:e0:1b:
a8:22:1e:c0:1f:34:2d:59:53:b0:c2:a6:b9:da:b0:
a1:61:90:03:4a:00:a9:67:1a:a3:d0:ee:6a:48:ad:
83:ff:29:08:27:00:2e:45:f6:2b:3d:05:52:6c:7b:
bc:41:20:20:a6:e7:5a:a5:3c:c0:db:c8:47:20:e7:
59:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:89:86:6C:71:5C:CA:C1:F7:C8:A0:84:36:9E:C8:D8:A0:CA:6A:4C
X509v3 Authority Key Identifier:
keyid:AD:3D:D8:D3:2C:FC:71:7A:6E:69:0E:BE:3E:1D:B4:38:6D:8F:6C:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rT3Y0yz8cXpuaQ6-Ph20OG2PbGQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/812800-9e70-4cd2-90fd-3bcd2399ee64/1/TImGbHFcysH3yKCENp7I2KDKakw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/812800-9e70-4cd2-90fd-3bcd2399ee64/1/rT3Y0yz8cXpuaQ6-Ph20OG2PbGQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.243.130.0/24
IPv6:
2a10:9d40::/29
Signature Algorithm: sha256WithRSAEncryption
6e:6c:49:b9:ac:55:f2:f5:d2:c3:48:a4:e2:c0:b2:bb:ed:c8:
f1:7d:d1:2a:dd:55:0e:20:6d:a6:15:9b:a1:b6:ea:e9:42:93:
da:e4:99:3a:ee:84:d9:cb:8c:7e:0d:de:35:77:30:37:78:a7:
b3:a9:0a:87:2c:41:e4:b9:0a:0a:14:6f:fe:c2:5b:fe:f9:94:
e3:77:40:37:e3:89:c1:d4:e8:e6:48:2a:0c:75:74:ac:22:03:
e1:3b:8b:a8:05:a6:08:f7:55:17:ce:9b:97:a6:d2:54:ea:d0:
3c:8a:f0:e8:0e:23:b1:73:46:16:42:fc:6e:86:a6:e2:fb:e3:
4f:ce:d8:c1:61:ed:8b:b2:00:2b:03:d3:85:6b:7d:a2:e3:37:
ce:40:25:2c:3e:70:ac:b7:49:0f:61:da:d0:3a:5f:54:ef:97:
d1:7a:91:27:fa:ed:2a:07:1e:a5:5a:49:ec:67:2d:de:26:19:
1f:d7:13:da:08:92:7d:70:fc:0f:16:95:f7:f7:b7:82:2d:21:
10:99:58:1c:8b:3b:ab:d1:9c:15:ed:bb:dd:a2:a9:54:81:21:
bb:4f:85:ca:37:d9:ff:45:3b:6e:b0:97:02:34:5a:32:41:5b:
47:54:c0:20:4d:10:c8:0b:83:6c:78:f1:5c:a2:a9:cd:11:10:
17:cd:9f:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:26 2025 by rpki-client on console.sobornost.net