Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/d13658-af7e-4d6e-82ef-6e0696fee8e6/1/d-0FuXxrgivXV_LPUKq93b_p0rk.roa
File: d-0FuXxrgivXV_LPUKq93b_p0rk.roa (raw, json)
Hash identifier: IyU9YdBTUk2hBlGdTATB3ZTrCwmx/c6jIoibeyre6pQ=
Subject key identifier: 77:ED:05:B9:7C:6B:82:2B:D7:57:F2:CF:50:AA:BD:DD:BF:E9:D2:B9
Certificate issuer: /CN=f497673c78efae5f6bd80a25ace3d3c37193e789
Certificate serial: 019421B238913E46A61B91E6EA7A791CBC6B
Authority key identifier: F4:97:67:3C:78:EF:AE:5F:6B:D8:0A:25:AC:E3:D3:C3:71:93:E7:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9JdnPHjvrl9r2AolrOPTw3GT54k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/d13658-af7e-4d6e-82ef-6e0696fee8e6/1/d-0FuXxrgivXV_LPUKq93b_p0rk.roa
Signing time: Wed 01 Jan 2025 11:48:35 +0000
ROA not before: Wed 01 Jan 2025 11:48:35 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 30969
IP address blocks: 2a01:410:100::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b2:38:91:3e:46:a6:1b:91:e6:ea:7a:79:1c:bc:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f497673c78efae5f6bd80a25ace3d3c37193e789
Validity
Not Before: Jan 1 11:48:35 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=77ed05b97c6b822bd757f2cf50aabdddbfe9d2b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:07:1d:d2:80:7b:df:37:9d:ab:cc:35:65:3e:
f3:a7:c8:94:c4:d9:44:7e:3e:5f:a1:ee:ba:22:e9:
b3:c6:7f:ac:49:2a:ed:cd:5d:3d:c2:52:b8:09:5a:
4d:31:aa:ad:ba:28:5d:36:8a:81:88:3d:ef:9d:3e:
64:a0:1a:cd:a1:31:e7:be:62:22:5b:b9:62:30:65:
d9:8b:d8:ea:43:22:af:48:42:dd:61:0a:50:73:f7:
48:09:f8:1b:c2:b9:02:7e:02:fe:b5:46:bf:c0:fa:
5d:0d:f9:35:ea:11:9a:a2:66:c6:9a:15:a0:09:86:
0e:6d:41:b9:15:e0:27:57:99:a4:1f:3d:2e:7a:28:
4c:f8:39:b3:62:11:66:64:f7:7b:f9:ed:d7:85:62:
a4:3f:9e:ea:2e:32:1c:25:61:c4:29:94:78:94:f9:
d6:14:ae:90:13:e5:e9:69:7d:f6:6f:13:4e:1f:a6:
67:0a:3d:06:dc:d2:ca:e6:dc:e1:73:5d:ce:01:59:
85:05:70:81:1e:9d:a9:20:ad:24:f9:13:38:51:23:
af:db:d2:b0:3e:0e:6f:20:03:a2:33:a9:b3:6b:34:
d5:0d:2d:2b:3d:10:08:fb:05:57:40:7d:68:9d:1a:
de:2a:d1:3e:99:e1:70:0e:d5:09:69:5d:3e:46:6c:
90:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:ED:05:B9:7C:6B:82:2B:D7:57:F2:CF:50:AA:BD:DD:BF:E9:D2:B9
X509v3 Authority Key Identifier:
keyid:F4:97:67:3C:78:EF:AE:5F:6B:D8:0A:25:AC:E3:D3:C3:71:93:E7:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9JdnPHjvrl9r2AolrOPTw3GT54k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/d13658-af7e-4d6e-82ef-6e0696fee8e6/1/d-0FuXxrgivXV_LPUKq93b_p0rk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/d13658-af7e-4d6e-82ef-6e0696fee8e6/1/9JdnPHjvrl9r2AolrOPTw3GT54k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:410:100::/40
Signature Algorithm: sha256WithRSAEncryption
68:f9:84:fe:c0:21:f5:3b:3b:83:95:c7:7d:cf:f9:a0:53:be:
cc:bd:4e:9a:3a:fe:e8:6f:62:0f:ed:1f:4c:84:25:b4:b2:e2:
59:66:ef:8a:9f:70:8b:1b:18:0d:d1:7f:ef:3f:30:bd:39:f5:
b7:90:f4:fb:74:28:67:34:ef:1b:15:eb:cf:86:e6:74:57:33:
25:1c:bc:28:eb:4f:18:6f:db:79:f1:04:27:a7:06:ac:a5:51:
3c:f4:ad:f5:15:1e:1b:ba:f8:11:42:c0:30:e7:83:9d:46:e8:
0c:f0:7b:4a:e3:e2:30:a9:cd:c1:8b:84:67:de:dc:c9:3f:a6:
15:d1:a4:11:10:0b:5c:f0:d8:b0:ad:56:81:0c:79:38:59:a0:
54:d3:ef:90:06:3e:14:31:f7:5c:09:0f:3a:da:df:ef:13:6e:
17:01:ef:b9:98:a8:3b:79:39:51:4c:a7:6a:66:cf:fe:cf:03:
a0:88:de:ec:9d:3e:46:cf:bb:d3:30:21:65:78:a3:ad:a3:11:
56:c5:86:aa:8e:d9:b4:9c:2f:dc:54:23:fb:fd:13:a4:6a:9a:
58:8c:de:eb:6f:44:80:84:5f:e2:ea:de:bc:3b:02:39:91:bf:
88:cd:8f:89:07:e4:32:79:1b:41:ba:3a:07:ea:36:00:11:e9:
98:6a:1c:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:34 2025 by rpki-client on console.sobornost.net