Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/b73add-ea0f-4c22-980e-059bab015cc3/1/dwPtZ0dw8XTxu-Q4XyALaYmwsrA.roa
File: dwPtZ0dw8XTxu-Q4XyALaYmwsrA.roa (raw, json)
Hash identifier: JYJf04rqGTREcvlrGWDW0Zya9cc0gj5IVi8xJQh0opk=
Subject key identifier: 77:03:ED:67:47:70:F1:74:F1:BB:E4:38:5F:20:0B:69:89:B0:B2:B0
Certificate issuer: /CN=bbe026ef26920909d931ea4dac9d9390486b4153
Certificate serial: 0194258F8B9950149A1076875EFF2E046007
Authority key identifier: BB:E0:26:EF:26:92:09:09:D9:31:EA:4D:AC:9D:93:90:48:6B:41:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u-Am7yaSCQnZMepNrJ2TkEhrQVM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/b73add-ea0f-4c22-980e-059bab015cc3/1/dwPtZ0dw8XTxu-Q4XyALaYmwsrA.roa
Signing time: Thu 02 Jan 2025 05:49:11 +0000
ROA not before: Thu 02 Jan 2025 05:49:11 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 6697
IP address blocks: 2a10:641::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:8b:99:50:14:9a:10:76:87:5e:ff:2e:04:60:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bbe026ef26920909d931ea4dac9d9390486b4153
Validity
Not Before: Jan 2 05:49:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7703ed674770f174f1bbe4385f200b6989b0b2b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:09:e4:8b:f6:0a:26:f0:53:38:6f:29:fc:65:
15:da:b1:7a:73:42:53:63:2d:1b:2c:fd:0a:6f:e9:
ff:cb:81:24:ba:63:db:2f:a2:42:01:4e:e9:e5:19:
8f:81:ba:dd:ce:df:88:ee:bd:4a:a6:0d:a3:ad:64:
bd:37:b8:e2:6f:f9:0a:6d:12:c2:6d:1e:b2:a5:7a:
a1:e5:25:ac:0b:84:6f:73:72:61:af:70:7c:4c:8c:
bb:5f:fc:aa:e2:9c:ea:2b:0f:db:5c:2a:0f:44:70:
e5:06:bf:54:e7:83:90:14:15:fb:05:1f:33:a6:d0:
4c:dc:65:69:bc:90:07:0a:04:7b:0e:24:79:86:e6:
09:00:5e:87:c1:50:f4:2f:3d:2c:81:5b:80:23:4b:
5a:86:1a:d9:f1:f0:1e:62:1e:4c:39:28:ad:cf:5e:
e5:bd:fb:ff:6b:62:c1:04:5d:87:c0:39:d9:66:49:
21:45:f1:28:14:6a:a0:cd:1e:81:06:75:42:80:c8:
13:41:fe:29:c0:91:94:32:36:d2:92:57:0d:ff:1a:
6c:a5:4c:fb:a1:7a:4b:c1:75:9e:27:7d:c6:35:01:
f5:ec:9a:29:22:04:14:db:73:08:5b:ed:ee:5c:94:
e9:bd:b9:03:2b:de:fa:0a:e2:c5:36:75:be:d7:d1:
8a:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:03:ED:67:47:70:F1:74:F1:BB:E4:38:5F:20:0B:69:89:B0:B2:B0
X509v3 Authority Key Identifier:
keyid:BB:E0:26:EF:26:92:09:09:D9:31:EA:4D:AC:9D:93:90:48:6B:41:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u-Am7yaSCQnZMepNrJ2TkEhrQVM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/b73add-ea0f-4c22-980e-059bab015cc3/1/dwPtZ0dw8XTxu-Q4XyALaYmwsrA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/b73add-ea0f-4c22-980e-059bab015cc3/1/u-Am7yaSCQnZMepNrJ2TkEhrQVM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:641::/32
Signature Algorithm: sha256WithRSAEncryption
26:d6:37:eb:14:f1:b8:e8:ab:9d:89:60:59:45:5c:5f:c8:6d:
0f:dc:f9:eb:18:ef:bc:db:41:52:86:19:f5:50:f3:4a:93:64:
d9:1d:b3:96:70:37:1a:a0:24:c1:ca:77:6f:c6:b2:e5:6c:58:
29:ab:cd:92:fc:03:09:88:d6:7f:81:2f:9e:f5:d3:5c:c2:96:
98:e9:11:fe:04:57:7d:44:97:13:8b:2c:5e:36:65:62:32:14:
a6:e1:73:7c:74:57:b8:05:83:41:83:26:a2:c1:db:48:d5:e4:
31:5b:5b:05:d6:77:c3:73:5a:70:70:5a:e0:82:7f:00:0f:a7:
ba:9e:97:32:bb:2a:08:a7:d7:cf:96:55:c4:0a:75:a1:d4:52:
31:0a:f2:5b:0c:28:c2:f9:a7:7b:e4:5c:19:d5:49:36:fa:7f:
a7:39:ff:d7:a6:b0:30:f7:69:ea:c9:6b:ac:89:c7:a2:3b:38:
02:9d:a3:ce:07:7e:81:0c:00:81:20:24:85:25:a4:08:c7:3e:
2d:ff:aa:f1:62:64:1e:69:bd:06:b7:f7:b1:93:67:c4:b4:d8:
42:a0:2f:7f:9a:d0:52:ef:4d:1a:26:ed:e5:d0:b4:cd:79:53:
57:48:af:4a:17:fa:0c:e6:e9:06:4d:bf:c7:20:31:36:e9:f9:
c4:c2:b0:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:16 2025 by rpki-client on console.sobornost.net