Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/JCmFZq8XoB-whgX6MqyfJlA8qEo.roa
File: JCmFZq8XoB-whgX6MqyfJlA8qEo.roa (raw, json)
Hash identifier: xNR0bUC78WPm+6H0iJQrgXgi+mPX7iEQlQN+J7npg2U=
Subject key identifier: 24:29:85:66:AF:17:A0:1F:B0:86:05:FA:32:AC:9F:26:50:3C:A8:4A
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 019624B9F9892F2DB86FFA22538D12DC9E5C
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/JCmFZq8XoB-whgX6MqyfJlA8qEo.roa
Signing time: Fri 11 Apr 2025 12:01:29 +0000
ROA not before: Fri 11 Apr 2025 12:01:29 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 210554
IP address blocks: 2a0c:b641:390::/44 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:24:b9:f9:89:2f:2d:b8:6f:fa:22:53:8d:12:dc:9e:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Apr 11 12:01:29 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=24298566af17a01fb08605fa32ac9f26503ca84a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:df:ed:47:ed:12:be:e8:35:97:f4:b8:b5:4f:
1c:9a:3e:f4:23:56:12:ca:1a:b7:7f:56:98:7c:4d:
af:f6:7d:12:2e:cc:38:1b:bb:58:2a:34:50:67:95:
d5:d5:1e:f6:26:dd:fd:93:db:8c:8b:60:c7:07:08:
21:18:fd:c7:30:67:6f:2a:80:5b:4a:95:cc:65:9b:
b2:83:2f:c9:b6:03:c0:29:72:8f:96:6b:4d:a0:2c:
4e:f7:5f:5b:86:83:84:6e:4a:f2:bd:3b:d7:a7:c8:
f4:fd:01:af:e4:e1:49:ab:50:8a:cf:a6:83:6a:5c:
b4:81:a9:5d:96:8f:b3:3c:13:2e:b6:3c:28:7c:ef:
b7:60:78:48:d3:0a:c8:2f:a3:54:c8:ef:4e:16:79:
68:4d:04:5a:4a:91:c5:ab:8b:0c:98:41:13:c5:00:
46:da:af:05:66:5e:da:32:28:82:de:3b:35:e6:9a:
7a:cf:79:55:ea:4a:13:c8:c1:53:6d:46:98:4d:f7:
c3:0e:0e:7d:8c:09:43:e2:34:01:6a:54:55:66:17:
2f:47:b7:44:76:7e:fb:29:fb:07:81:34:3d:cf:61:
80:ae:19:d3:ae:1f:75:69:bf:bb:b5:a3:3c:be:82:
a3:ec:af:20:7e:a5:3a:fd:08:a5:19:41:8f:40:f1:
d0:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:29:85:66:AF:17:A0:1F:B0:86:05:FA:32:AC:9F:26:50:3C:A8:4A
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/JCmFZq8XoB-whgX6MqyfJlA8qEo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:390::/44
Signature Algorithm: sha256WithRSAEncryption
32:88:ee:d3:13:51:25:74:df:7b:31:57:f4:ae:e3:e0:21:b8:
c0:9b:d0:ad:4f:29:02:c1:67:df:34:f1:79:08:a7:f3:05:d4:
3c:69:0b:c8:58:e1:24:c7:bb:9f:74:59:72:88:0b:c1:3b:55:
dc:db:82:33:6d:35:96:0c:5d:b1:aa:03:16:eb:8f:94:8c:95:
3d:e3:47:cd:95:06:68:31:32:7f:b7:64:70:48:a3:92:e7:07:
ca:ea:78:2f:5d:00:79:da:e5:0f:8a:c2:9f:41:8e:68:9a:da:
db:92:37:6b:20:53:e2:60:20:ec:e7:de:44:95:da:11:2f:32:
32:c8:62:25:00:e9:b2:c2:b0:f4:09:4a:c5:f2:54:4f:ba:5d:
cd:a2:74:63:97:b1:ac:8d:b8:12:10:eb:57:83:1e:9e:58:dc:
6b:a9:9c:b4:14:dd:03:89:9d:25:00:32:6f:07:be:fc:3d:68:
35:11:8b:32:38:22:68:d9:4f:95:6a:c8:90:de:fe:fb:ca:20:
97:84:2d:ae:84:2c:a8:71:18:4c:d7:2b:b1:85:b6:63:3c:d9:
f1:33:4e:27:70:cc:a6:2a:40:a0:68:0c:a7:f7:95:33:ce:35:
e9:b3:f8:a3:c9:d0:e9:88:e2:91:8e:04:05:8e:4d:3e:c1:af:
10:a1:06:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:23 2025 by rpki-client on console.sobornost.net