Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/jUQ_fZXFaYGd4zaZnSgAlOdWse0.roa
File: jUQ_fZXFaYGd4zaZnSgAlOdWse0.roa (raw, json)
Hash identifier: TxGng+dp5AKM1yJ/Crw7UDMDcGHP31uzC9AJJeqBDMA=
Subject key identifier: 8D:44:3F:7D:95:C5:69:81:9D:E3:36:99:9D:28:00:94:E7:56:B1:ED
Certificate issuer: /CN=5f7da568ad027b9e249c13e223d322769881a29f
Certificate serial: 0194266BF39CD6479AF9857286AC7ADB720C
Authority key identifier: 5F:7D:A5:68:AD:02:7B:9E:24:9C:13:E2:23:D3:22:76:98:81:A2:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X32laK0Ce54knBPiI9MidpiBop8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/jUQ_fZXFaYGd4zaZnSgAlOdWse0.roa
Signing time: Thu 02 Jan 2025 09:49:56 +0000
ROA not before: Thu 02 Jan 2025 09:49:56 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 58321
IP address blocks: 2a06:1980::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:f3:9c:d6:47:9a:f9:85:72:86:ac:7a:db:72:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f7da568ad027b9e249c13e223d322769881a29f
Validity
Not Before: Jan 2 09:49:56 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8d443f7d95c569819de336999d280094e756b1ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:58:74:73:de:99:71:55:e3:d0:e1:5c:26:21:
43:c7:4a:1a:17:e8:a0:9a:b3:55:2d:30:69:e5:fd:
43:49:5e:3a:27:a5:d7:cb:3d:2c:c9:73:fa:94:49:
98:a8:8c:7f:ca:ac:a7:13:dc:eb:73:d9:19:e2:87:
fc:ae:69:99:d0:d8:48:de:1d:99:8a:b7:a5:67:38:
78:8d:75:18:c0:a6:a6:21:e7:92:7b:f0:84:9f:6c:
78:d7:0e:38:ff:27:02:69:d6:ec:aa:63:94:b8:e0:
97:c6:3c:a4:ab:0f:31:dd:fa:97:75:6e:a4:98:e0:
bc:d2:82:97:a4:5a:43:0f:5e:43:c8:bc:ea:ba:8b:
fc:52:7e:cc:c8:41:d3:ee:3f:52:81:62:41:49:81:
fe:71:63:6a:bb:9e:d9:e5:4b:e3:9e:e4:1a:11:91:
17:03:d1:bb:0f:9c:b8:c0:36:4b:7e:cf:8b:d2:40:
eb:9b:c8:d2:d5:92:33:a1:57:b4:50:fa:18:a8:49:
67:88:f9:41:6f:0d:0b:d5:89:36:12:0b:69:b0:bf:
80:cb:71:18:10:6e:65:75:94:c3:8f:4d:30:d5:7a:
0e:da:1f:da:c6:ce:c4:0c:14:c1:9a:60:07:c4:47:
11:25:c9:01:e8:59:8e:43:86:f4:40:b4:38:ed:f3:
e0:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:44:3F:7D:95:C5:69:81:9D:E3:36:99:9D:28:00:94:E7:56:B1:ED
X509v3 Authority Key Identifier:
keyid:5F:7D:A5:68:AD:02:7B:9E:24:9C:13:E2:23:D3:22:76:98:81:A2:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X32laK0Ce54knBPiI9MidpiBop8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/jUQ_fZXFaYGd4zaZnSgAlOdWse0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/X32laK0Ce54knBPiI9MidpiBop8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:1980::/48
Signature Algorithm: sha256WithRSAEncryption
9e:9c:d6:4f:f4:6e:1e:46:be:ae:39:fb:2b:7d:8b:94:b5:3b:
97:83:1e:91:29:49:c4:5e:ad:3c:70:53:83:5c:3d:00:a0:aa:
54:4f:9f:77:6f:84:ee:10:1e:ae:84:c9:2b:a2:ed:ce:ce:01:
5e:79:e6:dc:5b:e4:a1:e5:19:9d:2e:29:2f:28:24:9d:f2:a6:
33:82:b8:87:35:9b:7f:95:b4:97:fd:43:0d:28:50:d8:be:6d:
a4:67:89:b8:7c:33:e2:76:83:49:61:c0:f4:fb:2f:94:31:61:
d0:86:19:b3:50:90:23:5f:e1:94:bd:6a:f3:23:0d:ae:56:83:
2a:09:17:bb:4c:8a:fd:fb:ca:54:05:ba:65:69:9e:e3:b2:42:
1d:6c:b3:7c:3f:fa:3c:66:a3:6e:eb:cf:28:3e:b8:2f:08:6f:
f1:02:be:c5:21:e4:7c:ef:42:b7:da:e3:dd:96:e5:db:f7:dd:
3f:a2:18:c9:13:61:8e:55:ad:3f:79:a0:fb:d5:bb:63:82:74:
8e:be:82:2b:d3:39:03:66:b7:f6:81:81:3e:a9:10:2d:b8:9d:
a5:ac:9a:ba:72:68:53:5c:cc:a9:38:b3:2b:d5:14:c2:29:9c:
7f:f0:ee:f6:c4:f6:7e:f1:a6:92:af:80:02:2f:9f:c9:34:3a:
20:73:63:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:49 2025 by rpki-client on console.sobornost.net