Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/15d896-2f69-4697-a6fc-08da6652a867/1/upgE53Ne0KMFUsGR-miso-8-5TQ.roa
File: upgE53Ne0KMFUsGR-miso-8-5TQ.roa (raw, json)
Hash identifier: u1TgVu5CTRcoIplPeSQE03Pq8xZKbvkqbqoHvKMUbWE=
Subject key identifier: BA:98:04:E7:73:5E:D0:A3:05:52:C1:91:FA:68:AC:A3:EF:3E:E5:34
Certificate issuer: /CN=2d9e31c9029ee44bd681b515330335c6a1cfdeee
Certificate serial: 01942823501C0B88AC047799732BC340E753
Authority key identifier: 2D:9E:31:C9:02:9E:E4:4B:D6:81:B5:15:33:03:35:C6:A1:CF:DE:EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LZ4xyQKe5EvWgbUVMwM1xqHP3u4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/15d896-2f69-4697-a6fc-08da6652a867/1/upgE53Ne0KMFUsGR-miso-8-5TQ.roa
Signing time: Thu 02 Jan 2025 17:49:50 +0000
ROA not before: Thu 02 Jan 2025 17:49:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 25057
IP address blocks: 2a02:e5e::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:23:50:1c:0b:88:ac:04:77:99:73:2b:c3:40:e7:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d9e31c9029ee44bd681b515330335c6a1cfdeee
Validity
Not Before: Jan 2 17:49:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ba9804e7735ed0a30552c191fa68aca3ef3ee534
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:49:8e:17:13:8b:8e:7f:8c:4d:25:5e:6c:3b:
5a:f1:92:63:a0:98:b0:7b:13:cd:0d:7c:f2:7c:6b:
a1:88:45:2d:37:8c:cd:ce:fb:87:db:5d:cd:e0:c3:
f2:54:b5:e8:b1:be:17:cb:d5:b1:d7:6e:d8:31:28:
da:65:61:07:b6:39:46:8a:29:34:a2:fa:cf:fc:2f:
52:98:2f:44:e7:a4:30:09:ff:3e:b7:bf:94:3f:24:
91:40:4e:01:53:34:c4:53:a6:a1:e2:e5:5c:85:23:
63:4b:0c:ce:a0:21:eb:80:02:18:67:68:07:cf:b4:
f9:b3:8d:12:bc:ff:da:a8:e8:d9:fb:81:c2:4d:69:
27:8a:5f:3b:f1:d9:99:be:b2:6c:71:c9:d4:f4:bd:
5f:6a:b0:39:8f:0d:04:47:2d:55:db:89:66:c6:e8:
0b:70:e4:a7:2c:97:82:ef:8c:f3:c7:5f:94:ac:33:
1d:33:57:7c:6e:f5:37:df:53:77:1b:dc:65:35:ef:
1e:bd:7b:60:f5:1d:ce:f0:9f:ae:ba:9c:9a:ab:6d:
72:cd:59:93:1c:84:e3:e6:2d:c4:59:98:ac:bd:d1:
18:3a:87:5c:c7:fb:e9:31:21:6f:4b:89:60:b8:e6:
b8:af:20:87:64:b6:9b:d0:e2:04:0a:24:ec:9a:12:
eb:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:98:04:E7:73:5E:D0:A3:05:52:C1:91:FA:68:AC:A3:EF:3E:E5:34
X509v3 Authority Key Identifier:
keyid:2D:9E:31:C9:02:9E:E4:4B:D6:81:B5:15:33:03:35:C6:A1:CF:DE:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LZ4xyQKe5EvWgbUVMwM1xqHP3u4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/15d896-2f69-4697-a6fc-08da6652a867/1/upgE53Ne0KMFUsGR-miso-8-5TQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/15d896-2f69-4697-a6fc-08da6652a867/1/LZ4xyQKe5EvWgbUVMwM1xqHP3u4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:e5e::/32
Signature Algorithm: sha256WithRSAEncryption
0e:34:c1:ba:9e:17:d8:6d:33:45:58:d7:21:b7:29:22:ab:d1:
2a:e3:25:d7:41:02:eb:72:86:6d:68:0f:f1:40:68:92:fa:4a:
ea:dc:c8:91:4e:72:e6:d5:71:48:da:69:d0:6c:a8:b6:1a:bd:
d5:ad:51:54:42:fd:fa:db:8c:61:66:99:6d:12:a1:1c:45:01:
42:01:0e:54:59:51:7e:39:32:35:29:e7:d4:ab:ef:75:ed:b1:
8f:5b:ee:f4:4e:d4:ae:d7:19:ec:2f:6a:43:70:4b:3f:6e:75:
73:37:b2:90:a6:61:6a:7c:74:de:87:ba:ca:fd:da:c4:b7:da:
6d:ab:b5:6d:e1:4f:a5:e5:79:44:38:ce:cc:54:a0:89:53:d4:
33:18:27:57:71:67:a5:7c:a7:08:85:8d:06:1c:89:74:0e:a4:
6c:a8:f3:c8:e0:c6:0a:a3:fc:bc:19:72:16:b3:a2:44:c4:df:
19:fa:3e:57:63:4d:13:f5:e9:5d:ce:98:a4:ba:6e:36:c1:e7:
2c:c1:65:4e:3d:c7:f3:cf:87:62:f1:19:87:62:34:08:68:82:
7e:8d:8e:b6:b2:8d:1a:42:3e:c4:5a:27:39:6a:71:f2:10:80:
da:de:76:b4:76:aa:f4:b6:c1:2d:ad:72:33:db:51:aa:4a:e2:
6d:dd:68:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:34 2025 by rpki-client on console.sobornost.net