Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/d8adbe-dcbe-4c27-9671-dbdeb3d5360b/1/IB6At0eMkw1jy1fdpcIgarxWKQ4.roa
File: IB6At0eMkw1jy1fdpcIgarxWKQ4.roa (raw, json)
Hash identifier: rOQggKg6yCYoTFHyozZzxf3+Jia2rL6WXiIW/P0HCuo=
Subject key identifier: 20:1E:80:B7:47:8C:93:0D:63:CB:57:DD:A5:C2:20:6A:BC:56:29:0E
Certificate issuer: /CN=435c3f1a97903e796292a2ac7a78d41b1c21db85
Certificate serial: 019420D5BFA2A692B7D171CF44C5FBAA6F14
Authority key identifier: 43:5C:3F:1A:97:90:3E:79:62:92:A2:AC:7A:78:D4:1B:1C:21:DB:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q1w_GpeQPnlikqKsenjUGxwh24U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/d8adbe-dcbe-4c27-9671-dbdeb3d5360b/1/IB6At0eMkw1jy1fdpcIgarxWKQ4.roa
Signing time: Wed 01 Jan 2025 07:47:46 +0000
ROA not before: Wed 01 Jan 2025 07:47:46 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 62256
IP address blocks: 2001:67c:920::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d5:bf:a2:a6:92:b7:d1:71:cf:44:c5:fb:aa:6f:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=435c3f1a97903e796292a2ac7a78d41b1c21db85
Validity
Not Before: Jan 1 07:47:46 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=201e80b7478c930d63cb57dda5c2206abc56290e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:9e:d7:81:a2:88:9e:2e:cb:d2:ec:9a:26:1c:
0c:c9:0a:02:5b:66:f6:16:9a:ff:1f:71:17:43:b4:
b6:4d:60:f7:50:cf:37:90:f4:73:7c:74:27:1c:5c:
7b:37:83:20:a1:e8:19:de:69:fe:c1:18:b4:12:6a:
93:b1:93:a1:32:bc:0a:a7:78:f7:45:e3:3c:ad:45:
f3:80:13:0c:90:dd:72:ae:32:c9:e1:32:60:71:fd:
14:a3:05:9c:b7:1f:54:25:6f:ce:f2:9e:9e:69:74:
28:66:d5:09:a7:79:c4:9a:23:07:d8:e0:e3:9c:05:
0f:23:31:aa:d7:7c:78:96:c7:d4:19:19:8c:6d:cf:
1c:02:97:fb:85:a5:5d:70:98:bd:5f:b7:7d:42:d2:
55:33:c3:96:c6:cd:0b:3b:67:6f:92:b2:de:73:7f:
f2:d5:c4:b9:0f:e1:40:d0:0c:f9:c6:e9:2b:39:f1:
84:63:71:1e:89:fe:6a:d2:3f:1f:23:a6:15:da:56:
e1:b5:3d:f3:1f:28:03:6e:bd:b9:53:dc:a6:1d:3a:
39:5e:ea:52:bd:b3:3e:e9:96:b0:38:d9:05:82:34:
86:62:67:90:db:e3:dc:00:0c:92:45:37:a8:42:8f:
86:3c:4b:c0:02:d8:a4:76:9b:cf:60:08:2d:bd:47:
0e:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:1E:80:B7:47:8C:93:0D:63:CB:57:DD:A5:C2:20:6A:BC:56:29:0E
X509v3 Authority Key Identifier:
keyid:43:5C:3F:1A:97:90:3E:79:62:92:A2:AC:7A:78:D4:1B:1C:21:DB:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q1w_GpeQPnlikqKsenjUGxwh24U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/d8adbe-dcbe-4c27-9671-dbdeb3d5360b/1/IB6At0eMkw1jy1fdpcIgarxWKQ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/d8adbe-dcbe-4c27-9671-dbdeb3d5360b/1/Q1w_GpeQPnlikqKsenjUGxwh24U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:920::/48
Signature Algorithm: sha256WithRSAEncryption
53:7b:b7:47:05:41:65:e3:9d:e1:0a:fb:5e:9b:4e:32:34:d1:
6b:ad:59:c3:db:42:c4:7f:72:51:b2:cb:e2:e9:04:84:ec:c8:
68:44:64:e6:e1:a1:49:1d:9b:25:ca:f3:16:84:09:2a:b6:12:
88:ef:93:eb:9e:66:2a:64:1a:64:83:14:73:9c:42:5e:8b:0c:
e7:cd:b5:fa:df:69:83:5e:58:27:fd:15:43:32:08:0e:f9:ff:
7e:2a:0d:16:f8:db:c3:8c:d5:59:00:4a:9f:8d:22:f2:10:8e:
a9:f4:5c:86:e1:11:c4:10:5f:5a:02:36:19:06:23:d0:de:fd:
be:29:df:b9:e5:df:9c:4c:09:cb:95:c2:1b:31:d7:86:3e:c1:
bd:9c:89:43:ff:e1:09:45:96:6e:35:8e:80:e1:8c:03:ad:04:
65:b2:cc:20:31:7b:8f:ed:0e:97:d4:9e:08:9f:af:68:12:cd:
a9:ad:52:d5:3d:a9:d4:c4:bf:c9:bb:1d:cb:95:15:7d:cc:1b:
ce:6e:78:50:f7:6e:17:7d:77:ac:aa:11:37:43:02:f1:eb:d1:
72:1a:cd:93:8a:ac:19:9d:63:f5:4d:73:23:8b:21:4a:56:72:
f9:33:54:24:2f:75:c3:5d:8f:0c:02:4a:25:cb:59:07:2c:f9:
34:37:fb:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:19 2025 by rpki-client on console.sobornost.net