Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/aaadac-4809-4955-ac62-8f9ca0ebccab/1/g6miMFkmw-84cpq6Pcsn9vno9ds.roa
File: g6miMFkmw-84cpq6Pcsn9vno9ds.roa (raw, json)
Hash identifier: vkmmeZTgxYyRXsXUZxOPVQEHj1CbRMTASbWiNLbOCCA=
Subject key identifier: 83:A9:A2:30:59:26:C3:EF:38:72:9A:BA:3D:CB:27:F6:F9:E8:F5:DB
Certificate issuer: /CN=b1cdc26d44eaf85654481e9581043e14887765b4
Certificate serial: 019423D7F52CB10097DACF693350A649C7B3
Authority key identifier: B1:CD:C2:6D:44:EA:F8:56:54:48:1E:95:81:04:3E:14:88:77:65:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sc3CbUTq-FZUSB6VgQQ-FIh3ZbQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/aaadac-4809-4955-ac62-8f9ca0ebccab/1/g6miMFkmw-84cpq6Pcsn9vno9ds.roa
Signing time: Wed 01 Jan 2025 21:49:03 +0000
ROA not before: Wed 01 Jan 2025 21:49:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215185
IP address blocks: 2a0e:c5c1::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:f5:2c:b1:00:97:da:cf:69:33:50:a6:49:c7:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1cdc26d44eaf85654481e9581043e14887765b4
Validity
Not Before: Jan 1 21:49:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=83a9a2305926c3ef38729aba3dcb27f6f9e8f5db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:bf:d1:79:c7:0e:8c:5b:08:1f:14:43:2d:c9:
63:e3:98:9d:f7:e6:42:ad:64:a8:1c:36:8d:4d:2f:
53:d8:9c:27:b0:e8:ae:30:42:24:0d:7f:e8:53:73:
ff:21:6d:f8:8a:c1:5d:c3:58:27:88:98:36:05:a7:
ee:89:cb:03:24:fa:96:17:51:d8:06:96:81:da:ba:
4b:77:44:95:9a:0a:b6:ac:05:ab:30:e7:4e:cf:98:
4e:32:33:b4:59:10:4e:c4:f0:bf:df:46:86:d5:47:
69:27:ab:24:09:42:99:bc:03:0d:8b:74:b5:c9:bb:
fe:ca:6e:09:ed:75:52:c8:88:5a:a7:18:f3:4e:fd:
af:d8:c0:59:fc:e8:26:92:c5:f1:80:09:57:89:3a:
5d:18:25:00:79:0b:95:92:04:45:97:fe:27:44:d3:
ad:2d:4d:b9:d3:cc:5b:6d:69:c1:b9:05:3c:59:31:
9a:58:cf:b7:82:34:e0:3b:1e:4b:ae:e1:17:bb:7f:
1e:de:8b:f2:29:a8:64:c8:a8:22:e2:26:f1:95:e9:
0b:b9:ab:37:e5:a3:d8:c6:05:a4:27:97:e4:36:6b:
56:2d:f7:d5:2a:d1:cd:07:72:4f:cb:3c:0f:21:aa:
a9:48:0e:ed:84:22:50:66:18:b2:16:4d:82:19:a6:
80:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:A9:A2:30:59:26:C3:EF:38:72:9A:BA:3D:CB:27:F6:F9:E8:F5:DB
X509v3 Authority Key Identifier:
keyid:B1:CD:C2:6D:44:EA:F8:56:54:48:1E:95:81:04:3E:14:88:77:65:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sc3CbUTq-FZUSB6VgQQ-FIh3ZbQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/aaadac-4809-4955-ac62-8f9ca0ebccab/1/g6miMFkmw-84cpq6Pcsn9vno9ds.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/aaadac-4809-4955-ac62-8f9ca0ebccab/1/sc3CbUTq-FZUSB6VgQQ-FIh3ZbQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:c5c1::/48
Signature Algorithm: sha256WithRSAEncryption
25:69:74:a1:0f:8b:30:53:41:cd:05:d1:6e:60:2f:e1:11:c8:
5c:d2:db:14:ff:9a:de:41:ee:00:c4:5b:b7:3c:62:5b:4f:78:
67:77:b3:f8:57:57:de:94:ea:6d:64:bc:a7:e1:ad:e1:c1:61:
96:c7:c5:af:c9:dc:24:42:25:33:ae:2f:86:55:79:d2:fd:81:
60:be:07:1e:f2:c2:78:4a:c4:3e:bc:9e:76:3c:8a:67:16:08:
d2:5a:b2:b3:3b:7a:c5:89:c5:88:02:fa:d7:6e:cc:81:5e:ad:
cb:65:3b:10:4c:74:48:12:5d:83:64:c4:dd:0a:0e:7f:19:a6:
77:23:fb:a6:3e:14:e4:8f:0f:e3:f6:f5:c1:f6:ff:10:86:88:
21:b7:40:1c:7a:75:25:f4:27:ff:17:0e:a8:ae:b9:2f:c3:d7:
16:93:ca:ad:13:2f:ad:6a:29:30:71:4a:b6:ac:a7:fe:89:96:
76:72:b8:d4:ef:ec:93:1f:0c:89:05:b3:8d:97:59:7e:3b:d3:
ea:d5:fd:4b:e4:e7:a6:a0:17:73:e1:2e:b8:85:1a:28:98:78:
46:d9:11:85:ac:bd:2c:83:15:91:15:3d:5a:4e:16:c0:b5:36:
b8:10:e7:83:9c:f0:d3:ac:25:62:50:e0:ca:34:2a:da:38:c7:
8f:01:af:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:46 2025 by rpki-client on console.sobornost.net