Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/2Jzvnqmg4Xv0TyXqD-U4bQdH_VI.roa
File: 2Jzvnqmg4Xv0TyXqD-U4bQdH_VI.roa (raw, json)
Hash identifier: FGg12+4HulN4ArdNEQeAvgAzeVEKw9EHa/kH+HGHk+w=
Subject key identifier: D8:9C:EF:9E:A9:A0:E1:7B:F4:4F:25:EA:0F:E5:38:6D:07:47:FD:52
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 019621AF248C5358B47EC41C1899DAA48A12
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/2Jzvnqmg4Xv0TyXqD-U4bQdH_VI.roa
Signing time: Thu 10 Apr 2025 21:50:48 +0000
ROA not before: Thu 10 Apr 2025 21:50:48 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212298
IP address blocks: 2a0e:97c0:a80::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:21:af:24:8c:53:58:b4:7e:c4:1c:18:99:da:a4:8a:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Apr 10 21:50:48 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d89cef9ea9a0e17bf44f25ea0fe5386d0747fd52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:3c:3e:fc:9e:00:22:f3:42:a1:48:52:b3:06:
8f:7f:6a:e2:45:6a:ca:f4:08:e3:9b:b2:35:4c:14:
3b:0f:a1:50:8c:42:1d:23:16:1d:22:66:5c:c3:1b:
a9:9a:ea:3e:62:ae:79:4b:3c:7c:25:60:9e:3d:45:
7f:71:3b:a4:01:9a:7c:72:f1:3d:27:5d:47:41:61:
43:41:97:ef:60:ec:6c:9d:22:6a:53:38:c0:3c:a3:
bf:51:40:7e:bc:07:20:e0:73:b0:b1:0b:97:ad:42:
35:5c:54:e7:34:3e:2c:73:a4:b4:f8:59:36:91:e0:
a4:a4:de:cc:f1:9b:1a:c5:4f:b6:09:d0:1b:b8:45:
5f:d2:eb:4f:0d:5b:21:16:83:1a:9a:df:71:f2:2d:
89:99:c5:ed:79:da:b8:ef:2f:92:d6:81:ee:ed:18:
56:9d:8e:34:57:66:2b:7f:09:fd:a2:b0:71:31:f4:
1d:0d:7b:4d:07:70:17:c3:19:a7:d0:ad:21:e9:08:
19:f0:30:cf:af:b3:d0:23:76:85:2a:0f:eb:6f:7f:
c1:8b:e3:bf:b1:6d:61:42:7a:03:22:5c:38:5d:88:
67:00:e2:13:3a:40:21:30:4b:78:e6:0f:e6:c9:91:
9e:3e:ea:17:14:e2:45:f5:f0:c7:aa:4a:1a:fd:0e:
fb:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:9C:EF:9E:A9:A0:E1:7B:F4:4F:25:EA:0F:E5:38:6D:07:47:FD:52
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/2Jzvnqmg4Xv0TyXqD-U4bQdH_VI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:a80::/44
Signature Algorithm: sha256WithRSAEncryption
35:f9:11:78:07:f8:e9:7e:0a:80:c6:15:9c:c1:09:c1:b4:71:
7e:11:19:d8:ce:98:55:5c:89:50:a5:ff:03:6e:5e:77:9d:c6:
74:c8:6b:42:fa:f8:ed:51:6f:37:f6:73:c0:b7:34:e2:75:93:
6f:8d:01:12:59:57:4e:84:af:b8:6b:24:ec:79:49:98:6a:64:
1e:96:ca:f1:15:e1:5c:1e:f5:48:f4:14:ef:b1:c1:28:51:9f:
20:64:c2:cf:19:93:39:28:c5:94:d1:61:04:98:5e:a3:c3:c4:
79:0e:bf:ff:00:c7:6d:fc:db:85:1f:19:cb:e1:c0:43:70:d2:
cf:c0:ff:9d:0a:9f:fe:34:1c:45:1e:52:39:47:10:f1:06:33:
ae:6f:6a:35:60:a0:7a:76:88:3e:bf:36:23:2e:4a:3a:95:50:
db:ea:60:0f:21:ee:e7:9f:f9:2d:70:fd:c1:27:67:f4:5a:6f:
e6:e3:b9:c9:7c:5a:27:39:47:0e:8b:2e:c1:ce:a4:79:8a:56:
df:03:9b:e1:1d:56:07:c4:1c:f2:02:5d:bb:29:3e:bc:bc:be:
06:a5:21:57:b5:71:73:3d:32:90:11:29:e0:a1:15:85:c1:5c:
93:8d:9a:ab:e9:6a:09:d1:08:9f:ff:2b:f6:c5:6f:f6:80:12:
02:f7:44:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:09 2025 by rpki-client on console.sobornost.net