Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/9e3ZGq-q-RiVZB_pmw2P_MWk27A.roa
File: 9e3ZGq-q-RiVZB_pmw2P_MWk27A.roa (raw, json)
Hash identifier: ZIOkT+0ba7M0bal4+m4QGglnLalK+e3DGT2IyoIVSKk=
Subject key identifier: F5:ED:D9:1A:AF:AA:F9:18:95:64:1F:E9:9B:0D:8F:FC:C5:A4:DB:B0
Certificate issuer: /CN=1b9f21ba04e5e3077b391e3d48ff5b0a50b3369f
Certificate serial: 01942521EB33BF7D9DF7BB530CD37863D693
Authority key identifier: 1B:9F:21:BA:04:E5:E3:07:7B:39:1E:3D:48:FF:5B:0A:50:B3:36:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/9e3ZGq-q-RiVZB_pmw2P_MWk27A.roa
Signing time: Thu 02 Jan 2025 03:49:27 +0000
ROA not before: Thu 02 Jan 2025 03:49:27 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 216343
IP address blocks: 2a0a:280:1000::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:eb:33:bf:7d:9d:f7:bb:53:0c:d3:78:63:d6:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b9f21ba04e5e3077b391e3d48ff5b0a50b3369f
Validity
Not Before: Jan 2 03:49:27 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f5edd91aafaaf91895641fe99b0d8ffcc5a4dbb0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:95:7b:42:e1:e3:06:f2:ec:2b:f1:f6:1e:15:
b0:ac:88:9e:48:76:6f:55:3c:d2:6b:f6:70:a1:61:
a0:4b:bd:41:76:c4:a1:0b:1c:50:5a:82:46:c6:95:
7a:8d:2b:fa:90:c5:bd:21:64:35:e8:ed:72:58:f7:
1d:ca:cb:7f:3d:29:dd:aa:25:51:e7:fe:6a:47:03:
d7:6b:73:5d:f5:b1:e9:23:a7:0c:3a:99:5b:4a:1b:
1f:d7:90:86:0a:3b:97:66:50:eb:3e:78:a9:8d:50:
64:73:23:79:8e:52:0f:45:de:f3:56:54:56:4e:f4:
3a:83:26:8f:82:89:7d:17:54:15:52:cd:1d:d3:52:
ae:bc:fc:75:b7:9b:c6:71:74:98:0d:b2:c9:6a:38:
7e:d3:dd:d7:02:b2:13:fe:2f:76:d1:3a:49:34:90:
96:43:b8:ae:9a:29:4a:36:95:15:2a:20:5a:c3:7a:
0f:13:75:62:19:64:e3:4d:ed:6a:1b:57:f5:1b:06:
c6:0a:80:2b:55:f3:39:01:53:47:88:1b:d5:87:84:
89:09:5d:f5:9c:a3:10:76:8f:46:86:28:56:37:39:
92:cb:48:ac:25:b9:3c:81:5e:5d:9f:e8:97:87:4a:
a6:80:4c:e3:52:74:08:03:1d:d9:2b:77:ab:57:3c:
74:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:ED:D9:1A:AF:AA:F9:18:95:64:1F:E9:9B:0D:8F:FC:C5:A4:DB:B0
X509v3 Authority Key Identifier:
keyid:1B:9F:21:BA:04:E5:E3:07:7B:39:1E:3D:48:FF:5B:0A:50:B3:36:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/9e3ZGq-q-RiVZB_pmw2P_MWk27A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/G58hugTl4wd7OR49SP9bClCzNp8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:280:1000::/40
Signature Algorithm: sha256WithRSAEncryption
85:66:e3:3a:db:b7:bc:b3:60:a4:37:a3:38:45:29:2b:f0:97:
0e:e0:a0:70:a9:0c:51:9c:af:e3:32:b2:b4:9f:10:08:31:70:
08:09:29:40:ea:e3:76:ad:46:9a:60:2b:e5:b0:a5:df:33:ec:
cb:a0:bb:71:2e:c9:d3:85:44:b9:bf:e3:93:10:c8:51:9a:21:
98:1b:11:1a:b5:99:df:4e:68:a0:cc:67:5c:42:08:d5:93:b0:
ae:09:44:9a:88:d6:c0:80:0c:0e:aa:e3:01:53:a7:29:02:14:
88:db:be:76:e9:c8:c7:b0:15:e0:74:a0:66:13:9c:e8:72:de:
36:5d:85:20:4a:97:14:67:1f:88:93:bb:0f:91:81:8d:10:e3:
89:62:38:fe:bf:db:05:57:1f:54:60:f7:37:91:86:25:f8:a2:
6d:ed:50:fe:88:ca:e4:83:f3:e6:cb:f0:b0:52:a8:7d:74:f2:
b0:ec:e7:7f:57:b5:d5:0d:ac:4a:c1:b9:72:60:61:ca:f5:70:
77:29:ea:f9:58:c8:8c:63:63:76:04:3a:07:e4:ca:e1:68:d6:
e6:ea:a5:bb:e8:dc:0d:5e:04:46:54:f6:66:30:11:56:58:1a:
ed:1c:2d:6d:98:44:dd:70:11:09:4e:5b:97:d6:de:52:e1:61:
ce:cd:6a:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 23 19:12:36 2025 by rpki-client on console.sobornost.net