Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/H_XoU52eTHbpZkmpLvAUJ7VlUWc.roa
File: H_XoU52eTHbpZkmpLvAUJ7VlUWc.roa (raw, json)
Hash identifier: i8bOFbhv/rSJKPzgYxH26TzbQ5J62pViGnxTa332Y9Q=
Subject key identifier: 1F:F5:E8:53:9D:9E:4C:76:E9:66:49:A9:2E:F0:14:27:B5:65:51:67
Certificate issuer: /CN=868461e060fdf48cd41d33ad9271c807d424eb42
Certificate serial: 019615F6B5F62BB3C295ADFF74047A9C2974
Authority key identifier: 86:84:61:E0:60:FD:F4:8C:D4:1D:33:AD:92:71:C8:07:D4:24:EB:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hoRh4GD99IzUHTOtknHIB9Qk60I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/H_XoU52eTHbpZkmpLvAUJ7VlUWc.roa
Signing time: Tue 08 Apr 2025 15:13:32 +0000
ROA not before: Tue 08 Apr 2025 15:13:32 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215542
IP address blocks: 2001:678:1060::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:15:f6:b5:f6:2b:b3:c2:95:ad:ff:74:04:7a:9c:29:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=868461e060fdf48cd41d33ad9271c807d424eb42
Validity
Not Before: Apr 8 15:13:32 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1ff5e8539d9e4c76e96649a92ef01427b5655167
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:1c:28:07:b5:65:52:7b:2c:fd:86:a9:11:22:
16:6a:a3:15:e8:9d:82:aa:2a:a2:83:5c:df:ae:0a:
c6:1c:8a:2e:db:2c:4b:93:d6:e2:88:dc:5b:10:35:
23:d5:61:9e:e2:c1:f8:ff:3f:db:1c:ee:11:56:26:
45:49:7b:db:04:55:82:dd:e6:ba:b3:d5:f1:e8:d9:
ee:76:07:72:71:44:ab:22:06:44:29:72:0b:6f:42:
c3:96:e2:5d:54:aa:93:38:24:48:89:8a:7e:94:f3:
ee:7c:bc:96:77:87:a4:c2:47:b4:dc:0c:d6:43:95:
8d:a5:c6:a6:6c:c4:af:ab:d6:35:80:e6:62:20:8f:
98:98:ab:69:f4:46:54:f5:f2:fd:70:8f:6a:5b:1c:
a1:92:cd:05:93:cc:09:af:78:1a:9c:25:1c:ef:c4:
9f:4e:8b:f2:c4:fe:e1:09:11:f2:04:7c:1e:3e:bf:
52:f6:24:ce:24:3f:50:40:c3:b6:6d:9a:d1:33:1d:
20:1c:d2:e3:97:b5:de:a1:58:e2:ce:18:21:bb:17:
a1:f4:c7:be:9d:e1:14:e5:45:3f:2b:48:07:d3:37:
d3:f3:b6:fe:df:32:0c:33:2f:bc:57:8e:b0:35:a6:
7b:8f:41:84:45:62:e6:e4:4c:eb:af:72:d2:5b:46:
07:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:F5:E8:53:9D:9E:4C:76:E9:66:49:A9:2E:F0:14:27:B5:65:51:67
X509v3 Authority Key Identifier:
keyid:86:84:61:E0:60:FD:F4:8C:D4:1D:33:AD:92:71:C8:07:D4:24:EB:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hoRh4GD99IzUHTOtknHIB9Qk60I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/H_XoU52eTHbpZkmpLvAUJ7VlUWc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/hoRh4GD99IzUHTOtknHIB9Qk60I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:1060::/48
Signature Algorithm: sha256WithRSAEncryption
77:51:dd:fd:25:a8:8a:13:10:fe:c7:be:e4:3d:cb:16:88:20:
e7:67:26:2b:bf:76:a6:da:60:9c:a7:9a:38:fa:29:46:99:3b:
8a:92:5e:79:f8:5c:7a:f0:16:58:6c:22:1f:51:54:b0:e1:d2:
16:8d:8a:94:c6:8d:20:c5:ce:ee:80:be:47:9a:fb:92:71:fa:
8d:45:d0:b6:63:39:2f:62:1b:47:fc:b1:c7:6f:0b:b8:96:9c:
39:1d:07:89:e2:05:1c:a7:95:4c:dd:a5:c0:99:ff:0e:6c:07:
94:7f:a6:fa:b3:25:92:76:b5:42:1c:2e:c4:61:d1:e2:b1:75:
15:02:0c:b0:66:03:46:92:23:c9:44:67:3f:fa:8b:5f:09:f7:
d5:ac:08:d1:26:41:56:a4:21:0c:be:a3:93:45:15:7d:c6:fd:
cb:f7:72:66:7f:15:30:86:1d:0e:11:86:76:4d:86:f3:9d:ce:
f4:bc:69:44:ae:a0:51:1d:af:d5:d3:f7:bd:3d:53:a4:6d:7f:
5e:ce:12:44:14:f3:06:f4:6c:2b:c4:5d:80:52:62:a8:ac:e5:
87:9e:bb:18:d6:e4:b8:b1:ea:51:8a:72:df:76:ee:36:8e:9a:
5d:e3:18:1c:32:81:9b:b4:ef:7c:41:60:ea:2d:94:07:62:7e:
a1:65:2a:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:11 2025 by rpki-client on console.sobornost.net