Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/8ip3Y3MzSho2yx-ArYBLi8bJdsM.roa
File: 8ip3Y3MzSho2yx-ArYBLi8bJdsM.roa (raw, json)
Hash identifier: qBnLyju9dgm/WUzZmzcKElj46ajnJle5u3to0dLlpiM=
Subject key identifier: F2:2A:77:63:73:33:4A:1A:36:CB:1F:80:AD:80:4B:8B:C6:C9:76:C3
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 019423D7BEA72F9790FE7FD54E556965C7BF
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/8ip3Y3MzSho2yx-ArYBLi8bJdsM.roa
Signing time: Wed 01 Jan 2025 21:48:49 +0000
ROA not before: Wed 01 Jan 2025 21:48:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 204669
IP address blocks: 2a11:2f40::/29 maxlen: 29
2a11:7240::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:be:a7:2f:97:90:fe:7f:d5:4e:55:69:65:c7:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: Jan 1 21:48:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f22a776373334a1a36cb1f80ad804b8bc6c976c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:06:22:7d:64:a4:55:4d:ab:c9:13:27:81:56:
b1:ed:5f:92:ed:7d:c5:0a:71:ce:81:b8:7a:bf:8e:
62:e4:b1:84:cd:e7:15:43:f3:ed:08:3e:8f:eb:86:
8f:4f:aa:11:81:3a:60:d5:35:b7:ce:2e:63:d1:54:
c1:d4:83:32:76:b8:3f:d0:37:56:b4:34:b4:bb:ca:
9c:b9:48:9f:75:b6:b0:b4:39:4c:04:b4:e5:5e:4f:
12:af:fb:8f:33:eb:18:7b:29:94:03:55:79:9d:cd:
eb:8e:3a:d1:5f:41:d2:33:61:69:f2:c7:09:d9:6b:
e6:4e:58:99:be:11:e4:7f:27:41:21:5c:f0:97:23:
09:62:6a:f2:ef:a4:47:73:d2:e3:1e:bd:fa:34:d4:
74:ac:d4:f9:6b:37:44:0f:3d:77:b8:3b:d7:3e:74:
29:4b:33:3e:21:d0:8e:ab:b7:b2:1b:20:19:7d:c7:
f4:59:b1:f5:08:08:26:6e:47:5e:ba:08:28:0e:36:
df:98:e7:1b:2a:d8:ce:42:00:35:18:d1:e6:14:6c:
2e:09:9a:97:81:04:0b:27:d6:9a:4d:00:01:a8:8b:
5d:c9:15:8c:99:51:cd:aa:9a:8a:0d:60:d8:29:7c:
1e:02:ca:4f:5d:8d:e6:ee:eb:17:f5:bd:94:90:b2:
ff:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:2A:77:63:73:33:4A:1A:36:CB:1F:80:AD:80:4B:8B:C6:C9:76:C3
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/8ip3Y3MzSho2yx-ArYBLi8bJdsM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:2f40::/29
2a11:7240::/29
Signature Algorithm: sha256WithRSAEncryption
5d:71:48:91:31:88:8d:a4:ac:55:98:e9:22:44:31:9f:36:6a:
c4:06:d2:ab:13:91:fc:8f:f6:56:bb:fc:4a:92:4e:5e:74:35:
1b:da:cd:fd:e4:79:83:cb:c9:84:7f:98:62:5d:9f:53:45:13:
f8:61:27:07:16:2a:d5:a3:f1:0e:25:97:fd:3c:16:33:be:e9:
d6:eb:b9:c8:4a:b4:c5:62:0c:30:a1:b4:90:d3:64:95:98:dc:
2b:12:b4:88:38:83:0f:42:97:97:7d:2b:d3:0c:c8:4a:80:11:
90:3e:81:af:9f:30:df:be:93:2f:8f:5a:4c:c7:5a:30:ef:c1:
47:76:a2:b3:9c:45:ec:6d:c1:3c:f3:68:76:54:e9:7c:33:2f:
2b:20:7d:8c:14:78:30:9e:75:9a:12:59:f4:0a:99:d2:fb:b9:
45:c1:3f:4f:f8:a3:bd:fc:d8:bc:03:93:d7:40:7c:2b:26:88:
3a:92:4e:36:77:bb:f6:3d:c5:c0:8f:88:98:34:7f:2c:cb:c2:
bc:c0:42:94:34:db:1c:a9:db:5e:ed:5a:bc:08:e7:19:a6:8b:
9c:c5:81:9b:5e:ee:8f:2e:4e:95:fc:8c:ca:af:e4:f6:1e:8c:
8f:c5:2c:6a:15:2b:0c:a6:a8:0a:c8:d8:4e:78:47:2a:93:00:
47:cb:bb:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 8 04:47:20 2025 by rpki-client on console.sobornost.net