Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/e2aac5-c04d-4ae0-8bf3-9e3d89d9e617/1/M1M7HuPtGiosGSo4FBz1zc0zdo4.roa
File: M1M7HuPtGiosGSo4FBz1zc0zdo4.roa (raw, json)
Hash identifier: NcnqoCTtbPhCjxo06sSrzfv3k+hjFXX2MJeaGNHx2bI=
Subject key identifier: 33:53:3B:1E:E3:ED:1A:2A:2C:19:2A:38:14:1C:F5:CD:CD:33:76:8E
Certificate issuer: /CN=4cb224b53ec9c8b17f31895b16a8d4571f0e6970
Certificate serial: 0194236A3E0EA2BFB89E01E0FB6AB956CA73
Authority key identifier: 4C:B2:24:B5:3E:C9:C8:B1:7F:31:89:5B:16:A8:D4:57:1F:0E:69:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TLIktT7JyLF_MYlbFqjUVx8OaXA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/e2aac5-c04d-4ae0-8bf3-9e3d89d9e617/1/M1M7HuPtGiosGSo4FBz1zc0zdo4.roa
Signing time: Wed 01 Jan 2025 19:49:12 +0000
ROA not before: Wed 01 Jan 2025 19:49:12 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 198373
IP address blocks: 2001:678:c20::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:6a:3e:0e:a2:bf:b8:9e:01:e0:fb:6a:b9:56:ca:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cb224b53ec9c8b17f31895b16a8d4571f0e6970
Validity
Not Before: Jan 1 19:49:12 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=33533b1ee3ed1a2a2c192a38141cf5cdcd33768e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:40:88:dc:58:d6:da:d7:cd:0d:ad:3d:ce:87:
10:fd:14:8e:df:1d:d8:ab:6f:10:97:42:d9:4b:95:
e9:74:d4:8c:d4:22:15:a1:fc:aa:94:d9:72:0a:c4:
07:64:d0:d1:e9:0f:0d:00:ac:da:07:16:32:47:73:
d6:16:7d:00:62:70:ec:a0:14:3b:ae:8d:0f:1b:42:
89:6a:19:e3:2b:e6:cc:40:7c:55:42:88:6d:0e:01:
3d:4d:68:0f:1a:56:07:55:66:3a:a8:2b:91:b2:7e:
61:83:04:09:55:ab:f6:db:f7:12:4b:ba:41:fe:2b:
10:8f:75:ab:2a:96:a2:c8:ba:95:b5:a5:16:d9:c2:
07:aa:aa:05:bf:d7:74:0e:b2:27:83:87:b4:10:b0:
6d:80:50:c5:20:1a:85:ad:9c:ee:ae:d0:a7:84:85:
1c:b9:6d:4b:0d:8c:b4:8f:eb:52:a6:ee:aa:2b:4b:
9a:d6:ec:4f:e6:65:f0:17:fd:3d:34:c6:23:dc:ab:
14:58:55:e1:e3:75:b2:e7:f9:32:6e:e6:78:c4:79:
81:a6:c0:8e:5e:17:e8:ef:ab:08:8d:0d:75:d6:0c:
df:44:40:d3:db:a0:84:16:75:c8:6e:99:b2:ad:52:
69:f1:01:bc:50:f6:3a:d9:89:1a:75:bd:08:aa:70:
39:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:53:3B:1E:E3:ED:1A:2A:2C:19:2A:38:14:1C:F5:CD:CD:33:76:8E
X509v3 Authority Key Identifier:
keyid:4C:B2:24:B5:3E:C9:C8:B1:7F:31:89:5B:16:A8:D4:57:1F:0E:69:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TLIktT7JyLF_MYlbFqjUVx8OaXA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/e2aac5-c04d-4ae0-8bf3-9e3d89d9e617/1/M1M7HuPtGiosGSo4FBz1zc0zdo4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/e2aac5-c04d-4ae0-8bf3-9e3d89d9e617/1/TLIktT7JyLF_MYlbFqjUVx8OaXA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:c20::/48
Signature Algorithm: sha256WithRSAEncryption
44:02:f7:9b:81:69:91:c7:02:97:b4:46:98:18:e1:28:52:d5:
23:5a:8f:37:dd:c7:36:ac:74:53:60:f3:30:11:f2:2a:fe:c5:
81:69:68:c0:4a:83:2e:3d:5d:7b:be:4b:1a:cf:73:1f:ab:17:
ea:ac:d2:74:15:ac:f3:07:ea:8c:cd:7d:c4:57:60:fc:ad:b1:
e4:60:36:e4:ae:8c:11:1a:fe:46:ac:5b:ba:ad:3d:66:fd:bf:
a1:05:62:95:bd:6e:25:99:3a:21:69:53:ab:87:85:67:ef:18:
9d:31:ab:7b:02:b0:38:ca:75:f1:0d:ae:d3:24:a3:ba:43:ff:
51:8e:dd:bb:aa:d5:98:8f:34:9f:af:ea:ac:f2:83:bd:f0:75:
33:d0:81:f9:44:04:5f:d7:5c:ea:d6:aa:11:ab:2b:ee:b1:4e:
24:a9:1f:a7:4b:91:2f:d4:6b:40:1f:0a:b8:ca:8e:15:dc:e8:
7d:a1:75:27:7a:dd:87:27:f6:8f:cd:0a:bb:45:3a:60:1d:c6:
1b:dc:32:22:d8:53:43:08:2a:62:8f:71:c3:be:35:3f:82:01:
87:6c:42:fd:79:15:65:db:eb:70:4b:6a:a2:8f:0a:fa:2b:ee:
1b:88:66:df:c7:bb:58:eb:50:3d:d2:bf:55:15:34:02:35:76:
d7:07:6d:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:33:05 2025 by rpki-client on console.sobornost.net