Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/b79a68-5b02-4097-a2e3-0a43b7a3eb54/1/Ur62Nf4a7xdo9YL9reRteLUJLQg.roa
File: Ur62Nf4a7xdo9YL9reRteLUJLQg.roa (raw, json)
Hash identifier: cTYkrEu5Wjkc8LFBNFp03pV3rpo4tl8VZFY9in/a2XI=
Subject key identifier: 52:BE:B6:35:FE:1A:EF:17:68:F5:82:FD:AD:E4:6D:78:B5:09:2D:08
Certificate issuer: /CN=66ed3ba68c78bff2c4724400ade6348482fb4364
Certificate serial: 0194244539C860425A9F004F3A44A6F9DBEB
Authority key identifier: 66:ED:3B:A6:8C:78:BF:F2:C4:72:44:00:AD:E6:34:84:82:FB:43:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zu07pox4v_LEckQAreY0hIL7Q2Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/b79a68-5b02-4097-a2e3-0a43b7a3eb54/1/Ur62Nf4a7xdo9YL9reRteLUJLQg.roa
Signing time: Wed 01 Jan 2025 23:48:24 +0000
ROA not before: Wed 01 Jan 2025 23:48:24 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215827
IP address blocks: 2a14:3f80:30::/45 maxlen: 45
2a14:3f82:2000::/38 maxlen: 38
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:39:c8:60:42:5a:9f:00:4f:3a:44:a6:f9:db:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66ed3ba68c78bff2c4724400ade6348482fb4364
Validity
Not Before: Jan 1 23:48:24 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=52beb635fe1aef1768f582fdade46d78b5092d08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:51:60:72:e2:b2:79:92:3b:de:38:2c:65:c3:
69:77:3e:4c:ab:dd:ad:d4:c7:a0:03:2d:84:59:dc:
0f:3c:70:95:2f:2e:64:4d:4d:a3:10:95:f9:1d:f7:
a0:05:b8:3c:a2:1a:32:49:7c:af:0b:ba:c6:08:62:
e6:8e:fc:63:d8:96:54:c8:5b:37:26:66:44:ea:11:
60:98:a5:00:48:8f:64:65:9a:04:ef:59:1c:67:b1:
eb:1e:dc:97:5e:41:ba:7f:e2:d5:4f:98:93:ac:65:
29:39:2a:0f:96:ab:45:32:5f:57:5b:aa:b1:d5:df:
ed:18:c6:1c:c2:db:dd:50:39:55:7f:d4:92:3c:f2:
55:d5:bd:0d:03:05:d5:52:31:91:08:6c:f6:4e:57:
13:6b:4c:a1:e8:2d:0b:b1:4e:db:7c:3b:54:88:25:
71:55:88:e7:4b:6b:44:24:d5:86:89:13:d2:85:2c:
be:fd:a4:a0:3c:39:46:46:2b:a5:be:8c:f0:d8:ac:
61:eb:f5:06:d0:47:72:ce:74:5f:d9:9f:ba:be:8d:
86:b0:4e:61:5f:66:99:2f:c7:2d:39:a8:c3:ae:bb:
d5:e6:c5:09:b5:76:f9:3b:ea:37:ab:cd:a8:0e:52:
15:3e:24:85:55:35:05:cb:ba:95:74:70:c0:c1:cb:
eb:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:BE:B6:35:FE:1A:EF:17:68:F5:82:FD:AD:E4:6D:78:B5:09:2D:08
X509v3 Authority Key Identifier:
keyid:66:ED:3B:A6:8C:78:BF:F2:C4:72:44:00:AD:E6:34:84:82:FB:43:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zu07pox4v_LEckQAreY0hIL7Q2Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/b79a68-5b02-4097-a2e3-0a43b7a3eb54/1/Ur62Nf4a7xdo9YL9reRteLUJLQg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/b79a68-5b02-4097-a2e3-0a43b7a3eb54/1/Zu07pox4v_LEckQAreY0hIL7Q2Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:3f80:30::/45
2a14:3f82:2000::/38
Signature Algorithm: sha256WithRSAEncryption
87:bf:07:91:c1:f8:45:ec:82:75:31:2e:94:4b:ca:aa:11:c1:
de:f4:b6:3a:21:2e:a5:c8:ce:46:3c:ec:71:ea:2a:6d:25:eb:
14:14:b5:7c:83:1d:08:10:da:55:4f:b6:16:f1:5a:31:a7:88:
88:11:a3:45:3c:c1:ba:01:e8:3a:7f:f9:01:21:21:45:2c:fd:
dd:8e:25:11:7f:5c:ca:8e:0c:87:47:7d:e2:1b:9d:9a:1a:3c:
a7:66:c0:72:78:82:bf:c8:9a:f0:a2:a3:2b:85:b0:1e:5c:f1:
5d:6d:94:5d:30:99:a7:39:63:ad:f9:17:ba:ca:1a:f8:63:04:
e5:80:83:f5:33:87:53:b2:40:2c:cd:28:5c:0e:c4:9a:46:10:
c3:af:5c:86:b2:c3:eb:d3:23:c7:3f:4d:ea:0b:99:eb:3c:a3:
5b:ac:e9:dd:08:61:fb:b5:3c:6a:9b:14:e1:b7:3d:96:00:3e:
7c:43:b5:7a:38:46:d5:c7:85:49:b7:ab:41:ca:1c:05:83:f0:
18:53:31:7e:ba:47:9c:aa:4f:66:5b:8e:7b:cf:7f:f9:7b:34:
25:65:86:85:ae:6f:09:b3:ed:31:d7:fc:76:fc:94:ae:23:ac:
ee:eb:99:ad:f3:45:81:86:f9:88:c0:5b:79:5c:9c:78:80:09:
91:cf:89:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:37 2025 by rpki-client on console.sobornost.net