Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/rRTGMxhiOpV_X766sLDj0H5s3lk.roa
File: rRTGMxhiOpV_X766sLDj0H5s3lk.roa (raw, json)
Hash identifier: Fk8zZgs5ltomuLpQlhRuRyNBCQpASYJvnVS5AQLwlOo=
Subject key identifier: AD:14:C6:33:18:62:3A:95:7F:5F:BE:BA:B0:B0:E3:D0:7E:6C:DE:59
Certificate issuer: /CN=225cf0d31704b59d7eeb018548202d3a570da932
Certificate serial: 019424B29693FB36666A4E10D41773E0D5C4
Authority key identifier: 22:5C:F0:D3:17:04:B5:9D:7E:EB:01:85:48:20:2D:3A:57:0D:A9:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/rRTGMxhiOpV_X766sLDj0H5s3lk.roa
Signing time: Thu 02 Jan 2025 01:47:51 +0000
ROA not before: Thu 02 Jan 2025 01:47:51 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 1836
IP address blocks: 2001:678:810::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b2:96:93:fb:36:66:6a:4e:10:d4:17:73:e0:d5:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=225cf0d31704b59d7eeb018548202d3a570da932
Validity
Not Before: Jan 2 01:47:51 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ad14c63318623a957f5fbebab0b0e3d07e6cde59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:9f:1a:15:f2:31:b4:a1:45:6e:2c:9d:0f:e7:
0f:09:92:88:75:85:2a:fb:be:cd:32:60:5c:86:17:
50:76:52:70:de:da:d6:e2:72:ec:ce:d7:9d:fd:0f:
c5:e7:55:ae:cb:bc:de:81:b2:c3:fd:4f:0f:93:9e:
54:40:6c:c4:3c:2c:5f:2c:a6:92:fd:20:8c:46:21:
ca:7e:ff:ab:56:85:60:40:5c:78:00:7e:d7:9f:27:
d1:30:72:e0:85:f7:8c:55:a9:47:af:3b:d0:d7:3e:
5b:a3:1f:6a:2e:e9:f5:76:31:11:54:f5:e0:b6:be:
14:6c:e8:f0:a2:1c:4f:01:fd:7b:79:e3:fa:69:cb:
19:0b:b5:78:be:6d:50:5b:74:fc:ba:a6:16:32:e3:
a9:2f:4d:dc:a2:5d:3b:b0:cc:8e:e7:b7:06:0b:5b:
3a:45:9f:b0:7d:79:fc:bd:14:0b:67:71:2c:80:0d:
fd:fc:e4:34:dc:74:29:61:8e:95:11:d2:9d:8f:91:
d2:99:ce:f1:6a:1f:8c:ae:a1:13:4b:56:0a:e3:83:
bd:62:30:97:48:eb:7f:53:90:7c:94:ed:8e:1c:fe:
6c:72:8d:97:a6:5e:77:ad:96:dd:5c:7a:41:ae:5d:
c6:b4:3e:cf:17:98:62:eb:03:06:89:c7:b8:19:9a:
16:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:14:C6:33:18:62:3A:95:7F:5F:BE:BA:B0:B0:E3:D0:7E:6C:DE:59
X509v3 Authority Key Identifier:
keyid:22:5C:F0:D3:17:04:B5:9D:7E:EB:01:85:48:20:2D:3A:57:0D:A9:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/rRTGMxhiOpV_X766sLDj0H5s3lk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:810::/48
Signature Algorithm: sha256WithRSAEncryption
1f:7b:f7:b6:d3:f7:99:f6:04:bd:11:0b:a6:75:23:d2:b3:3f:
78:af:42:f0:1b:08:e5:e6:42:c0:06:89:4c:5f:91:5b:65:05:
bf:6a:1a:f8:e8:f1:6e:e1:fb:70:5b:9a:33:5a:65:91:05:3c:
be:18:e3:3f:80:0b:13:f2:2b:16:95:4b:e2:78:bd:16:c3:64:
8b:f3:e1:d8:47:2b:94:4f:65:a4:8c:0a:b0:09:86:95:d8:83:
e5:31:69:f0:9a:32:6b:92:08:37:00:f9:2a:a4:7b:4b:92:db:
b0:3c:4a:10:04:7e:9c:73:e1:71:2e:06:a5:ff:45:a4:ce:11:
ce:43:fe:56:14:0e:a8:d8:aa:f8:c1:5a:a5:92:90:50:98:e4:
b9:f1:3e:c2:74:8e:e0:22:86:1e:aa:5d:39:2f:fe:85:df:4e:
95:13:9d:a2:00:e2:e1:9c:bd:c6:1b:83:0b:17:d3:11:fb:ed:
31:1f:14:d8:4f:4d:a9:91:a5:5d:63:c3:c5:f6:cd:7e:46:86:
27:82:0d:af:83:51:7c:61:01:b4:de:2f:da:7a:a8:a7:d2:ac:
1e:b2:3f:f9:bd:2e:3e:47:6e:da:db:9b:e4:86:c4:38:4c:13:
bd:80:aa:8b:16:e0:9a:42:f0:3a:96:5f:64:51:e0:ce:39:0d:
f1:d3:f9:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:45 2025 by rpki-client on console.sobornost.net