Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/7e28ee-c65d-4529-a47b-48633d718590/1/mY0BBoyvYX1zorx6Y5fLdEd0tCk.roa
File: mY0BBoyvYX1zorx6Y5fLdEd0tCk.roa (raw, json)
Hash identifier: 9FO5ETPVAJGxL50DKTbOEEcsQnQAs0IphL/Zj67O7Wg=
Subject key identifier: 99:8D:01:06:8C:AF:61:7D:73:A2:BC:7A:63:97:CB:74:47:74:B4:29
Certificate issuer: /CN=bf107e07952c069358cd3f82aaeceb4c69483ca9
Certificate serial: 0194228D356DBDDB679A76307B66C6E3A381
Authority key identifier: BF:10:7E:07:95:2C:06:93:58:CD:3F:82:AA:EC:EB:4C:69:48:3C:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vxB-B5UsBpNYzT-CquzrTGlIPKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/7e28ee-c65d-4529-a47b-48633d718590/1/mY0BBoyvYX1zorx6Y5fLdEd0tCk.roa
Signing time: Wed 01 Jan 2025 15:47:47 +0000
ROA not before: Wed 01 Jan 2025 15:47:47 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 208265
IP address blocks: 2a0f:6a00::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:35:6d:bd:db:67:9a:76:30:7b:66:c6:e3:a3:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf107e07952c069358cd3f82aaeceb4c69483ca9
Validity
Not Before: Jan 1 15:47:47 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=998d01068caf617d73a2bc7a6397cb744774b429
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:8a:3e:d5:76:16:22:3e:bf:1c:b7:7c:88:45:
bc:34:e4:a7:f1:cf:ec:e3:aa:75:c2:83:f8:7c:c9:
92:41:b6:9e:b3:1a:48:56:07:b1:2a:2b:b1:34:94:
cf:ec:5e:7e:a9:d9:13:61:1f:7c:6d:a3:2a:ca:f2:
bf:a2:12:ed:3f:59:82:71:c3:39:8e:a5:83:d8:c1:
db:48:af:75:c6:c9:22:18:a8:03:c4:e2:d8:ff:04:
90:bf:65:19:16:59:30:db:bf:4f:31:f2:df:92:57:
f9:c8:d6:23:5d:63:82:1c:0c:5a:15:7d:9b:09:2c:
bc:72:48:35:af:ae:8e:5b:b0:be:17:4b:1d:70:6d:
9a:a1:0e:48:84:a8:b6:4d:cb:a5:df:e8:a5:9f:22:
3d:eb:8c:ae:3f:dd:77:53:67:fb:a0:0a:fc:6a:ed:
e4:03:0d:e1:62:47:0b:1a:eb:8a:00:22:b0:66:9d:
31:01:17:a0:e2:1f:2f:3c:26:98:ea:47:0a:66:b6:
39:b1:e3:ad:54:f8:c8:86:d6:f5:8e:a9:04:83:d3:
41:f0:ea:74:1b:7f:09:65:02:19:9d:6c:22:26:70:
71:7a:9c:b0:60:55:e3:ed:3a:d2:11:59:97:39:59:
d9:80:13:1d:0c:cc:cc:ab:eb:b1:72:ba:6b:63:24:
28:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:8D:01:06:8C:AF:61:7D:73:A2:BC:7A:63:97:CB:74:47:74:B4:29
X509v3 Authority Key Identifier:
keyid:BF:10:7E:07:95:2C:06:93:58:CD:3F:82:AA:EC:EB:4C:69:48:3C:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vxB-B5UsBpNYzT-CquzrTGlIPKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/7e28ee-c65d-4529-a47b-48633d718590/1/mY0BBoyvYX1zorx6Y5fLdEd0tCk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/7e28ee-c65d-4529-a47b-48633d718590/1/vxB-B5UsBpNYzT-CquzrTGlIPKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:6a00::/29
Signature Algorithm: sha256WithRSAEncryption
32:29:46:4c:4a:9f:0f:57:d1:00:00:4f:a2:6b:17:87:5c:93:
30:50:5b:16:4b:a0:b5:b3:24:73:8a:fc:0f:60:7c:65:23:9e:
98:15:63:e6:f0:54:d5:7f:8d:98:a6:54:57:0d:fd:f1:c5:21:
cd:c9:1e:1e:cd:e4:29:d3:e6:b2:29:74:a2:56:cb:6a:13:03:
e8:e7:bd:99:56:32:2b:cf:2c:60:b2:f4:74:bd:0f:68:5a:85:
90:3b:78:c4:3d:bf:01:68:f7:53:02:74:f2:4a:e3:8f:6b:da:
75:70:00:37:73:c2:e8:b7:69:94:f2:65:c9:ca:e2:8b:ef:8a:
0e:fe:2f:af:03:32:d6:48:a5:55:ff:0f:3e:f7:46:2c:ec:e5:
3b:42:1d:7a:90:cf:a5:d3:35:bd:e3:69:13:1b:9a:1d:08:14:
88:3d:13:b0:85:4f:2a:57:f9:29:84:49:c0:18:53:8c:c4:05:
fb:0d:16:08:b0:5e:7c:2b:e9:29:b1:2c:1d:d6:ee:b9:fd:cf:
1b:68:aa:83:c7:5f:8f:4a:04:a4:e5:85:45:a3:84:20:06:58:
00:88:f9:e9:08:b4:ea:e9:7d:73:29:b8:b7:74:b1:9e:a1:17:
5e:d1:89:df:a5:2a:30:08:0f:72:96:65:d2:e0:03:86:45:9f:
c4:88:62:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:32 2025 by rpki-client on console.sobornost.net