Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/fc9f2b-7f2f-4238-aa19-98cba8ff2ca3/1/8EaewYTyFly5jEaj4gZEqMNcVMk.roa
File: 8EaewYTyFly5jEaj4gZEqMNcVMk.roa (raw, json)
Hash identifier: gqxj+841N8d9uy4L59oEcZudU4ge+IzVBr1jzF4wgjc=
Subject key identifier: F0:46:9E:C1:84:F2:16:5C:B9:8C:46:A3:E2:06:44:A8:C3:5C:54:C9
Certificate issuer: /CN=207799027329f22682764573af2115da95a9f6bf
Certificate serial: 01955C01732D225729F060B4AFA8BDCAA08F
Authority key identifier: 20:77:99:02:73:29:F2:26:82:76:45:73:AF:21:15:DA:95:A9:F6:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IHeZAnMp8iaCdkVzryEV2pWp9r8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/fc9f2b-7f2f-4238-aa19-98cba8ff2ca3/1/8EaewYTyFly5jEaj4gZEqMNcVMk.roa
Signing time: Mon 03 Mar 2025 12:35:53 +0000
ROA not before: Mon 03 Mar 2025 12:35:53 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 210945
IP address blocks: 2001:67c:808::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:5c:01:73:2d:22:57:29:f0:60:b4:af:a8:bd:ca:a0:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=207799027329f22682764573af2115da95a9f6bf
Validity
Not Before: Mar 3 12:35:53 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f0469ec184f2165cb98c46a3e20644a8c35c54c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:33:b3:b7:42:e2:9d:c6:3b:69:4f:8e:d2:8c:
8d:36:c5:0e:3f:47:22:d6:e1:85:56:a7:0e:33:de:
28:a2:f4:11:67:f2:7f:1c:3d:0e:1f:26:da:bc:72:
5f:54:87:4d:27:e5:fa:85:a0:c6:af:c2:66:69:26:
02:72:fc:40:08:93:22:d9:b5:7b:53:e5:15:0f:b1:
f5:62:16:0c:18:1c:d8:43:4f:ea:18:56:af:b5:b3:
0d:92:0a:f5:05:73:41:a0:af:e3:bd:d0:47:21:52:
0b:b5:7e:0d:5e:8e:fc:35:46:6f:ad:0b:bc:19:80:
bd:7f:78:b9:26:bd:f5:fb:2d:aa:2d:89:15:47:3a:
1f:26:d5:7f:1c:7c:12:ef:95:5f:39:c2:a5:21:18:
79:67:e4:a2:ad:90:e4:2d:5c:d1:c8:66:cc:2e:cb:
c3:ac:bc:e8:6a:2e:1f:3a:bf:6b:a1:0c:9a:05:0a:
65:0e:a5:54:cd:c7:15:cf:85:02:d2:35:42:e4:09:
e8:36:77:e3:d3:6f:a9:b8:2e:7b:af:0d:ca:1e:f4:
36:a1:36:f5:b7:77:77:40:2a:93:ed:59:c1:7a:38:
a1:36:ba:47:78:88:74:2f:4c:6e:f8:68:fc:2f:7f:
ed:d1:e0:4c:4c:73:94:27:de:70:9b:71:15:e8:90:
43:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:46:9E:C1:84:F2:16:5C:B9:8C:46:A3:E2:06:44:A8:C3:5C:54:C9
X509v3 Authority Key Identifier:
keyid:20:77:99:02:73:29:F2:26:82:76:45:73:AF:21:15:DA:95:A9:F6:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IHeZAnMp8iaCdkVzryEV2pWp9r8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/fc9f2b-7f2f-4238-aa19-98cba8ff2ca3/1/8EaewYTyFly5jEaj4gZEqMNcVMk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/fc9f2b-7f2f-4238-aa19-98cba8ff2ca3/1/IHeZAnMp8iaCdkVzryEV2pWp9r8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:808::/48
Signature Algorithm: sha256WithRSAEncryption
64:a3:e1:37:9f:5a:9c:a6:9c:c3:d4:a9:c7:b4:34:d7:d3:40:
a5:22:04:12:f3:fc:d8:b0:5a:49:71:ab:be:70:ab:9c:cc:8d:
44:97:b2:8f:a6:4b:1e:54:b5:13:b5:7c:97:3b:56:d1:e8:d7:
35:11:9f:aa:5b:5a:a8:84:a9:b1:c6:bd:8b:ec:49:0c:17:87:
45:ed:82:61:19:ee:a5:82:8a:59:f1:0d:4b:93:77:f8:5e:0a:
de:61:c2:b6:cc:40:16:9e:a3:a1:f8:4b:5b:e3:28:23:8c:ab:
fe:64:fc:17:fd:f4:3c:01:58:b3:76:02:d8:0d:d6:76:e5:78:
36:fb:14:cd:c2:8b:1d:59:30:86:e6:d3:26:db:70:d3:82:bd:
4a:fc:99:f1:e2:52:71:cb:e7:89:d5:ba:28:ab:0a:08:ae:f5:
13:bb:4f:94:90:2f:fc:4c:4f:26:e3:3b:02:8a:ef:e6:47:e9:
5b:3c:b1:f0:3c:7a:86:bd:e3:99:db:2d:e2:25:77:71:43:dd:
44:83:49:3c:6d:3f:de:64:f9:6d:c7:d0:1c:d9:d5:3a:87:46:
2d:59:98:57:77:1b:fc:18:e1:28:25:ad:19:97:f5:65:66:cd:
be:9d:cf:aa:8a:94:3d:95:f9:ea:60:ca:ad:ea:03:b8:b5:eb:
bc:57:0c:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:07 2025 by rpki-client on console.sobornost.net