Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/FP3sQIqHUtXJkb-6NEImMP0z5zs.roa
File: FP3sQIqHUtXJkb-6NEImMP0z5zs.roa (raw, json)
Hash identifier: tpS4NOBJJfdTs3rXNk/jQDVA1U7SSpXITMl9zb3DbNc=
Subject key identifier: 14:FD:EC:40:8A:87:52:D5:C9:91:BF:BA:34:42:26:30:FD:33:E7:3B
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 0195FC04D4BCB654F0B795545FD9C5E66C03
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/FP3sQIqHUtXJkb-6NEImMP0z5zs.roa
Signing time: Thu 03 Apr 2025 14:18:49 +0000
ROA not before: Thu 03 Apr 2025 14:18:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213861
IP address blocks: 2a14:7b80::/32 maxlen: 32
2a14:7b81::/32 maxlen: 32
2a14:7b82::/32 maxlen: 32
2a14:7b83::/32 maxlen: 32
2a14:7b84::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:fc:04:d4:bc:b6:54:f0:b7:95:54:5f:d9:c5:e6:6c:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: Apr 3 14:18:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=14fdec408a8752d5c991bfba34422630fd33e73b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:1c:7c:11:42:a5:a9:1e:94:c1:fc:07:e5:14:
66:08:c2:65:c0:d6:38:89:62:e8:76:84:e8:ac:2d:
eb:5f:9b:ff:f1:92:8d:10:a0:6e:24:86:78:19:4f:
2a:d7:d9:ce:14:70:62:1f:a9:b5:49:46:27:5b:66:
fa:81:56:2e:30:c4:4b:d0:f9:38:e5:52:1e:8f:f1:
87:c9:26:60:ec:15:2f:f9:0d:e8:b7:de:b1:16:1d:
b0:7d:f2:c0:d8:e9:46:73:f0:d1:41:04:c5:4a:30:
66:2b:7f:fd:97:a8:8d:3f:82:bb:6d:a3:9d:da:10:
36:ce:8e:0f:12:af:dd:e5:7b:5d:3b:bf:2c:3d:71:
9e:56:55:5d:ad:fc:98:9b:fa:25:83:54:0a:81:bd:
15:68:04:20:6c:50:6c:d3:8c:64:fc:79:59:e3:af:
99:74:4c:01:86:9c:ad:cb:4a:6a:2c:31:88:c6:6b:
e3:96:8a:19:38:03:c4:82:eb:cc:23:7b:d2:04:69:
e9:70:f7:4e:e5:33:44:00:3a:e5:f4:2d:63:51:96:
2d:2f:96:d5:fa:d5:08:43:92:de:62:f4:02:f2:b8:
07:f3:83:59:a3:91:d7:c2:98:e3:f8:28:83:f3:cf:
7a:24:bf:bc:5b:d7:53:8b:cc:54:fc:00:b3:79:73:
d1:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:FD:EC:40:8A:87:52:D5:C9:91:BF:BA:34:42:26:30:FD:33:E7:3B
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/FP3sQIqHUtXJkb-6NEImMP0z5zs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7b80::-2a14:7b84:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
a0:88:44:44:14:d4:7c:ce:8b:e0:c2:15:1d:f3:b5:a6:f3:71:
25:90:61:30:72:49:87:fc:3a:e5:6c:81:ac:5f:27:9e:25:30:
fd:70:d2:08:fa:dd:25:c0:a9:fa:c2:02:d5:d1:8d:d5:65:b8:
84:06:0b:c2:b8:bc:8a:25:cc:55:19:7f:4f:6a:97:3a:d3:12:
0e:6e:67:9a:57:8f:46:92:86:49:33:af:60:f6:18:9b:77:45:
66:2e:ca:f9:a0:24:73:d0:ee:f4:8e:38:e9:96:5a:65:bd:5a:
ed:b5:4a:b2:e1:d4:98:e0:23:96:83:b9:03:5e:a9:f3:d8:0d:
c4:1b:ee:b6:4d:91:73:3c:8f:ac:47:65:8b:53:81:5b:57:ba:
80:5b:89:4b:95:33:0c:56:14:4a:17:02:ab:d2:74:a9:f3:d9:
e9:df:12:db:a0:6a:21:d4:01:d3:46:4c:35:39:20:4b:e9:0c:
f8:5e:f0:05:e9:24:2d:e0:bc:cd:73:64:f5:4b:9c:ab:5f:d1:
54:fb:60:3d:c8:f2:ff:ce:86:73:ac:d0:d2:7d:70:71:14:40:
d5:e4:dc:cf:9b:d5:f4:76:9f:ca:d1:df:b7:ec:57:3a:78:b5:
a1:54:fc:f6:91:ca:5a:6b:82:a8:d3:b3:3a:e2:81:d4:ab:a3:
63:5c:8d:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:38 2025 by rpki-client on console.sobornost.net