Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/89ce74-9380-4ccf-a615-4c08b4aa20fe/1/ajlhxYNtAPzeTPjXCJjwu3u7DCY.roa
File: ajlhxYNtAPzeTPjXCJjwu3u7DCY.roa (raw, json)
Hash identifier: IqXuM6//Ku9jh4JzK+2CUndK/ugkLqCne4Oz+cOP1rE=
Subject key identifier: 6A:39:61:C5:83:6D:00:FC:DE:4C:F8:D7:08:98:F0:BB:7B:BB:0C:26
Certificate issuer: /CN=c874132c12f86995fe2893e4dea72638d2601079
Certificate serial: 019422FB344EF910C6F03DEDDF3A87C3EEBB
Authority key identifier: C8:74:13:2C:12:F8:69:95:FE:28:93:E4:DE:A7:26:38:D2:60:10:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yHQTLBL4aZX-KJPk3qcmONJgEHk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/89ce74-9380-4ccf-a615-4c08b4aa20fe/1/ajlhxYNtAPzeTPjXCJjwu3u7DCY.roa
Signing time: Wed 01 Jan 2025 17:47:55 +0000
ROA not before: Wed 01 Jan 2025 17:47:55 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 198157
IP address blocks: 128.127.77.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fb:34:4e:f9:10:c6:f0:3d:ed:df:3a:87:c3:ee:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c874132c12f86995fe2893e4dea72638d2601079
Validity
Not Before: Jan 1 17:47:55 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6a3961c5836d00fcde4cf8d70898f0bb7bbb0c26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:51:f9:68:cf:43:7c:16:ab:5f:61:0e:a1:8a:
7d:05:fb:6d:9b:1b:e4:7d:0c:80:0d:a6:8a:05:a2:
7d:99:28:e6:bd:7a:8e:23:5f:96:62:25:75:91:45:
3f:72:0f:51:ba:5d:55:a5:18:89:91:b7:75:65:e7:
e4:82:c4:a6:d4:59:bb:1f:a3:21:bd:f5:85:7a:ef:
4f:4c:fa:ea:b2:9e:ef:0e:eb:c6:45:54:66:2b:57:
e5:4c:9b:26:9a:28:da:0d:bc:69:c6:a5:ef:5d:94:
97:f9:60:96:35:82:96:2b:be:17:99:a1:49:40:19:
59:29:b3:07:eb:b7:90:0e:20:8a:1f:e1:6d:93:c4:
b6:cb:dc:91:f6:36:5a:2d:c1:b2:46:95:aa:2a:0a:
ae:63:22:f6:0a:71:cd:1a:22:e6:10:20:f3:19:73:
75:06:0c:ce:80:a4:de:f3:18:00:d0:9b:73:7d:ce:
43:b6:a1:86:24:14:b1:5e:0e:4d:fb:c5:4c:b9:7c:
36:2f:38:c9:9d:90:7d:85:85:23:de:7d:e1:d5:7a:
a5:04:59:00:1c:2f:47:63:b8:ad:26:76:49:6c:c7:
80:05:0d:e7:54:ac:37:b2:e6:01:f9:a6:3a:77:d8:
ff:d8:9f:8a:92:30:17:a0:a6:4e:e7:b4:20:9e:f2:
52:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:39:61:C5:83:6D:00:FC:DE:4C:F8:D7:08:98:F0:BB:7B:BB:0C:26
X509v3 Authority Key Identifier:
keyid:C8:74:13:2C:12:F8:69:95:FE:28:93:E4:DE:A7:26:38:D2:60:10:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yHQTLBL4aZX-KJPk3qcmONJgEHk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/89ce74-9380-4ccf-a615-4c08b4aa20fe/1/ajlhxYNtAPzeTPjXCJjwu3u7DCY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/89ce74-9380-4ccf-a615-4c08b4aa20fe/1/yHQTLBL4aZX-KJPk3qcmONJgEHk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
128.127.77.0/24
Signature Algorithm: sha256WithRSAEncryption
14:de:ec:4b:93:71:a2:df:64:0d:62:2b:dd:7a:a7:c1:7d:c0:
53:c3:8f:f6:71:c8:bd:1c:10:6e:c7:02:43:82:e2:8e:61:80:
b1:c7:d8:df:89:9d:5b:75:31:3b:0f:5a:e5:f6:68:bc:d2:e8:
f2:be:65:5a:77:df:fc:3f:69:b9:cb:24:20:9c:b6:cc:08:49:
35:86:01:4f:f6:8a:e0:02:68:e8:9c:bc:47:1c:aa:f8:3e:eb:
e6:8e:1d:45:f2:3a:1c:b0:e7:ce:20:7b:e5:dc:9f:65:0a:84:
60:33:aa:1f:0f:c6:72:36:b9:e6:39:55:e3:24:dd:8d:86:a6:
7d:2f:e5:2f:bf:f3:78:2f:58:55:d6:f6:14:db:78:23:3f:1e:
a1:8b:98:a7:64:0c:de:32:54:ee:f3:82:c8:33:70:b2:cf:da:
63:a1:f7:e0:06:ce:f5:ff:fc:71:18:d9:19:22:3c:ef:c6:3b:
9d:a8:e8:a0:66:2a:ae:66:ec:e9:6b:78:42:70:4e:72:09:01:
7a:7d:82:d9:e1:cf:47:97:fc:74:b5:b6:00:3d:c5:cc:10:a7:
20:61:ea:60:cb:11:a6:ca:93:75:8c:39:bb:0a:a6:b7:39:8d:
6f:a0:bd:4f:8c:f6:1e:93:fb:83:83:ca:27:2c:4d:52:a0:d9:
76:34:80:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:26 2025 by rpki-client on console.sobornost.net