Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/922f6d-7a74-4fa8-9495-184dff292a30/1/5pXO0rccDvdcNpNF4kBVulDgfCw.roa
File: 5pXO0rccDvdcNpNF4kBVulDgfCw.roa (raw, json)
Hash identifier: N4A+PObGjvFgO5mi8UIuKYZJSnV7LB7QBUfSUqvfnRE=
Subject key identifier: E6:95:CE:D2:B7:1C:0E:F7:5C:36:93:45:E2:40:55:BA:50:E0:7C:2C
Certificate issuer: /CN=3e2742496400d810be5b4096fdedec30a231f9ab
Certificate serial: 019427B5DF04D50A52E4C2809085FA98529E
Authority key identifier: 3E:27:42:49:64:00:D8:10:BE:5B:40:96:FD:ED:EC:30:A2:31:F9:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PidCSWQA2BC-W0CW_e3sMKIx-as.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/922f6d-7a74-4fa8-9495-184dff292a30/1/5pXO0rccDvdcNpNF4kBVulDgfCw.roa
Signing time: Thu 02 Jan 2025 15:50:17 +0000
ROA not before: Thu 02 Jan 2025 15:50:17 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 200368
IP address blocks: 2001:67c:b44::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b5:df:04:d5:0a:52:e4:c2:80:90:85:fa:98:52:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e2742496400d810be5b4096fdedec30a231f9ab
Validity
Not Before: Jan 2 15:50:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e695ced2b71c0ef75c369345e24055ba50e07c2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:9b:75:86:fb:7f:8c:69:72:9e:32:b2:ed:20:
86:76:51:83:fe:1d:f4:0c:ba:d3:2d:d2:bc:2d:f3:
46:7f:9b:41:0c:ec:3e:7c:08:76:85:c5:40:9a:4e:
34:ff:7b:a5:22:84:30:50:01:1b:88:d2:22:dc:32:
3c:02:c6:6e:d9:2f:9d:8a:83:e1:2f:ca:2d:ff:72:
80:f0:8b:3c:1b:fd:7b:03:fa:40:59:58:8a:91:a8:
65:e8:25:81:fb:f7:6a:f4:d8:7f:54:be:1d:b0:cc:
2f:f2:d3:f4:33:01:20:36:19:d4:a2:fd:73:49:9a:
a3:9b:76:18:d7:92:eb:58:99:b3:d3:d8:25:80:e9:
40:d2:7f:98:41:0b:1f:a5:9b:1f:41:37:85:2c:b7:
8b:44:8d:1a:bb:68:c2:cd:60:aa:98:b6:51:48:ee:
92:5d:43:d3:95:a0:62:c4:a0:c6:1b:57:af:1d:3d:
0c:47:66:2e:2c:dc:04:a3:50:61:ee:17:8d:ac:45:
14:ed:0b:ca:fd:6a:5f:ff:2e:f9:13:b7:b3:e0:ff:
42:05:97:93:7d:dd:d9:20:64:18:58:fc:1a:b5:62:
e8:f3:dd:37:e4:2a:e5:70:71:26:8a:ac:90:00:f6:
ce:eb:30:78:a3:aa:bb:91:2a:b4:7c:26:33:fb:09:
33:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:95:CE:D2:B7:1C:0E:F7:5C:36:93:45:E2:40:55:BA:50:E0:7C:2C
X509v3 Authority Key Identifier:
keyid:3E:27:42:49:64:00:D8:10:BE:5B:40:96:FD:ED:EC:30:A2:31:F9:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PidCSWQA2BC-W0CW_e3sMKIx-as.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/922f6d-7a74-4fa8-9495-184dff292a30/1/5pXO0rccDvdcNpNF4kBVulDgfCw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/922f6d-7a74-4fa8-9495-184dff292a30/1/PidCSWQA2BC-W0CW_e3sMKIx-as.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:b44::/48
Signature Algorithm: sha256WithRSAEncryption
93:aa:97:eb:2b:53:e7:19:70:ef:41:40:9a:15:38:ca:ee:d1:
bb:77:64:75:b2:80:3a:7a:4d:1a:e5:4a:60:b3:3b:4d:c9:5f:
4a:64:c6:94:39:17:aa:a7:b4:f7:e5:49:05:a4:f6:bb:7c:a6:
af:b0:ae:9a:81:6d:ea:e1:a7:b5:af:54:c3:8d:92:8c:34:05:
20:91:b3:37:f4:cf:45:95:8e:9f:c7:95:c6:8b:7e:5e:92:b8:
9e:2c:2a:09:fd:cc:d6:98:e3:b1:2b:5a:da:09:a7:c3:16:f8:
3a:a4:4d:d4:da:f0:db:06:d3:8f:7f:94:80:11:48:08:95:5e:
18:1b:b9:9f:a5:ba:1d:f9:0d:a8:92:cd:5f:85:ce:55:2e:67:
76:28:86:c0:d3:a1:48:88:30:33:db:5a:fe:d3:36:4e:b4:69:
90:ac:c5:be:e8:65:8f:2e:c7:3e:da:fb:da:b1:1b:d9:e9:bd:
ab:a4:87:7c:08:c8:23:ce:f4:bc:10:44:5d:9c:f8:ad:e1:8d:
db:6a:db:14:0f:68:80:a7:5d:5d:b4:f0:c5:55:ca:a6:73:0a:
ab:a7:69:bf:7d:26:b7:24:f4:9f:aa:67:4e:d3:ec:33:a9:a7:
78:6c:fc:52:75:c4:dc:fa:92:13:2f:9d:09:a4:18:b3:40:32:
29:24:8e:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:36 2025 by rpki-client on console.sobornost.net