Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/4a4b66-4845-4007-a6e0-10693881dad8/1/sxbHoHimI0Vr0EljvQZ9JY4CO3A.roa
File: sxbHoHimI0Vr0EljvQZ9JY4CO3A.roa (raw, json)
Hash identifier: xkyWQBZUM5YrjIeddGIa+ZKyCDrkqNywzvJP6lv4kKQ=
Subject key identifier: B3:16:C7:A0:78:A6:23:45:6B:D0:49:63:BD:06:7D:25:8E:02:3B:70
Certificate issuer: /CN=779ee00dd8baa59f53384dd0277a50e8b9802908
Certificate serial: 0194274743AF3C5FC155A8FB183C1F47D4F0
Authority key identifier: 77:9E:E0:0D:D8:BA:A5:9F:53:38:4D:D0:27:7A:50:E8:B9:80:29:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d57gDdi6pZ9TOE3QJ3pQ6LmAKQg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/4a4b66-4845-4007-a6e0-10693881dad8/1/sxbHoHimI0Vr0EljvQZ9JY4CO3A.roa
Signing time: Thu 02 Jan 2025 13:49:29 +0000
ROA not before: Thu 02 Jan 2025 13:49:29 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43065
IP address blocks: 2001:67c:2448::/48 maxlen: 48
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:47:43:af:3c:5f:c1:55:a8:fb:18:3c:1f:47:d4:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=779ee00dd8baa59f53384dd0277a50e8b9802908
Validity
Not Before: Jan 2 13:49:29 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b316c7a078a623456bd04963bd067d258e023b70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:24:53:67:9a:b3:f4:81:1b:e0:9b:ad:45:2b:
9c:46:b1:20:f8:a1:bc:62:53:1d:18:53:1e:eb:07:
f9:34:bd:bf:21:32:e6:2d:f1:90:61:e7:0b:0b:01:
ec:e2:17:b8:69:df:fc:95:3c:17:e8:ff:19:68:05:
e5:69:75:21:ed:5d:55:37:19:83:13:cb:50:b9:bc:
89:c9:5e:a1:f9:7d:f8:e6:80:37:51:f9:24:b0:7e:
80:8e:2a:bc:96:41:6f:39:60:f3:3d:c8:4f:52:4f:
de:e1:8f:a0:7d:97:93:89:6f:2e:54:44:35:d2:80:
c4:86:7a:a6:27:61:1f:72:e1:92:42:bd:d8:c9:f7:
db:95:8c:25:95:52:8c:a0:ec:91:d9:7f:95:dd:b5:
68:45:3d:aa:80:ff:38:a4:32:c0:c3:e5:85:5f:94:
16:e1:3d:65:69:98:34:04:fa:8b:d8:79:1e:b9:e9:
58:46:e2:b7:0e:4a:ee:97:97:51:02:be:59:dd:6c:
ee:88:16:80:32:5a:84:83:5d:a7:8a:60:41:c1:c6:
0c:80:6b:27:bf:e2:bb:ae:50:f7:0f:f9:31:20:1f:
7b:0f:77:55:dc:2e:94:fe:ae:df:26:9c:1e:f8:22:
64:5d:95:4f:ab:55:4d:c1:d4:4c:90:ab:dc:80:87:
8f:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:16:C7:A0:78:A6:23:45:6B:D0:49:63:BD:06:7D:25:8E:02:3B:70
X509v3 Authority Key Identifier:
keyid:77:9E:E0:0D:D8:BA:A5:9F:53:38:4D:D0:27:7A:50:E8:B9:80:29:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d57gDdi6pZ9TOE3QJ3pQ6LmAKQg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/4a4b66-4845-4007-a6e0-10693881dad8/1/sxbHoHimI0Vr0EljvQZ9JY4CO3A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/4a4b66-4845-4007-a6e0-10693881dad8/1/d57gDdi6pZ9TOE3QJ3pQ6LmAKQg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2448::/48
Signature Algorithm: sha256WithRSAEncryption
c6:c9:26:15:02:b8:de:d8:14:4f:97:fb:b4:3c:fc:e9:18:69:
79:04:8e:ed:1b:5f:cf:66:40:ab:13:12:24:2b:e9:d7:e8:48:
e8:f9:51:35:79:ef:e1:49:f5:04:76:49:81:47:e8:07:35:9e:
e5:88:dc:72:ee:37:c1:41:69:98:aa:10:69:fc:c7:a9:db:7c:
70:29:02:64:49:e2:3a:03:3f:32:bd:d8:f2:26:c3:fb:6c:34:
ab:fe:d6:1a:63:b2:8f:d9:c1:9a:ad:c4:ed:32:ee:02:7e:84:
2a:d6:28:bb:69:26:d3:da:27:c0:e2:f6:af:d5:d2:5e:cc:a7:
6e:4a:43:cc:76:a8:01:f8:26:03:6c:3f:5e:78:a2:44:67:f4:
92:26:ca:9f:8e:5d:cc:47:93:7f:f7:3c:4f:33:73:19:d1:38:
8d:ad:d4:47:b5:92:34:12:0d:a9:4c:cd:89:5b:6c:9a:69:45:
5e:5d:d7:72:62:58:fb:ba:21:70:74:59:09:ff:4b:f5:3b:fe:
e7:fb:ae:dc:86:10:81:4d:06:db:ea:55:08:80:05:ea:22:fa:
16:d3:41:17:95:c8:3e:3c:17:54:e5:87:69:b2:cf:54:b5:36:
d5:c8:84:b4:02:b8:f4:16:d6:cb:e7:10:97:ac:65:b0:de:4e:
31:b8:81:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 25 14:42:26 2025 by rpki-client on console.sobornost.net