Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/36cd40-9081-40e6-97c7-1620cfdc7117/1/urJ49fIkD8qF9GsD_zFu82_16aQ.roa
File: urJ49fIkD8qF9GsD_zFu82_16aQ.roa (raw, json)
Hash identifier: CgkfZ2tObyCZ5wcx0o7Zqg/j5Bh2RYB4YUbPkk96BQA=
Subject key identifier: BA:B2:78:F5:F2:24:0F:CA:85:F4:6B:03:FF:31:6E:F3:6F:F5:E9:A4
Certificate issuer: /CN=bc2613e0f26d3907f096340be050c201d358d6d5
Certificate serial: 01942067C0CDF3C9F57968EE787AE9993E17
Authority key identifier: BC:26:13:E0:F2:6D:39:07:F0:96:34:0B:E0:50:C2:01:D3:58:D6:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vCYT4PJtOQfwljQL4FDCAdNY1tU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/36cd40-9081-40e6-97c7-1620cfdc7117/1/urJ49fIkD8qF9GsD_zFu82_16aQ.roa
Signing time: Wed 01 Jan 2025 05:47:37 +0000
ROA not before: Wed 01 Jan 2025 05:47:37 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213904
IP address blocks: 2a0b:bb00::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:67:c0:cd:f3:c9:f5:79:68:ee:78:7a:e9:99:3e:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc2613e0f26d3907f096340be050c201d358d6d5
Validity
Not Before: Jan 1 05:47:37 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=bab278f5f2240fca85f46b03ff316ef36ff5e9a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:d5:67:d9:0c:fb:31:9a:47:0c:cd:62:09:73:
e1:0c:ba:33:6a:6f:f0:6a:86:f5:96:16:1b:f1:d1:
5c:39:9f:7d:68:9e:5e:27:48:13:ad:cb:fd:3e:2b:
3c:af:fd:5a:9c:47:0d:4d:da:93:3b:bd:fd:8a:d7:
92:07:e2:33:2a:ef:f9:b6:78:4d:1c:da:fc:f1:9b:
dd:b9:9d:5c:a1:0a:af:36:02:25:b4:62:6d:2f:b0:
87:6d:8d:03:9c:cf:69:54:ba:36:cb:24:75:1c:35:
6a:dd:27:d0:8c:7f:65:53:cd:ee:46:88:2a:ac:52:
47:55:76:15:af:55:14:2a:1c:70:db:f0:dc:99:fb:
b7:28:9e:aa:c7:09:47:47:e0:22:81:9d:5c:51:6d:
1b:c1:5b:f4:c7:f2:d8:c6:45:a2:50:ff:8e:4a:c4:
ed:fb:fe:13:e0:1c:cb:f4:09:db:0c:73:0f:9f:83:
49:f0:ef:bd:d5:81:bd:c3:08:83:9c:f4:8a:e7:be:
0e:cf:ae:4f:a9:4e:4f:c7:9d:a2:3d:83:4a:ce:96:
f0:a1:73:bb:03:7a:00:8f:26:ea:49:02:71:47:42:
dc:29:1f:6b:0b:c3:95:f1:e4:43:6c:9c:6b:77:08:
73:3c:7e:40:a5:93:54:3c:93:6d:4e:35:0f:0f:42:
78:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:B2:78:F5:F2:24:0F:CA:85:F4:6B:03:FF:31:6E:F3:6F:F5:E9:A4
X509v3 Authority Key Identifier:
keyid:BC:26:13:E0:F2:6D:39:07:F0:96:34:0B:E0:50:C2:01:D3:58:D6:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vCYT4PJtOQfwljQL4FDCAdNY1tU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/36cd40-9081-40e6-97c7-1620cfdc7117/1/urJ49fIkD8qF9GsD_zFu82_16aQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/36cd40-9081-40e6-97c7-1620cfdc7117/1/vCYT4PJtOQfwljQL4FDCAdNY1tU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:bb00::/29
Signature Algorithm: sha256WithRSAEncryption
3a:d8:6a:32:01:6f:74:01:68:ef:73:ff:40:9f:bd:80:49:52:
31:81:c8:66:26:b3:a0:72:d7:25:d7:52:83:80:4b:3d:89:d3:
16:3f:0d:88:a2:24:a4:71:7a:e6:ac:b0:14:ac:d8:e8:ba:e9:
b4:61:76:d8:75:b2:ce:67:11:c1:fb:d6:02:88:0a:bb:7b:87:
0c:e5:9f:88:8c:fd:83:1c:d9:2b:a4:48:24:b5:a7:c2:f4:d8:
3a:bc:da:d0:4d:73:70:12:44:ed:53:af:96:bc:3b:d2:c4:aa:
01:9a:18:d2:23:24:10:4c:9a:87:2e:dc:09:f8:84:13:2e:a5:
e4:1c:56:e5:58:2c:74:ce:ad:c7:e9:5a:af:4d:e3:db:6e:83:
3c:30:37:78:08:78:71:7b:00:c9:89:c3:aa:1e:41:2e:fc:f4:
44:77:ce:eb:f0:cb:97:eb:05:c1:36:7b:9a:5c:0a:d2:d8:cb:
26:53:93:4f:1f:f5:de:b5:d6:77:2c:a4:79:8d:60:29:c0:2c:
3a:be:e5:b5:61:6f:ba:81:06:82:3d:60:cc:6b:cb:c6:35:28:
de:fb:f2:91:fc:3c:79:0b:ae:db:86:d6:c1:61:0a:b1:9a:0b:
d9:4b:e8:89:5f:04:63:dc:9f:18:18:be:b8:3a:d3:1e:18:86:
2c:2a:e8:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:19 2025 by rpki-client on console.sobornost.net