Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/5TNuyEQmhXUz3JJkMEZhFRzdp2Q.roa
File: 5TNuyEQmhXUz3JJkMEZhFRzdp2Q.roa (raw, json)
Hash identifier: iq6Ex22AOPRjzMmRUulAA3NAfN+wom1xTy4JU9b3wsw=
Subject key identifier: E5:33:6E:C8:44:26:85:75:33:DC:92:64:30:46:61:15:1C:DD:A7:64
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 019488C9B060FAA3E8655FD90E4CFEC3F0CD
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/5TNuyEQmhXUz3JJkMEZhFRzdp2Q.roa
Signing time: Tue 21 Jan 2025 12:15:06 +0000
ROA not before: Tue 21 Jan 2025 12:15:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213548
IP address blocks: 2a0c:b641:1f0::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:88:c9:b0:60:fa:a3:e8:65:5f:d9:0e:4c:fe:c3:f0:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 21 12:15:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e5336ec84426857533dc9264304661151cdda764
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:95:87:2d:9a:af:e8:b0:af:0d:9f:24:cf:ac:
61:69:e8:f1:02:00:30:9b:ff:fd:a7:ca:72:0a:02:
1e:81:48:57:e0:9a:35:36:7f:6a:f6:a9:94:b0:d6:
41:bd:b9:31:5d:e2:e7:7b:d2:03:59:48:ff:86:5d:
56:68:6c:6c:11:9a:98:80:a4:fe:fa:09:7b:55:2f:
1a:43:66:e4:f5:1b:d3:54:86:66:79:61:a0:18:1b:
5b:de:79:c5:c1:76:5f:3f:48:1a:9d:ce:84:5b:e6:
01:2b:9f:37:c6:fc:fd:8d:ba:e1:bf:ae:d0:2b:35:
dd:71:b4:59:8c:f2:e7:e2:2d:09:94:a0:df:18:e1:
12:f8:43:c0:2a:33:f7:f9:75:35:fa:53:71:e7:00:
ce:7a:57:7b:7c:6a:10:81:54:ec:d7:ab:46:01:2a:
9e:d6:8f:9e:e6:27:ed:8b:71:41:75:15:14:d5:84:
3a:2c:63:24:3e:28:e8:ca:84:00:35:ca:eb:07:a6:
50:50:15:fe:79:3a:61:62:91:52:a2:b6:d6:79:54:
65:fe:1a:8c:1b:5e:46:3b:0a:94:b9:66:1a:85:7c:
0f:ba:7f:11:e4:1d:44:62:e7:d7:8a:f3:f7:cf:af:
13:cc:7d:e6:0f:ac:6c:3d:17:89:8a:5d:c7:42:ce:
24:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:33:6E:C8:44:26:85:75:33:DC:92:64:30:46:61:15:1C:DD:A7:64
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/5TNuyEQmhXUz3JJkMEZhFRzdp2Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:1f0::/44
Signature Algorithm: sha256WithRSAEncryption
4f:3a:49:34:82:8d:7b:7a:55:29:33:c8:42:e2:b1:b1:ea:b2:
ae:7c:04:72:35:dd:2f:7e:11:4d:cc:44:b5:64:27:b1:d5:b8:
9b:a8:b4:3d:6e:4b:c3:51:6e:78:1e:96:49:69:f4:2b:9f:8d:
a1:ce:fa:d8:55:0e:dc:45:9a:6f:22:61:cc:d2:47:55:01:d5:
cf:4c:ea:f5:c6:61:5a:4d:52:9a:da:27:eb:34:77:26:a5:22:
98:07:b1:5d:86:03:22:15:61:63:61:56:13:79:c9:1d:31:3b:
ea:8d:d4:39:ae:e2:a2:be:20:cd:1d:01:25:5b:a6:b2:64:da:
a4:df:c4:cc:92:ec:3c:44:8c:55:ed:27:0b:97:99:33:f6:a0:
a4:4f:eb:07:16:62:67:89:f2:c8:3d:f5:f4:d1:e1:06:3d:66:
2a:a6:c6:d3:64:d6:5a:79:88:e6:39:a9:63:1c:cf:95:55:74:
a4:ad:20:57:a5:b3:a7:78:8d:e2:b5:b9:9e:58:40:36:96:7e:
42:c3:fc:14:bd:85:07:ee:65:9c:6c:7b:e5:8a:d9:ad:08:c8:
04:16:b6:b9:08:96:ae:9d:c8:34:2d:b2:d1:00:14:1c:ad:0d:
4d:76:58:23:7a:b8:58:82:cf:94:1a:ed:0a:66:a8:c9:55:ba:
97:5c:8b:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:23 2025 by rpki-client on console.sobornost.net