Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/11cdac-6411-454d-b973-4762b010ef1e/1/wC7Ohmh2aveKOZ7_Cl4a1vLomLo.roa
File: wC7Ohmh2aveKOZ7_Cl4a1vLomLo.roa (raw, json)
Hash identifier: hPiN8yhRbkkwhBqX7IPJBoamojlDhfcUtcDIIbpri30=
Subject key identifier: C0:2E:CE:86:68:76:6A:F7:8A:39:9E:FF:0A:5E:1A:D6:F2:E8:98:BA
Certificate issuer: /CN=d0a1db466cf808206293d07e65f2121feb49a33e
Certificate serial: 019420D60FA8D9C0F87911F1886CA57638B1
Authority key identifier: D0:A1:DB:46:6C:F8:08:20:62:93:D0:7E:65:F2:12:1F:EB:49:A3:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0KHbRmz4CCBik9B-ZfISH-tJoz4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/11cdac-6411-454d-b973-4762b010ef1e/1/wC7Ohmh2aveKOZ7_Cl4a1vLomLo.roa
Signing time: Wed 01 Jan 2025 07:48:06 +0000
ROA not before: Wed 01 Jan 2025 07:48:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212783
IP address blocks: 2001:678:e0c::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d6:0f:a8:d9:c0:f8:79:11:f1:88:6c:a5:76:38:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0a1db466cf808206293d07e65f2121feb49a33e
Validity
Not Before: Jan 1 07:48:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c02ece8668766af78a399eff0a5e1ad6f2e898ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:98:67:96:6f:dd:b3:dc:de:f1:90:0b:fd:08:
84:b0:ba:9a:33:22:d0:4a:9d:14:1f:55:38:44:6d:
11:38:3a:80:a6:43:5b:50:ef:e6:a9:f2:84:f4:8a:
c2:54:af:b2:fb:24:32:d7:6c:19:73:ed:fd:7d:e1:
c7:ac:ed:6b:4d:b8:d9:0f:dc:50:29:ad:8b:3d:ea:
77:b2:0d:f2:3c:0f:0c:ce:7d:ae:9d:d3:d1:e7:91:
82:98:6f:a6:fa:28:16:6e:0c:fd:4f:b1:3f:fa:1b:
e0:82:66:ec:77:fb:77:d8:dd:3d:01:89:08:f0:2f:
73:29:47:12:f9:4a:a6:94:e9:34:a6:de:3e:c0:fd:
f2:74:77:c8:42:91:0c:1d:7d:09:86:ea:d5:2a:3e:
d6:49:8b:3f:9e:ae:a0:3f:01:c7:08:63:2e:91:97:
1a:77:2a:40:df:38:2f:53:b4:e5:fe:6a:87:c6:b9:
71:9a:45:6a:fe:38:1b:ac:5b:c2:46:b7:92:09:68:
ef:a2:6e:df:e8:58:64:64:e9:e7:98:e1:b1:c2:48:
c9:49:c2:5a:31:ef:a5:24:f6:d9:54:69:41:20:52:
94:75:af:e9:2b:f5:ac:07:0c:7f:ca:f7:4a:50:97:
28:b5:d3:0a:df:21:e4:ff:a8:66:40:64:a9:b5:32:
48:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:2E:CE:86:68:76:6A:F7:8A:39:9E:FF:0A:5E:1A:D6:F2:E8:98:BA
X509v3 Authority Key Identifier:
keyid:D0:A1:DB:46:6C:F8:08:20:62:93:D0:7E:65:F2:12:1F:EB:49:A3:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0KHbRmz4CCBik9B-ZfISH-tJoz4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/11cdac-6411-454d-b973-4762b010ef1e/1/wC7Ohmh2aveKOZ7_Cl4a1vLomLo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/11cdac-6411-454d-b973-4762b010ef1e/1/0KHbRmz4CCBik9B-ZfISH-tJoz4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:e0c::/48
Signature Algorithm: sha256WithRSAEncryption
39:7b:c8:d9:41:a3:9c:35:5f:e0:85:9b:c9:b3:35:a7:d7:8c:
f4:eb:d0:ee:53:fc:c5:24:90:71:c3:e5:84:a0:6a:45:65:9b:
eb:da:a1:95:28:6d:2b:65:72:f8:89:0b:76:33:88:33:d0:28:
ae:b0:4d:17:87:ca:8e:30:cd:07:ea:03:7c:fb:36:a3:5e:5a:
14:cd:74:83:78:e2:0d:2e:e2:62:3b:66:98:5c:81:6d:fe:da:
29:3d:49:29:74:2f:bc:dd:54:b3:40:d7:a4:09:64:71:e0:a7:
98:b3:f5:ee:ab:06:92:89:22:e6:d7:35:bc:b4:fd:8c:27:27:
41:d8:07:15:f3:c6:32:98:8f:31:a4:7d:00:62:7b:a9:1d:67:
de:bc:d0:83:e3:2a:fb:2f:65:38:11:ef:6a:04:46:0a:b0:95:
d2:d2:da:cb:e2:7f:6c:d8:e9:bb:8f:dc:0c:05:4f:5a:f3:f6:
77:69:a2:c2:7b:7f:96:f4:1c:ee:e1:af:2e:07:c7:6d:3c:6d:
3e:e0:d5:8a:ca:be:61:9d:99:df:e0:af:0e:aa:b8:5a:6b:d3:
3e:7c:fc:53:e4:d6:f5:36:7a:1c:4a:e1:fa:29:a3:3a:80:c9:
1a:5c:97:f4:55:f5:ba:ef:af:d5:fd:4f:d1:e8:69:24:6d:26:
36:24:57:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:34 2025 by rpki-client on console.sobornost.net