Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/a68f21-9ff8-4a44-a36d-d1cde2465f89/1/iSdpP7ZcrXle-CGEYFrwsY1kYrI.roa
File: iSdpP7ZcrXle-CGEYFrwsY1kYrI.roa (raw, json)
Hash identifier: +6PdXaQuowtykR4waR/410l8flDm2QsBF8w2MV3GVtU=
Subject key identifier: 89:27:69:3F:B6:5C:AD:79:5E:F8:21:84:60:5A:F0:B1:8D:64:62:B2
Certificate issuer: /CN=ca9ccd830b7e03308bf5cf25e67a7fc2bde0957c
Certificate serial: 01961B932B82812706E25F4E125D1ADD3806
Authority key identifier: CA:9C:CD:83:0B:7E:03:30:8B:F5:CF:25:E6:7A:7F:C2:BD:E0:95:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ypzNgwt-AzCL9c8l5np_wr3glXw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/a68f21-9ff8-4a44-a36d-d1cde2465f89/1/iSdpP7ZcrXle-CGEYFrwsY1kYrI.roa
Signing time: Wed 09 Apr 2025 17:22:31 +0000
ROA not before: Wed 09 Apr 2025 17:22:31 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44812
IP address blocks: 2a0e:7f47::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:1b:93:2b:82:81:27:06:e2:5f:4e:12:5d:1a:dd:38:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca9ccd830b7e03308bf5cf25e67a7fc2bde0957c
Validity
Not Before: Apr 9 17:22:31 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8927693fb65cad795ef82184605af0b18d6462b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:fd:45:ca:2c:49:15:d4:86:47:bd:86:3b:06:
89:40:80:a4:4c:3d:f9:52:f9:63:e1:b8:e3:81:23:
1f:c5:63:47:e3:54:dd:7a:9a:4b:bb:a9:b6:b5:d1:
16:15:41:50:0d:cf:26:77:f6:4e:67:0e:b9:ca:6e:
6d:3c:6e:b3:5a:4e:19:4c:69:9a:52:08:55:82:ac:
ae:d9:01:8e:05:40:8f:d5:02:60:58:b9:ff:b7:06:
6d:09:d8:50:9d:d4:08:5b:f7:0e:08:30:0d:55:39:
3a:23:9d:2f:bb:cd:2c:78:37:1f:96:3d:18:13:1d:
a6:f5:c4:a1:f6:7e:9e:c4:d7:35:96:a3:d8:dd:74:
ae:d8:7f:92:cd:ee:a2:7e:7e:70:32:64:9a:a9:ee:
10:a8:dd:a0:00:c9:ea:38:ed:66:b6:6a:6d:45:69:
f8:80:c8:e0:24:58:a5:ee:1a:18:04:2e:2c:a9:bb:
5d:ae:3d:26:49:52:4f:1d:6a:3c:25:85:39:c0:54:
ab:37:df:61:92:32:55:2a:08:0f:b1:46:94:dd:80:
46:e1:f3:4f:50:79:d9:2c:e4:97:c0:27:74:d8:b8:
e7:46:21:e6:a2:e3:4d:48:f8:2f:5f:ee:c4:ef:db:
b9:af:0b:03:11:ec:db:1e:64:fe:29:8c:e7:81:ff:
6f:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:27:69:3F:B6:5C:AD:79:5E:F8:21:84:60:5A:F0:B1:8D:64:62:B2
X509v3 Authority Key Identifier:
keyid:CA:9C:CD:83:0B:7E:03:30:8B:F5:CF:25:E6:7A:7F:C2:BD:E0:95:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ypzNgwt-AzCL9c8l5np_wr3glXw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/a68f21-9ff8-4a44-a36d-d1cde2465f89/1/iSdpP7ZcrXle-CGEYFrwsY1kYrI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/a68f21-9ff8-4a44-a36d-d1cde2465f89/1/ypzNgwt-AzCL9c8l5np_wr3glXw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:7f47::/32
Signature Algorithm: sha256WithRSAEncryption
70:1a:ed:fd:25:9f:93:ed:c9:e2:23:49:7d:0b:cc:c1:59:9d:
7a:ff:fa:90:a5:85:b3:62:83:4c:dc:d6:8b:85:87:de:c1:e1:
29:4c:59:bd:95:54:9b:93:eb:10:35:d6:23:5f:fb:bd:88:b5:
ae:d3:e6:f8:5d:84:67:d6:1b:20:e8:a9:46:12:19:0a:a4:83:
42:8f:f3:cb:83:e9:f8:ce:4c:34:df:00:ae:d1:71:40:2f:9e:
df:57:7a:1b:77:27:c5:01:50:e5:f0:d4:d7:0c:74:6a:cf:d3:
dc:3b:61:14:9c:a4:17:1a:8d:80:cb:32:37:38:2c:10:99:1e:
60:3a:75:fa:ed:25:e2:73:02:a4:23:bd:f4:5f:dc:a0:28:2a:
16:e5:bd:66:9e:55:93:3f:c8:8d:e2:fb:95:88:b7:61:60:70:
29:87:fe:6a:19:3f:26:9d:3b:8c:cb:80:37:86:6c:0a:ef:6a:
10:da:d7:36:06:da:5b:5d:14:fb:ef:f6:db:bb:79:47:9c:d7:
a8:df:70:cf:5e:a0:03:cd:dc:8b:1b:d4:ef:ba:28:ac:2d:15:
f6:8a:06:1c:9a:77:69:ec:c6:8d:63:50:c0:e3:81:0a:d8:7e:
ec:2a:ac:72:18:57:85:8b:07:eb:cb:8a:93:81:be:f6:e4:46:
a5:a9:6c:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:55 2025 by rpki-client on console.sobornost.net