Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/8fdf6d-cba6-4494-9028-577e9935bd75/1/TmwIzb5OMEe4RHPaC68IjB6na0k.roa
File: TmwIzb5OMEe4RHPaC68IjB6na0k.roa (raw, json)
Hash identifier: dW1pEtOcDuseosGnHRvKaebls+Ju6AZ6FoBVPM8QbJE=
Subject key identifier: 4E:6C:08:CD:BE:4E:30:47:B8:44:73:DA:0B:AF:08:8C:1E:A7:6B:49
Certificate issuer: /CN=49f26233f5bb4226c2a7a7b9003008d19e34785b
Certificate serial: 01942826698D973C35E422547B211DC6987F
Authority key identifier: 49:F2:62:33:F5:BB:42:26:C2:A7:A7:B9:00:30:08:D1:9E:34:78:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SfJiM_W7QibCp6e5ADAI0Z40eFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/8fdf6d-cba6-4494-9028-577e9935bd75/1/TmwIzb5OMEe4RHPaC68IjB6na0k.roa
Signing time: Thu 02 Jan 2025 17:53:13 +0000
ROA not before: Thu 02 Jan 2025 17:53:13 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 64482
IP address blocks: 185.216.10.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:26:69:8d:97:3c:35:e4:22:54:7b:21:1d:c6:98:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49f26233f5bb4226c2a7a7b9003008d19e34785b
Validity
Not Before: Jan 2 17:53:13 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4e6c08cdbe4e3047b84473da0baf088c1ea76b49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:cb:de:7c:c0:bb:f8:eb:37:a3:05:85:35:69:
26:f1:4e:91:f0:c2:71:1a:6a:59:27:be:06:fc:f8:
09:f1:7d:41:9b:24:5a:d9:f4:1e:bc:61:39:6c:ec:
ac:96:02:1f:cd:a0:2e:68:90:5c:11:95:25:f5:aa:
1f:87:0e:2c:24:e9:72:ce:95:12:27:9c:5b:21:2a:
cf:77:25:b0:da:0a:45:30:3e:31:93:3e:31:91:48:
63:a5:64:56:5f:16:c4:cd:c2:e1:76:bb:86:3f:d8:
43:8d:d9:6b:e0:ee:84:ec:c1:01:c5:fc:fd:bc:a7:
75:4a:63:6d:6c:0a:54:da:05:9f:76:e0:c5:6e:24:
a7:5f:d5:47:4a:af:92:0c:70:f8:98:30:e7:81:ad:
1f:f3:b7:cb:72:66:c1:30:54:22:fd:ea:78:a6:0c:
53:f6:99:b0:7d:83:01:35:d3:ca:37:da:4f:2e:f4:
99:f6:1d:00:76:0a:35:d5:47:f1:fe:ee:c0:e6:36:
e3:af:65:50:30:00:12:dc:f0:ee:99:75:f5:bb:8b:
5f:96:12:79:c8:93:16:1f:90:05:1a:8b:7f:62:18:
2b:7d:3c:5c:ce:12:1f:bb:c3:15:95:c5:1f:a4:3e:
43:00:24:7b:6b:7d:6b:d2:39:cc:05:a4:07:d7:97:
c5:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:6C:08:CD:BE:4E:30:47:B8:44:73:DA:0B:AF:08:8C:1E:A7:6B:49
X509v3 Authority Key Identifier:
keyid:49:F2:62:33:F5:BB:42:26:C2:A7:A7:B9:00:30:08:D1:9E:34:78:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SfJiM_W7QibCp6e5ADAI0Z40eFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/8fdf6d-cba6-4494-9028-577e9935bd75/1/TmwIzb5OMEe4RHPaC68IjB6na0k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/8fdf6d-cba6-4494-9028-577e9935bd75/1/SfJiM_W7QibCp6e5ADAI0Z40eFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.216.10.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:04:dd:e7:04:61:7c:e1:82:0c:c6:fd:bb:a8:d4:aa:61:80:
7c:d5:67:0d:f8:8f:3a:73:3b:9d:93:cc:c6:03:d5:56:b5:85:
50:6f:d6:51:b6:63:5e:a8:f6:36:b7:59:a1:97:61:1d:24:cd:
33:3b:30:98:94:4c:3e:95:41:eb:33:04:ed:98:25:0d:1b:8c:
e1:2a:60:91:cd:3f:de:1b:e4:1e:65:62:62:1f:dd:e2:54:b0:
24:de:bb:64:76:8c:33:40:a4:94:4d:2e:39:09:92:27:c0:78:
22:00:4c:28:e1:25:95:15:07:ec:63:94:18:d8:57:68:72:97:
2f:d7:05:49:70:f9:0c:d9:c3:32:d4:62:8b:f9:d4:b9:50:6c:
d4:e8:2f:1b:9f:04:0b:8a:d4:b7:0b:03:4b:da:2d:75:a5:18:
57:04:6a:51:fa:4c:8e:05:67:b2:96:21:ac:77:7d:1c:41:d1:
f8:62:35:6a:8a:6c:f8:d7:77:af:7c:77:e6:21:31:d7:79:ec:
fe:b0:8a:13:83:2f:11:bf:49:b8:3f:29:50:0c:99:33:22:07:
a1:93:03:04:ae:cc:c7:0d:6e:58:a9:15:13:2a:81:ec:4e:eb:
5e:11:74:cd:dc:a2:58:83:18:61:0a:70:f5:db:8c:e4:3d:29:
85:7c:85:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:46 2025 by rpki-client on console.sobornost.net