Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/902c1a-29f5-48dd-ada1-6a4eb37a33cc/1/26TbrymsKsZjBkQHIbbRRWaFR8Y.roa
File: 26TbrymsKsZjBkQHIbbRRWaFR8Y.roa (raw, json)
Hash identifier: SWIdCtaxTysSBJj/hZn1IHZ7qzsZ9zOqjJPPtoUQNGw=
Subject key identifier: DB:A4:DB:AF:29:AC:2A:C6:63:06:44:07:21:B6:D1:45:66:85:47:C6
Certificate issuer: /CN=3a8cfcfeb83e88f36ba2bf2445db9ec1e82f0d54
Certificate serial: 019424454AAC7818361D91E1AC52D1A28DFF
Authority key identifier: 3A:8C:FC:FE:B8:3E:88:F3:6B:A2:BF:24:45:DB:9E:C1:E8:2F:0D:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ooz8_rg-iPNror8kRduewegvDVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/902c1a-29f5-48dd-ada1-6a4eb37a33cc/1/26TbrymsKsZjBkQHIbbRRWaFR8Y.roa
Signing time: Wed 01 Jan 2025 23:48:28 +0000
ROA not before: Wed 01 Jan 2025 23:48:28 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 200301
IP address blocks: 2001:678:7e4::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:4a:ac:78:18:36:1d:91:e1:ac:52:d1:a2:8d:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a8cfcfeb83e88f36ba2bf2445db9ec1e82f0d54
Validity
Not Before: Jan 1 23:48:28 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=dba4dbaf29ac2ac66306440721b6d145668547c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:39:95:da:0d:95:27:ee:02:be:5d:06:71:3c:
a9:84:53:90:9d:b8:cb:9b:26:5f:04:ea:16:53:3d:
60:41:e8:9a:2e:9a:5b:49:8c:ba:a5:c4:b6:f3:1d:
af:25:a3:64:19:7c:a9:03:99:84:29:01:66:b3:41:
cb:5b:16:7f:0c:17:25:93:7e:93:63:10:94:ae:c9:
65:b8:49:57:27:e1:14:69:f8:c4:84:18:b7:63:5a:
d2:aa:60:45:7b:73:04:d0:5c:b7:83:4a:7c:77:f9:
c5:03:58:f7:3c:50:1d:b1:72:95:c0:b0:57:89:55:
21:55:8c:9b:84:83:fa:9e:43:bf:ea:d2:af:54:0a:
3f:30:11:b6:10:a1:fd:59:de:93:94:63:2d:14:eb:
b2:bd:9d:53:05:49:28:38:db:c1:35:f8:45:52:08:
a9:e5:4e:b8:27:22:06:d3:60:e0:e4:1f:e2:cb:42:
60:cc:89:00:23:95:0b:bb:83:15:70:7b:8f:c8:b7:
62:bb:38:cb:dc:b6:97:e8:1f:82:96:72:e2:a2:45:
53:4d:aa:3e:33:a4:d5:bb:0b:ab:a7:2b:1f:04:49:
83:dc:a2:3c:2a:7f:5b:ed:0d:ac:2b:55:14:a5:98:
a7:63:87:59:1c:c2:bb:dc:72:4c:bb:89:36:10:17:
b5:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:A4:DB:AF:29:AC:2A:C6:63:06:44:07:21:B6:D1:45:66:85:47:C6
X509v3 Authority Key Identifier:
keyid:3A:8C:FC:FE:B8:3E:88:F3:6B:A2:BF:24:45:DB:9E:C1:E8:2F:0D:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ooz8_rg-iPNror8kRduewegvDVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/902c1a-29f5-48dd-ada1-6a4eb37a33cc/1/26TbrymsKsZjBkQHIbbRRWaFR8Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/902c1a-29f5-48dd-ada1-6a4eb37a33cc/1/Ooz8_rg-iPNror8kRduewegvDVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:7e4::/48
Signature Algorithm: sha256WithRSAEncryption
ca:d3:fe:7f:08:b9:f9:73:9b:f9:8c:ce:2b:09:33:fb:6e:ae:
05:44:7b:2f:1c:eb:44:c0:e8:d4:39:2e:cc:39:81:1d:2c:9b:
64:65:ff:90:42:09:ed:6c:12:f3:32:12:e6:83:0a:71:cd:da:
49:b2:c1:f8:2a:28:31:fb:aa:3a:29:41:b9:f5:91:13:0b:22:
0b:87:f9:ec:d0:2e:83:da:b2:73:22:6a:2d:1d:ac:21:87:f1:
14:ac:09:f3:f8:fc:07:4d:7c:c2:51:0e:6b:14:13:7d:3a:ef:
87:29:fa:6d:04:35:72:8b:ed:f2:f7:93:10:3d:91:d5:5d:7a:
ab:eb:3a:54:a3:d7:d1:62:17:26:e6:15:0a:59:5a:c2:3e:f9:
04:2e:7d:16:e6:17:c0:14:36:d4:10:05:39:b6:c3:91:8f:cd:
99:a3:a7:aa:9d:7d:fe:59:85:14:6e:13:bf:54:bf:94:a6:d6:
05:3d:a1:9b:5c:b2:e8:8d:be:03:7f:90:01:3a:dd:82:12:78:
8e:f0:26:05:61:d4:67:d0:a9:58:65:ca:01:76:20:cc:7c:ed:
39:84:e1:7d:8c:2d:ac:45:4f:28:cf:8e:d2:e7:f0:9e:79:55:
50:ab:d4:bf:dd:62:4a:79:f0:39:80:9f:db:5d:d9:92:58:48:
71:8c:25:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:06 2025 by rpki-client on console.sobornost.net