Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/7b0a85-9677-4d03-afb6-a9faf6a26426/1/n1BFonHtDGvA8w45LaQUVIMy610.roa
File: n1BFonHtDGvA8w45LaQUVIMy610.roa (raw, json)
Hash identifier: UPpZGSFwSh5u0Vmh3TPpTDA5brKnQclTUnn56OlMfIA=
Subject key identifier: 9F:50:45:A2:71:ED:0C:6B:C0:F3:0E:39:2D:A4:14:54:83:32:EB:5D
Certificate issuer: /CN=f2807f280da99569eca24346babe9dc85ac13240
Certificate serial: 019424454585378531C9BC03C93041658FA1
Authority key identifier: F2:80:7F:28:0D:A9:95:69:EC:A2:43:46:BA:BE:9D:C8:5A:C1:32:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8oB_KA2plWnsokNGur6dyFrBMkA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/7b0a85-9677-4d03-afb6-a9faf6a26426/1/n1BFonHtDGvA8w45LaQUVIMy610.roa
Signing time: Wed 01 Jan 2025 23:48:26 +0000
ROA not before: Wed 01 Jan 2025 23:48:26 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 18622
IP address blocks: 2a02:e38:4100::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:45:85:37:85:31:c9:bc:03:c9:30:41:65:8f:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f2807f280da99569eca24346babe9dc85ac13240
Validity
Not Before: Jan 1 23:48:26 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9f5045a271ed0c6bc0f30e392da414548332eb5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:73:c7:c3:88:11:ff:a9:56:55:c4:bf:bf:e5:
d0:49:fa:59:c9:98:18:76:5c:bb:c6:32:19:56:e2:
3c:f8:45:43:cf:42:90:0b:9a:68:11:b9:0a:6a:da:
65:d5:2e:7e:29:b8:a2:75:f2:ca:6b:73:fb:c3:81:
af:63:a1:3a:c2:a3:dd:7d:c9:8d:f2:1f:3e:47:c9:
ac:45:cb:2e:74:ca:5d:0b:5b:55:8b:7a:bf:57:34:
7c:4c:85:6a:b0:d0:80:98:33:0f:ae:39:45:76:c0:
ea:94:31:ee:66:a1:b7:df:44:0e:94:d5:cc:76:96:
32:ef:3a:9e:78:4e:a6:07:09:f3:08:34:b0:e3:e5:
ad:d8:8f:ac:ab:cd:de:05:45:28:71:c6:32:db:6f:
3d:08:41:d7:4b:ea:0e:be:55:86:4b:0a:02:16:58:
2f:7c:49:39:3c:fc:43:29:1b:c6:ab:da:5b:23:38:
07:e6:17:26:35:b9:67:75:83:be:13:92:29:92:6d:
81:f4:f3:2b:06:34:62:71:a5:47:2d:76:06:fa:dd:
5b:43:31:6d:41:b5:59:68:23:49:05:0a:2b:a3:1f:
59:dd:7b:56:20:d2:22:ff:27:90:e0:0a:93:10:01:
b1:bd:36:fd:3e:5b:24:9b:08:7c:08:e6:81:10:d2:
ad:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:50:45:A2:71:ED:0C:6B:C0:F3:0E:39:2D:A4:14:54:83:32:EB:5D
X509v3 Authority Key Identifier:
keyid:F2:80:7F:28:0D:A9:95:69:EC:A2:43:46:BA:BE:9D:C8:5A:C1:32:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8oB_KA2plWnsokNGur6dyFrBMkA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/7b0a85-9677-4d03-afb6-a9faf6a26426/1/n1BFonHtDGvA8w45LaQUVIMy610.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/7b0a85-9677-4d03-afb6-a9faf6a26426/1/8oB_KA2plWnsokNGur6dyFrBMkA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:e38:4100::/40
Signature Algorithm: sha256WithRSAEncryption
21:06:c1:a7:ef:75:fc:b6:73:5d:20:12:39:46:0f:9e:43:b1:
83:6d:93:08:ab:45:96:39:5c:ce:52:90:10:d3:3a:cf:31:36:
13:e7:6e:1a:97:c2:fa:b4:9c:10:48:c3:11:07:93:08:13:4b:
bb:fb:30:1f:73:a6:c9:9f:da:ac:ad:77:09:08:ba:7d:50:7e:
39:fc:b0:7e:12:b8:23:17:48:f4:6c:a2:b9:6c:60:4e:e7:bc:
66:c9:8f:22:44:f1:04:7c:83:ce:c6:c7:99:99:32:85:32:9e:
af:e3:a8:df:93:04:bd:a9:96:22:58:86:85:e0:1a:22:be:46:
7c:56:2d:44:a5:42:a0:57:67:93:1a:4f:59:09:07:c5:9f:b5:
2a:25:15:51:8f:1b:68:f5:8a:18:97:3d:8c:59:d0:db:b8:a8:
61:a0:9b:b7:32:16:d3:98:3a:56:fe:5f:6e:79:dd:8c:d4:77:
c2:d6:58:e7:45:cb:61:02:34:fe:9f:6f:f6:a6:1e:96:fa:9c:
a9:c8:fb:6c:73:1d:79:42:f2:26:ec:a0:6f:50:c1:d4:2b:96:
cb:a3:1f:14:86:73:29:46:53:cd:f9:43:e5:be:4d:c6:1c:d7:
97:f7:fe:86:84:57:20:00:d8:7e:35:ba:c0:54:cf:b7:18:14:
e5:b0:7c:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:43 2025 by rpki-client on console.sobornost.net