Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/cd6a7b-1580-4102-9aa6-a4b6e3d0d830/1/ZGY0lWkEYWemqocgFCB9t9qlPGA.roa
File: ZGY0lWkEYWemqocgFCB9t9qlPGA.roa (raw, json)
Hash identifier: fiVljxbXsWOkY42tbBEX2UBc5QCY0m1ysP8nQ4McSh0=
Subject key identifier: 64:66:34:95:69:04:61:67:A6:AA:87:20:14:20:7D:B7:DA:A5:3C:60
Certificate issuer: /CN=3c2a267dce072238e9c04515e67eb992672e351b
Certificate serial: 019427B571B48983E66BD51EF6A4A535D282
Authority key identifier: 3C:2A:26:7D:CE:07:22:38:E9:C0:45:15:E6:7E:B9:92:67:2E:35:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PComfc4HIjjpwEUV5n65kmcuNRs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/cd6a7b-1580-4102-9aa6-a4b6e3d0d830/1/ZGY0lWkEYWemqocgFCB9t9qlPGA.roa
Signing time: Thu 02 Jan 2025 15:49:50 +0000
ROA not before: Thu 02 Jan 2025 15:49:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 204867
IP address blocks: 2001:678:b28::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b5:71:b4:89:83:e6:6b:d5:1e:f6:a4:a5:35:d2:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c2a267dce072238e9c04515e67eb992672e351b
Validity
Not Before: Jan 2 15:49:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6466349569046167a6aa872014207db7daa53c60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:db:28:15:9c:bf:b8:bd:a8:b5:69:1d:72:10:
31:76:f7:94:be:31:36:c9:11:07:1c:43:c8:d5:75:
c7:8a:4a:59:3b:27:29:a6:9d:bb:57:51:9a:23:0b:
4e:ac:8d:5d:f3:45:e1:02:53:63:bb:88:53:b8:45:
b4:f6:6c:aa:e8:6c:fb:22:37:91:c4:a7:d8:30:57:
42:25:e1:60:cd:13:e9:8a:40:01:fb:6a:66:53:69:
4e:02:98:34:1a:6e:ed:02:0e:7c:c1:1f:d9:59:a8:
92:ac:23:52:a3:1c:ca:e6:32:29:fc:c1:df:6f:18:
75:60:52:8d:b7:08:c5:1b:89:8d:88:ba:19:f5:73:
83:49:5d:5d:c0:06:e2:2d:56:18:ed:39:29:f2:67:
6f:54:d2:46:d0:63:52:91:30:98:94:fe:cd:ba:91:
64:d4:8c:35:9d:63:e6:38:3b:87:67:af:3c:ce:2e:
14:8d:9b:d0:21:70:bf:b8:b1:b7:f3:16:ab:f0:c5:
9c:4e:9e:c5:dc:36:e5:8f:07:13:8a:f1:fb:50:de:
79:0d:29:72:19:fa:2a:1b:2b:09:2b:05:38:bb:05:
4e:fb:5a:77:36:35:09:de:f9:4d:0b:54:13:1f:e0:
42:7d:4e:92:26:af:64:a0:60:41:c5:7e:d4:ab:f8:
b4:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:66:34:95:69:04:61:67:A6:AA:87:20:14:20:7D:B7:DA:A5:3C:60
X509v3 Authority Key Identifier:
keyid:3C:2A:26:7D:CE:07:22:38:E9:C0:45:15:E6:7E:B9:92:67:2E:35:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PComfc4HIjjpwEUV5n65kmcuNRs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/cd6a7b-1580-4102-9aa6-a4b6e3d0d830/1/ZGY0lWkEYWemqocgFCB9t9qlPGA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/cd6a7b-1580-4102-9aa6-a4b6e3d0d830/1/PComfc4HIjjpwEUV5n65kmcuNRs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:b28::/48
Signature Algorithm: sha256WithRSAEncryption
7d:40:40:19:95:61:64:5d:4d:d5:e8:89:44:02:24:09:d4:52:
eb:eb:49:8d:7f:2b:f2:09:04:43:cf:1b:44:fb:3a:75:44:3c:
95:d0:0f:a1:59:16:a2:2f:ba:6f:35:06:b7:18:d6:8f:80:59:
fd:32:2b:b5:57:1d:86:c3:36:f0:31:17:61:19:a3:33:2e:b5:
36:62:6c:2f:20:77:58:a1:7b:8f:0f:21:82:5c:fa:af:88:5e:
10:17:72:8d:a5:de:11:1f:ba:8d:0d:f4:90:ad:01:6f:1a:07:
aa:82:6d:88:85:dc:28:e0:f6:66:09:fa:be:3a:8a:62:eb:32:
e9:fe:8e:ac:11:6d:c2:2e:0a:19:b9:02:95:33:e5:1c:cd:f7:
81:05:82:4a:51:ca:1c:c4:37:15:44:49:3c:3d:51:3a:7d:72:
27:8d:7b:a9:fd:95:a0:57:2f:83:7e:35:6e:09:7b:ca:c3:08:
3f:74:f1:72:87:73:5b:fa:af:63:63:d4:ec:eb:89:c8:66:6f:
fe:e4:a7:4d:13:07:0e:73:df:e2:25:a7:04:01:f6:1d:8a:96:
2b:c0:24:e4:e0:db:82:e3:bb:62:31:26:6f:24:12:eb:8d:1d:
eb:7c:96:d5:4e:43:d3:e2:74:a6:61:d6:2c:dd:ab:0b:42:d2:
34:57:ef:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:37 2025 by rpki-client on console.sobornost.net