Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/OfCu9YvoBgXfBo7pKU8xfeUPw4Q.roa
File: OfCu9YvoBgXfBo7pKU8xfeUPw4Q.roa (raw, json)
Hash identifier: 46S+WWxgoNMWYneveASXM92fmxjId5sHUO51ZPKxAeQ=
Subject key identifier: 39:F0:AE:F5:8B:E8:06:05:DF:06:8E:E9:29:4F:31:7D:E5:0F:C3:84
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 01941FFAAE99297E39844805C61C5E40B4E6
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/OfCu9YvoBgXfBo7pKU8xfeUPw4Q.roa
Signing time: Wed 01 Jan 2025 03:48:29 +0000
ROA not before: Wed 01 Jan 2025 03:48:29 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214223
IP address blocks: 2a0c:b641:d00::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:ae:99:29:7e:39:84:48:05:c6:1c:5e:40:b4:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 1 03:48:29 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=39f0aef58be80605df068ee9294f317de50fc384
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:cb:aa:de:db:89:31:fc:39:94:34:15:4b:0a:
13:f2:b3:87:91:22:20:e9:90:d7:43:62:5f:98:34:
f3:b2:94:20:9b:0c:7f:ec:96:12:e0:97:64:e8:50:
e4:2f:bb:e1:7f:52:24:4e:29:f4:18:c8:96:d6:7d:
4a:d2:36:71:0b:da:aa:a2:a3:eb:03:11:50:db:8c:
28:02:d5:cd:00:46:e5:c4:b4:dd:e6:d7:84:f6:75:
53:da:11:9c:29:29:fd:74:cf:12:97:f8:40:8c:81:
d7:a3:a9:71:00:28:27:8a:3e:96:1e:d8:b5:cc:50:
52:96:7f:1b:7b:6e:eb:a0:e2:0f:ad:1f:b8:3c:7b:
28:7f:c0:ac:4f:ab:1e:e4:6d:d6:8f:91:b7:8b:fa:
c0:dc:e8:79:00:8f:33:3c:2c:19:91:44:30:1a:74:
13:75:99:80:76:f3:e9:05:be:3e:cf:9c:ea:f1:3b:
5f:95:c5:e2:20:b9:31:1e:f9:f2:23:78:e4:aa:bb:
2b:21:f9:53:4c:99:76:90:16:c2:62:bd:af:89:2a:
0a:3b:11:55:c4:50:0e:f3:20:37:5a:9f:2f:85:96:
0c:bb:8f:17:be:46:70:2a:6f:b9:5d:21:a4:ec:e6:
d5:b9:c1:1b:10:c7:98:9b:76:ab:a7:49:51:f9:e5:
c7:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:F0:AE:F5:8B:E8:06:05:DF:06:8E:E9:29:4F:31:7D:E5:0F:C3:84
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/OfCu9YvoBgXfBo7pKU8xfeUPw4Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:d00::/44
Signature Algorithm: sha256WithRSAEncryption
62:78:b1:08:b5:a4:92:f8:72:80:ae:1c:98:4b:99:bb:7f:0c:
fe:bb:01:78:fb:84:5b:90:25:2b:6a:7f:97:ce:f1:c4:d5:30:
6a:9e:5f:6d:1b:49:aa:10:dd:40:8a:7d:44:8d:80:4a:b3:a8:
b1:b7:ee:7a:bb:d5:e2:fb:a4:fa:51:06:e2:09:2c:ee:fc:a7:
22:4f:86:b4:4f:20:ae:66:15:bd:d8:a3:4c:98:aa:47:53:6f:
20:50:71:a2:95:99:6d:1d:57:c3:31:15:e0:47:f4:6e:d7:59:
81:fc:85:f1:82:21:ca:83:3a:dd:6c:de:90:cd:04:3b:85:1a:
a3:bc:6c:f3:59:8a:5f:bc:c3:60:a9:b7:0d:c5:80:36:11:b7:
74:a0:bf:bc:80:b3:c4:e5:43:3b:09:2d:e8:4d:60:62:12:11:
5f:99:9f:37:1c:e7:bf:02:6c:97:4b:c5:ea:14:7e:b1:7e:b1:
ec:31:13:4f:7d:c0:27:87:0a:9a:a9:6d:b1:5d:2f:05:be:dd:
c2:0f:a2:07:6d:db:10:b4:e6:29:44:b4:3c:49:57:7e:f7:32:
2e:62:b1:81:dc:60:a2:f8:d6:43:e8:8d:de:9a:3f:0c:0a:82:
b1:2c:5a:ba:56:81:99:82:14:39:e7:c2:9f:b3:75:4c:a3:cc:
1a:d6:28:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:23 2025 by rpki-client on console.sobornost.net