Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/7b1205-3450-4e90-8b14-17e66c1fd3d1/1/OoWG_qUOKobANwv8GdWbdC9EzGI.roa
File: OoWG_qUOKobANwv8GdWbdC9EzGI.roa (raw, json)
Hash identifier: ojlwgHlGVCo79U+2HtNET72d053A1HIA6lyxaxpjuI0=
Subject key identifier: 3A:85:86:FE:A5:0E:2A:86:C0:37:0B:FC:19:D5:9B:74:2F:44:CC:62
Certificate issuer: /CN=260b2bc45477c81d774daa0c28ab44b774ba0920
Certificate serial: 01961EACEF4894571E8E7B91B8BCC450F924
Authority key identifier: 26:0B:2B:C4:54:77:C8:1D:77:4D:AA:0C:28:AB:44:B7:74:BA:09:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JgsrxFR3yB13TaoMKKtEt3S6CSA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/7b1205-3450-4e90-8b14-17e66c1fd3d1/1/OoWG_qUOKobANwv8GdWbdC9EzGI.roa
Signing time: Thu 10 Apr 2025 07:49:31 +0000
ROA not before: Thu 10 Apr 2025 07:49:31 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 209641
IP address blocks: 2a0e:eec1::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:1e:ac:ef:48:94:57:1e:8e:7b:91:b8:bc:c4:50:f9:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=260b2bc45477c81d774daa0c28ab44b774ba0920
Validity
Not Before: Apr 10 07:49:31 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3a8586fea50e2a86c0370bfc19d59b742f44cc62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:f5:02:c2:05:0b:4f:e9:80:f9:0c:f6:e6:00:
de:33:74:2b:36:ab:f0:49:37:9b:6c:29:c8:8d:c6:
b0:e5:ab:e1:11:93:78:f8:80:6c:ec:f4:ad:65:1a:
bc:13:cd:15:d7:3c:f4:be:41:4f:1c:5f:0f:8a:d0:
23:0f:0d:65:4b:7e:1d:b6:2e:f3:30:cd:f2:14:54:
b3:56:c2:1c:7f:d3:49:e6:b1:a3:51:6f:17:bc:b5:
cd:71:51:86:f5:fd:57:31:43:4b:c4:24:71:b5:1f:
96:9a:c6:c8:eb:45:2f:89:a8:81:53:5a:45:a6:ee:
c5:e3:6e:49:3b:ac:e0:4a:0b:6b:d4:d2:1e:1f:07:
6c:c2:6d:30:8c:b6:f5:6b:b8:f7:51:32:eb:e2:94:
19:b3:ae:a7:b6:6e:4e:0d:52:fd:0a:e6:6c:ba:c9:
ee:76:07:73:e1:de:4b:67:2a:db:c3:b8:79:aa:61:
f1:6c:06:f0:09:ca:cb:a2:99:1f:af:75:31:94:f2:
09:51:da:c6:30:48:aa:7c:ec:91:28:55:5c:9a:d5:
1d:ba:ca:ec:93:6d:fe:02:2b:75:7c:97:ed:a0:c4:
99:a5:dd:86:6b:e0:16:bc:c2:e6:ba:5f:b8:2e:66:
f2:cc:71:c1:6e:2a:0f:74:20:a4:e6:50:52:85:09:
b4:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:85:86:FE:A5:0E:2A:86:C0:37:0B:FC:19:D5:9B:74:2F:44:CC:62
X509v3 Authority Key Identifier:
keyid:26:0B:2B:C4:54:77:C8:1D:77:4D:AA:0C:28:AB:44:B7:74:BA:09:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JgsrxFR3yB13TaoMKKtEt3S6CSA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/7b1205-3450-4e90-8b14-17e66c1fd3d1/1/OoWG_qUOKobANwv8GdWbdC9EzGI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/7b1205-3450-4e90-8b14-17e66c1fd3d1/1/JgsrxFR3yB13TaoMKKtEt3S6CSA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:eec1::/32
Signature Algorithm: sha256WithRSAEncryption
1c:7b:f7:05:f1:70:00:8f:19:dd:78:e5:6e:09:19:9b:d2:c8:
b0:38:3c:62:ea:b9:9b:75:e1:f8:4c:e3:f8:52:c6:1d:65:c7:
65:c8:39:71:95:85:f6:93:ca:fa:34:59:b0:a8:86:76:69:83:
e2:3b:c1:ba:ff:66:84:52:2b:82:28:b1:b9:cc:f1:9d:7e:1e:
73:83:30:ff:49:35:45:58:50:4a:c6:ac:e8:8d:a4:4c:63:e6:
41:ea:67:65:dc:4f:d0:1f:64:c2:e2:d3:26:28:80:39:7e:83:
63:b1:75:2f:07:5f:ce:25:44:73:37:59:75:73:a2:3e:d0:4a:
69:a1:78:74:52:33:02:db:ea:86:46:f9:1e:1a:fa:8b:c1:23:
50:22:30:ee:29:d8:6d:36:2a:1f:57:1c:35:54:ee:59:54:dc:
9c:14:75:70:85:27:22:58:ac:d5:53:40:bb:02:8a:4c:45:d0:
6d:98:2f:20:13:1e:c5:9c:df:cc:f2:e1:e1:54:2d:ac:db:06:
40:29:9a:94:93:75:ed:32:5f:04:b0:8f:ed:4e:27:ea:5a:ae:
35:0d:39:b8:ae:3a:34:72:e1:bc:3a:77:ce:8e:92:c6:69:ff:
07:32:4c:7a:5a:27:2b:3f:18:07:ee:4c:a2:d7:00:3b:4a:b4:
22:39:39:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:50 2025 by rpki-client on console.sobornost.net