Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/aa8ac8-13b8-4197-be56-1e1de91a987c/1/JvK-cLcIjgxCJ_K14_FWFEfc7vQ.roa
File: JvK-cLcIjgxCJ_K14_FWFEfc7vQ.roa (raw, json)
Hash identifier: 1p38hpbTbOTu95nT8/nMNcs2xO2ksXr8ZuGwpDzXer0=
Subject key identifier: 26:F2:BE:70:B7:08:8E:0C:42:27:F2:B5:E3:F1:56:14:47:DC:EE:F4
Certificate issuer: /CN=5f5980132d193e270ed1efe0ad2849fe8ab0d76c
Certificate serial: 0194221F916AFF857F7F7A4C9676C545F03B
Authority key identifier: 5F:59:80:13:2D:19:3E:27:0E:D1:EF:E0:AD:28:49:FE:8A:B0:D7:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X1mAEy0ZPicO0e_grShJ_oqw12w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/aa8ac8-13b8-4197-be56-1e1de91a987c/1/JvK-cLcIjgxCJ_K14_FWFEfc7vQ.roa
Signing time: Wed 01 Jan 2025 13:48:01 +0000
ROA not before: Wed 01 Jan 2025 13:48:01 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 51468
IP address blocks: 141.138.172.0/22 maxlen: 22
2a03:3c00:c000::/34 maxlen: 34
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:91:6a:ff:85:7f:7f:7a:4c:96:76:c5:45:f0:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f5980132d193e270ed1efe0ad2849fe8ab0d76c
Validity
Not Before: Jan 1 13:48:01 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=26f2be70b7088e0c4227f2b5e3f1561447dceef4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:45:f4:92:38:a0:56:10:e8:c3:c2:45:d0:7f:
85:8b:b0:b4:07:d6:34:25:e4:f1:8d:23:5d:de:e4:
72:5f:44:29:19:dd:8a:7d:09:63:3c:51:33:e7:2f:
75:e6:d8:52:23:3e:fb:02:46:01:98:c5:bd:d5:70:
d5:98:96:56:ff:ea:26:e2:ea:51:0e:17:78:7b:1e:
33:e4:12:16:3c:48:7b:05:7f:46:9b:69:df:ef:ee:
e2:38:c0:24:54:bf:f9:08:fa:65:10:c4:68:02:db:
53:fd:a8:fb:ad:67:eb:e6:86:ea:a2:06:2c:c9:5b:
e8:2a:2a:c2:c5:6c:2d:53:23:ba:e8:49:2b:5f:7e:
ba:59:23:2b:ea:c2:d1:f2:4f:4f:fa:4f:ef:a9:4e:
76:27:33:12:0e:13:51:50:85:e6:60:cc:5e:7e:e1:
76:3d:16:5e:41:86:48:dc:02:9a:ac:c3:3c:02:ba:
c2:65:5a:02:f7:2c:94:3d:30:aa:67:d3:eb:38:b8:
3f:b9:dc:54:c1:66:f1:02:83:5d:58:0a:bc:c9:ee:
39:10:88:eb:a7:b5:56:7b:cc:a3:37:ef:f4:84:85:
75:21:b2:bf:67:cb:7b:a6:5c:1c:fa:c2:03:10:76:
08:b1:4e:47:70:37:7a:16:e8:4d:bc:db:51:69:d1:
dd:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:F2:BE:70:B7:08:8E:0C:42:27:F2:B5:E3:F1:56:14:47:DC:EE:F4
X509v3 Authority Key Identifier:
keyid:5F:59:80:13:2D:19:3E:27:0E:D1:EF:E0:AD:28:49:FE:8A:B0:D7:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X1mAEy0ZPicO0e_grShJ_oqw12w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/aa8ac8-13b8-4197-be56-1e1de91a987c/1/JvK-cLcIjgxCJ_K14_FWFEfc7vQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/aa8ac8-13b8-4197-be56-1e1de91a987c/1/X1mAEy0ZPicO0e_grShJ_oqw12w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.138.172.0/22
IPv6:
2a03:3c00:c000::/34
Signature Algorithm: sha256WithRSAEncryption
1e:d2:ff:78:83:34:5b:f1:13:d8:4e:a1:21:9a:b1:e6:f1:5e:
0c:b3:bf:e9:7e:5a:4b:1b:45:d8:94:1a:21:ad:4c:76:d6:00:
8a:35:94:9f:41:d5:f4:98:08:1d:35:08:a3:96:df:81:f5:da:
a5:29:10:d1:e7:92:29:0c:4c:05:81:51:1a:b0:c9:73:5d:17:
10:74:75:7d:c1:12:d4:73:7f:04:2f:24:92:51:08:8c:96:19:
c0:91:c3:64:71:bb:7b:0a:bd:cf:bc:07:ec:a1:aa:1b:35:95:
59:8c:0a:0a:52:cc:26:94:a7:61:ff:c1:a5:f5:db:c5:06:cb:
68:34:d7:45:55:65:f7:cc:1e:57:46:be:05:91:cf:19:f8:11:
81:eb:89:45:6d:34:21:72:96:2b:60:72:1f:38:9b:a5:40:97:
9a:9e:b6:34:4a:44:5c:9f:45:b8:39:49:6b:67:fd:40:9d:43:
17:f3:35:1e:7a:91:a4:e2:da:79:46:c1:7b:50:9f:7a:0e:44:
40:e0:ff:7e:ec:04:92:8f:c7:cb:65:e7:24:21:c9:42:68:79:
b1:69:22:f4:f5:b4:21:2e:85:ef:80:12:73:df:54:4a:a8:02:
ce:a5:0c:78:a0:5b:a3:d7:bf:9c:16:1b:32:b0:1e:4f:d9:af:
4a:b7:d7:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:33:08 2025 by rpki-client on console.sobornost.net