Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/176f7d-6f0f-45e5-97f2-c9db981a2a2f/1/hw5zWhZ37cy3fl-F4c6L7KinXWA.roa
File: hw5zWhZ37cy3fl-F4c6L7KinXWA.roa (raw, json)
Hash identifier: JVVK2E4Q0U9kLmKrr7lDfe4ry5wJQg7f4zL2c9LIRlo=
Subject key identifier: 87:0E:73:5A:16:77:ED:CC:B7:7E:5F:85:E1:CE:8B:EC:A8:A7:5D:60
Certificate issuer: /CN=a4338168cd9d5af0604013fc4274126fc581f3cb
Certificate serial: 01942748131FD72ADDAD118636C56DEFC850
Authority key identifier: A4:33:81:68:CD:9D:5A:F0:60:40:13:FC:42:74:12:6F:C5:81:F3:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pDOBaM2dWvBgQBP8QnQSb8WB88s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/176f7d-6f0f-45e5-97f2-c9db981a2a2f/1/hw5zWhZ37cy3fl-F4c6L7KinXWA.roa
Signing time: Thu 02 Jan 2025 13:50:22 +0000
ROA not before: Thu 02 Jan 2025 13:50:22 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211833
IP address blocks: 2a12:f340::/48 maxlen: 48
2a12:f340:1::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:13:1f:d7:2a:dd:ad:11:86:36:c5:6d:ef:c8:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4338168cd9d5af0604013fc4274126fc581f3cb
Validity
Not Before: Jan 2 13:50:22 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=870e735a1677edccb77e5f85e1ce8beca8a75d60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:7a:9e:62:8a:59:5a:be:80:44:60:c3:a1:a0:
4f:58:e6:be:a5:b7:94:fa:0e:23:b5:0c:c0:7b:9d:
51:98:42:a9:c2:4a:dd:e6:91:11:c1:fb:b2:2d:46:
55:e8:96:30:26:25:81:d6:b3:59:e4:44:01:8e:3d:
c2:39:fc:1a:2e:79:01:db:74:ad:4d:a3:b0:57:95:
b7:2c:04:35:8e:94:43:9e:99:74:c0:b7:ef:6a:ba:
16:34:c5:e2:d0:b9:8d:63:60:a4:ed:ec:ff:32:58:
ef:05:fe:ef:4a:07:d1:be:17:ef:a8:31:ce:bb:8b:
3a:87:9d:c4:3b:5c:bf:6d:7c:60:94:54:a0:d7:7e:
98:23:42:af:3d:ff:3a:a9:44:2f:fd:7c:88:92:71:
61:bf:6e:36:06:80:9f:74:19:84:25:9b:f7:85:a4:
a3:87:a5:f7:16:a7:73:db:89:c2:99:67:1c:f7:2d:
25:63:56:02:1c:b0:3b:5a:1c:c0:71:98:41:11:47:
a7:7b:25:ca:f4:bb:09:d0:02:4d:64:fe:62:37:37:
1e:d8:b4:dc:aa:fd:ee:45:74:b7:f0:9c:7c:8d:78:
ea:d2:c3:6e:22:1d:f8:0a:d2:36:fd:8f:d0:06:9b:
5e:a2:e5:52:c8:d1:fe:55:97:75:b3:92:5e:d9:7f:
3a:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:0E:73:5A:16:77:ED:CC:B7:7E:5F:85:E1:CE:8B:EC:A8:A7:5D:60
X509v3 Authority Key Identifier:
keyid:A4:33:81:68:CD:9D:5A:F0:60:40:13:FC:42:74:12:6F:C5:81:F3:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pDOBaM2dWvBgQBP8QnQSb8WB88s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/176f7d-6f0f-45e5-97f2-c9db981a2a2f/1/hw5zWhZ37cy3fl-F4c6L7KinXWA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/176f7d-6f0f-45e5-97f2-c9db981a2a2f/1/pDOBaM2dWvBgQBP8QnQSb8WB88s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:f340::/47
Signature Algorithm: sha256WithRSAEncryption
ac:ff:6a:e4:b2:0c:99:ae:61:2a:e0:fd:e9:da:d9:00:2e:53:
e2:b0:d6:9b:ec:03:c3:60:bb:a9:6a:19:61:7c:17:5e:d4:d3:
b1:ba:59:b1:a7:39:b6:ca:9f:52:45:43:5b:88:08:3e:6b:9f:
4b:5c:6a:40:af:84:8d:81:da:04:d4:99:e9:74:27:8e:00:32:
a7:cd:2e:7b:f3:66:6f:94:f6:6a:ed:f8:ab:67:16:75:5b:e9:
e3:ef:44:61:a2:23:08:67:e8:cc:8e:5e:25:40:c7:4d:4d:38:
b6:be:2a:89:bd:1b:94:a9:a1:21:4a:7d:0c:b6:8b:08:b1:24:
57:7d:2b:bd:23:1d:b7:01:ec:f6:3b:6c:d4:82:01:80:71:85:
9c:f6:1e:72:10:68:e9:58:48:cc:fc:56:5d:9b:41:8c:a3:92:
1e:11:48:0a:56:f4:08:b3:8a:11:df:a0:5d:92:dc:93:ef:20:
8e:d1:16:be:21:f7:47:dc:99:50:c2:4c:4d:02:87:63:b9:82:
7c:43:06:23:7d:50:11:18:3d:a9:01:63:0d:00:d3:b8:39:f0:
be:cd:29:21:d3:a1:33:35:f8:31:6b:91:c3:9a:44:12:a5:56:
81:b3:81:69:07:33:4d:16:06:f8:e6:30:ad:f1:37:f0:3c:2d:
c4:f1:cd:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:46 2025 by rpki-client on console.sobornost.net