Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/UhpdXbyvthzFtPXr1MOX3YfBhuc.roa
File: UhpdXbyvthzFtPXr1MOX3YfBhuc.roa (raw, json)
Hash identifier: V0YyLWurs0OQnEGlx7fdZo8LUX0XhjsW3eD4L/Hm7i4=
Subject key identifier: 52:1A:5D:5D:BC:AF:B6:1C:C5:B4:F5:EB:D4:C3:97:DD:87:C1:86:E7
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0195F65C782D8E31259743F2981AF5F62D13
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/UhpdXbyvthzFtPXr1MOX3YfBhuc.roa
Signing time: Wed 02 Apr 2025 11:56:50 +0000
ROA not before: Wed 02 Apr 2025 11:56:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 210969
IP address blocks: 2a0c:b641:350::/44 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:f6:5c:78:2d:8e:31:25:97:43:f2:98:1a:f5:f6:2d:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Apr 2 11:56:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=521a5d5dbcafb61cc5b4f5ebd4c397dd87c186e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:82:73:47:f7:b8:59:c2:25:0e:e1:0f:a6:ce:
02:ce:7e:e4:c6:05:8b:63:3d:85:c5:b4:9a:b5:d5:
db:f3:9c:a5:c0:6a:30:43:aa:d9:bc:68:2e:40:4e:
52:4a:e0:6b:65:1a:ae:81:cf:1c:fe:50:98:d1:fd:
b0:78:d9:0f:b6:8d:8c:e5:93:16:5b:f5:c8:0a:a2:
9c:77:c4:ae:6a:fe:fd:e6:0b:20:bd:fb:3c:72:31:
d7:18:2a:6b:7b:39:f8:92:1e:7e:3c:1e:82:3f:ff:
f2:72:79:4c:a2:cf:76:d7:a5:e9:c0:da:75:9b:16:
7e:f2:a7:90:c9:7a:ee:fe:1e:10:3c:2b:da:8e:e5:
f2:f1:59:e6:02:cc:bb:79:9f:d7:de:c9:5d:0d:05:
91:ed:2f:50:62:02:25:a3:53:d2:32:e8:43:52:b3:
52:29:f3:29:0a:4c:53:3d:7e:77:da:de:b5:a1:13:
f9:8a:95:f0:64:4a:eb:2f:5c:57:1d:a9:42:7b:e3:
78:95:07:44:ee:3a:bb:da:77:a5:f0:fe:9a:17:19:
4f:54:14:1e:98:12:19:3d:bb:9b:fa:b2:71:58:e7:
e3:73:5f:7f:91:1f:57:ef:0e:19:55:ab:e4:a2:1c:
a8:65:71:99:e4:48:52:6f:c8:52:de:d9:2c:b0:62:
10:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:1A:5D:5D:BC:AF:B6:1C:C5:B4:F5:EB:D4:C3:97:DD:87:C1:86:E7
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/UhpdXbyvthzFtPXr1MOX3YfBhuc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:350::/44
Signature Algorithm: sha256WithRSAEncryption
4c:3c:95:9b:6b:f3:b6:f3:13:c5:5f:36:3c:53:89:74:41:c8:
c6:8a:c3:bd:71:17:86:69:35:1d:97:a1:10:39:39:3c:e9:11:
f3:ed:96:93:ab:69:eb:bd:08:ad:21:99:56:ba:6f:b9:64:05:
08:46:0d:38:f7:45:7e:7d:73:d8:5b:90:90:7d:9a:61:cb:8a:
21:d6:75:16:20:81:b1:56:c8:c4:ce:52:d9:c9:e3:80:18:ac:
96:74:52:ac:e7:d8:8e:6c:49:80:7e:30:0f:86:b9:9a:19:86:
92:f1:97:d3:6d:d9:d8:38:f7:0f:ed:cc:30:43:d2:7c:22:d4:
79:17:c9:33:31:97:85:54:32:09:c1:7e:f1:dd:1a:02:4c:de:
be:0c:e1:24:b6:d0:b6:4f:2c:a5:c4:dc:b8:0b:2e:ad:a1:17:
2c:28:8b:b9:fa:d3:5c:d4:ac:e3:16:18:38:d3:22:54:2a:eb:
b1:6f:8c:41:a2:6e:8b:bf:01:dc:90:3d:be:ef:75:6f:04:7f:
2d:11:c7:81:fa:77:62:c2:a5:4a:3b:a8:d0:d2:e2:b6:5c:0a:
94:04:16:a7:49:81:76:02:91:44:62:8b:29:36:d7:77:84:da:
06:b4:5b:f3:51:b9:bb:e0:c6:d1:34:ef:f3:cf:82:c3:f1:94:
82:68:97:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:23 2025 by rpki-client on console.sobornost.net