Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/51f699-a0a2-434b-89b8-5339f37ffc77/1/t1PClou-z7vfeF555qMb4l57MSc.roa
File: t1PClou-z7vfeF555qMb4l57MSc.roa (raw, json)
Hash identifier: 9X/H2c1jyHWtYn2BaqYb1fxAsJf2gSZ8sASmz7CE+Tw=
Subject key identifier: B7:53:C2:96:8B:BE:CF:BB:DF:78:5E:79:E6:A3:1B:E2:5E:7B:31:27
Certificate issuer: /CN=9b5841b07ccf6399799b3586a1b22885923df8bf
Certificate serial: 019425FD70AEE92C0F2A9DE0B4321212E4D8
Authority key identifier: 9B:58:41:B0:7C:CF:63:99:79:9B:35:86:A1:B2:28:85:92:3D:F8:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m1hBsHzPY5l5mzWGobIohZI9-L8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/51f699-a0a2-434b-89b8-5339f37ffc77/1/t1PClou-z7vfeF555qMb4l57MSc.roa
Signing time: Thu 02 Jan 2025 07:49:13 +0000
ROA not before: Thu 02 Jan 2025 07:49:13 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 42135
IP address blocks: 2001:678:494::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fd:70:ae:e9:2c:0f:2a:9d:e0:b4:32:12:12:e4:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b5841b07ccf6399799b3586a1b22885923df8bf
Validity
Not Before: Jan 2 07:49:13 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b753c2968bbecfbbdf785e79e6a31be25e7b3127
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:bb:58:be:f6:22:cd:89:2b:3b:8c:8b:97:26:
3d:a3:30:ef:08:65:39:b3:96:1d:dd:9a:f1:15:78:
cd:c1:02:4b:4c:84:56:75:0d:68:fc:4f:9d:b9:ce:
8b:d2:cc:3a:14:f2:aa:05:30:15:34:a1:d7:aa:da:
57:8d:84:19:48:cb:b5:07:3a:13:5e:86:fe:6d:b0:
be:34:ab:e2:e5:04:1c:4e:0a:54:95:92:cc:1f:c5:
85:73:4a:81:23:49:10:dd:d6:40:8d:8d:ea:10:61:
01:b3:cd:5a:1d:32:cd:2f:b4:e5:ca:64:f9:c6:3a:
27:44:5b:e9:ae:89:2a:de:12:22:4d:37:6b:34:1e:
93:00:8e:dc:48:d8:c9:33:53:9e:d5:4d:18:2b:2e:
eb:53:4f:02:93:a0:88:cc:fd:29:8e:3a:38:3d:b1:
23:fc:a0:f6:33:d6:16:a2:bc:f2:af:59:53:08:a4:
67:68:e7:cb:52:04:74:b7:ae:e7:07:0c:e9:49:c0:
f1:90:7d:dc:f4:5b:f5:b6:7c:7d:71:4c:f7:51:31:
88:b6:39:95:1f:c0:24:61:5f:0e:1b:34:c0:5b:0e:
7e:d0:cc:0a:7d:cd:89:8e:f3:ce:21:3d:ae:cc:95:
2f:13:7c:8d:77:e1:30:80:28:d7:32:29:25:87:93:
e7:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:53:C2:96:8B:BE:CF:BB:DF:78:5E:79:E6:A3:1B:E2:5E:7B:31:27
X509v3 Authority Key Identifier:
keyid:9B:58:41:B0:7C:CF:63:99:79:9B:35:86:A1:B2:28:85:92:3D:F8:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m1hBsHzPY5l5mzWGobIohZI9-L8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/51f699-a0a2-434b-89b8-5339f37ffc77/1/t1PClou-z7vfeF555qMb4l57MSc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/51f699-a0a2-434b-89b8-5339f37ffc77/1/m1hBsHzPY5l5mzWGobIohZI9-L8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:494::/48
Signature Algorithm: sha256WithRSAEncryption
40:70:ac:c5:f3:78:e5:0a:37:eb:7d:f6:82:8b:dd:6b:24:7f:
6a:9c:ae:03:61:62:b0:7b:36:4e:a5:26:d9:cc:59:66:1d:7a:
cf:1c:b9:12:36:f9:28:28:e3:a7:2a:21:95:82:26:36:b1:23:
b9:54:35:c7:6b:2d:f4:53:e2:8c:8b:e0:24:e7:65:91:fa:8a:
3b:b1:84:22:09:c7:4c:96:99:a5:60:95:2c:d0:d0:c1:b1:c4:
02:87:64:5f:f8:7f:c5:e5:a0:4c:1e:9a:59:dc:27:cc:a4:d3:
a2:eb:9a:64:42:13:63:33:93:2d:88:83:1b:a0:8f:a1:9d:49:
06:8b:06:3c:5c:03:43:37:d4:ca:b4:6a:1b:b3:3d:5a:88:51:
10:9e:5c:83:97:32:4a:ab:a9:af:77:2c:ec:fd:e7:fd:91:fb:
0a:a7:f8:4d:7d:4a:ad:b3:7e:a6:35:c6:a8:be:38:ca:1a:7c:
52:2c:08:9d:56:40:d2:f6:f9:ac:ad:d2:b0:97:64:52:29:26:
82:e7:7d:1b:46:b7:a4:48:31:c0:23:e8:1f:eb:a6:2e:15:ec:
52:cb:cf:3c:8b:af:d3:1d:6e:4e:c8:44:a4:c3:99:ff:7b:07:
9d:8a:fc:ad:d7:8f:1c:7a:f7:05:01:28:41:97:5a:21:9a:45:
fe:74:03:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:49 2025 by rpki-client on console.sobornost.net