Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/ee3e3f-3a45-43eb-a5de-4285998392d3/1/c_P4sr3Opke1mWU78BvJMlMDps8.roa
File: c_P4sr3Opke1mWU78BvJMlMDps8.roa (raw, json)
Hash identifier: epdNIDM+10/qxHg1G8njFcHs1LoWUpUQmmausYhNxGY=
Subject key identifier: 73:F3:F8:B2:BD:CE:A6:47:B5:99:65:3B:F0:1B:C9:32:53:03:A6:CF
Certificate issuer: /CN=ccc478dd9ccd6162f82488ac6fc50c21d369f2a0
Certificate serial: 01958B07A92880C70B4A9DFA25B52B337C4E
Authority key identifier: CC:C4:78:DD:9C:CD:61:62:F8:24:88:AC:6F:C5:0C:21:D3:69:F2:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zMR43ZzNYWL4JIisb8UMIdNp8qA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/ee3e3f-3a45-43eb-a5de-4285998392d3/1/c_P4sr3Opke1mWU78BvJMlMDps8.roa
Signing time: Wed 12 Mar 2025 15:44:49 +0000
ROA not before: Wed 12 Mar 2025 15:44:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 396931
IP address blocks: 2a06:a640::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8b:07:a9:28:80:c7:0b:4a:9d:fa:25:b5:2b:33:7c:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ccc478dd9ccd6162f82488ac6fc50c21d369f2a0
Validity
Not Before: Mar 12 15:44:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=73f3f8b2bdcea647b599653bf01bc9325303a6cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:69:f2:dc:18:89:88:7b:16:40:9d:ee:b5:f8:
29:f3:a5:24:de:b0:be:a1:69:ee:0e:92:a1:e1:ac:
ec:d4:2e:f9:6e:f7:9f:0a:b6:91:d7:7e:65:e2:57:
42:64:8d:c6:ab:cd:51:72:b8:2a:23:74:e2:a8:4a:
af:a1:3f:d6:58:07:88:95:03:82:5b:6f:82:07:46:
2e:cf:82:83:97:22:e7:5c:e5:f5:18:3a:3e:60:6c:
bc:68:63:80:88:41:f5:7c:fa:4a:e3:45:e3:ff:8d:
c7:cf:f3:35:38:09:84:d1:d0:fa:ab:18:a9:a2:ba:
55:5b:ca:74:21:15:2d:30:06:8c:43:88:56:36:54:
86:f3:c9:b0:4e:90:a8:22:8b:10:42:5c:30:ea:40:
3b:41:49:a0:09:b3:4f:26:ae:7d:4c:66:fc:ed:41:
6e:8c:21:2f:19:55:6d:2b:67:81:f6:ba:cb:56:2f:
42:19:b9:36:cd:9c:27:e7:f0:89:da:35:3e:39:ed:
f8:2c:82:96:07:1d:1f:99:41:23:a5:f6:06:b8:bc:
d9:de:89:8f:63:22:c8:ce:0f:6e:ec:e5:7c:89:68:
25:18:d4:ee:72:83:c9:10:96:e3:50:84:17:1d:ab:
87:9f:6d:fc:6b:f6:21:72:00:ab:96:cd:ea:b6:c6:
c5:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:F3:F8:B2:BD:CE:A6:47:B5:99:65:3B:F0:1B:C9:32:53:03:A6:CF
X509v3 Authority Key Identifier:
keyid:CC:C4:78:DD:9C:CD:61:62:F8:24:88:AC:6F:C5:0C:21:D3:69:F2:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zMR43ZzNYWL4JIisb8UMIdNp8qA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/ee3e3f-3a45-43eb-a5de-4285998392d3/1/c_P4sr3Opke1mWU78BvJMlMDps8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/ee3e3f-3a45-43eb-a5de-4285998392d3/1/zMR43ZzNYWL4JIisb8UMIdNp8qA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a640::/29
Signature Algorithm: sha256WithRSAEncryption
a7:46:36:75:51:4c:3a:22:1d:a7:5e:7b:59:6c:9f:30:e2:81:
94:b7:9d:c6:cd:25:cd:f2:34:65:45:d5:c7:3b:af:9b:eb:2b:
a3:65:8c:3b:1c:e7:70:bd:30:ad:9b:06:5c:99:73:d2:fa:4d:
df:d9:74:07:f2:99:db:56:02:13:ba:fa:c8:e1:56:8b:31:e5:
45:0b:cd:90:2b:b9:b8:6e:87:a1:38:8f:aa:a2:95:b5:9b:9d:
f1:89:84:ae:b3:6c:46:0f:85:44:60:19:92:46:8e:3b:0f:ca:
04:33:70:94:7c:4a:aa:07:af:21:33:48:13:72:fb:be:35:c0:
8a:e6:8f:e6:49:32:66:43:28:e9:d1:18:23:9f:07:cb:e3:a7:
f4:9c:76:ca:21:cb:83:00:9c:f4:97:87:94:e5:f6:99:7e:b9:
ec:6b:3b:e4:b5:65:78:9b:71:89:51:a6:d9:cd:57:12:8b:33:
e8:9c:3a:e5:98:2c:bc:a3:de:a6:d7:73:e8:46:5e:36:58:79:
e5:c6:c0:81:1b:2b:ea:9e:3b:64:1e:6d:8b:54:97:c0:3a:2d:
fb:16:3e:62:41:38:5f:80:77:42:ac:f5:df:bf:3d:51:e8:e7:
eb:b6:90:33:77:d3:f1:69:5d:c0:11:74:3a:f9:a7:91:8f:9e:
62:11:8a:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:31 2025 by rpki-client on console.sobornost.net