Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/211354-ebe4-4797-98f3-1b2ac35c09aa/1/BnL626pcSJW84hvMFQ1G4Qrz04U.roa
File: BnL626pcSJW84hvMFQ1G4Qrz04U.roa (raw, json)
Hash identifier: 3us+txzDTK3Uzjb5+hEvvCFMUnMHD1ygkmUal1BKvv4=
Subject key identifier: 06:72:FA:DB:AA:5C:48:95:BC:E2:1B:CC:15:0D:46:E1:0A:F3:D3:85
Certificate issuer: /CN=d588212bf5dace1080dc45e2c55b92ff85c6c192
Certificate serial: 01951EEB775C2B900456F8AE2FA672AE6E0C
Authority key identifier: D5:88:21:2B:F5:DA:CE:10:80:DC:45:E2:C5:5B:92:FF:85:C6:C1:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1YghK_XazhCA3EXixVuS_4XGwZI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/211354-ebe4-4797-98f3-1b2ac35c09aa/1/BnL626pcSJW84hvMFQ1G4Qrz04U.roa
Signing time: Wed 19 Feb 2025 15:55:02 +0000
ROA not before: Wed 19 Feb 2025 15:55:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 13657
IP address blocks: 2a01:8840:11::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:1e:eb:77:5c:2b:90:04:56:f8:ae:2f:a6:72:ae:6e:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d588212bf5dace1080dc45e2c55b92ff85c6c192
Validity
Not Before: Feb 19 15:55:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0672fadbaa5c4895bce21bcc150d46e10af3d385
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:77:33:d6:8b:b9:26:2a:5c:c7:4d:eb:f9:f7:
0f:82:8d:87:78:24:fa:b5:80:ee:d7:cb:a4:6c:a1:
be:d1:cf:c8:3e:b9:85:75:92:91:ad:22:60:d9:18:
7c:6d:e9:44:51:8f:2c:ed:f0:84:8d:69:be:d2:b8:
b0:4f:15:03:97:6a:91:c8:27:39:6b:42:36:98:bd:
21:85:80:65:7c:c7:8a:18:4c:f4:1e:71:d7:03:26:
b5:aa:f7:e6:fa:e8:bf:3c:3a:87:29:e1:70:57:7b:
1c:4c:9e:2c:51:a7:f1:0e:c3:35:4a:e2:a2:0d:1b:
4f:cd:eb:e7:9e:cc:e9:63:1a:55:dc:88:bf:47:ba:
94:ba:27:3e:ee:9f:48:58:0a:38:d4:32:b3:3d:20:
fd:bc:5e:38:af:53:c3:e9:3a:ff:5e:87:24:63:de:
80:48:ef:3a:bf:6b:32:8f:ae:76:00:89:a3:e2:88:
98:03:8f:08:74:45:4c:10:90:83:1b:d0:f8:23:77:
18:b9:36:d9:01:af:36:fd:48:98:36:65:ed:20:0b:
ad:d0:9b:39:60:c8:0a:fb:ac:50:4c:5b:61:55:07:
c3:62:31:ed:8f:56:4f:8e:fa:19:47:c6:69:b2:3a:
4d:13:33:a1:8d:d4:4e:38:d9:e6:ea:45:d6:21:7e:
1b:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:72:FA:DB:AA:5C:48:95:BC:E2:1B:CC:15:0D:46:E1:0A:F3:D3:85
X509v3 Authority Key Identifier:
keyid:D5:88:21:2B:F5:DA:CE:10:80:DC:45:E2:C5:5B:92:FF:85:C6:C1:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1YghK_XazhCA3EXixVuS_4XGwZI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/211354-ebe4-4797-98f3-1b2ac35c09aa/1/BnL626pcSJW84hvMFQ1G4Qrz04U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/211354-ebe4-4797-98f3-1b2ac35c09aa/1/1YghK_XazhCA3EXixVuS_4XGwZI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:8840:11::/48
Signature Algorithm: sha256WithRSAEncryption
8b:33:23:17:9c:72:6e:3f:69:b3:80:ce:62:5d:9f:fc:14:3f:
26:b0:5c:e4:ff:7a:d9:28:92:7c:d4:99:6a:a5:13:71:6b:e9:
9f:a3:b6:6c:05:d8:da:6a:14:eb:57:24:2a:ef:be:b1:13:12:
f6:0d:aa:dd:31:2e:c6:0f:de:1c:54:57:0f:96:d0:02:eb:05:
d5:df:26:a1:7c:d9:fa:da:91:05:87:2e:80:6c:7f:c6:5e:e2:
30:08:88:f1:35:28:83:31:26:2c:8a:47:72:e6:66:8b:56:7b:
a9:1c:06:60:1d:f6:19:42:fd:de:26:db:c5:ed:f5:5c:ff:1b:
1a:0d:62:ad:43:c9:e2:b1:f7:c8:b2:87:c0:44:b5:74:07:c3:
e3:d3:8b:45:6a:62:7e:e5:fa:8f:66:8b:ec:8c:7a:80:8f:57:
f9:78:f2:e5:eb:ac:00:91:5a:0f:f9:2a:f5:a5:ac:a4:ed:c3:
fb:09:d9:70:c8:45:ec:1f:60:77:ef:9f:e0:7b:12:78:ac:ed:
e9:8b:98:32:ef:11:0c:b9:20:e9:fe:1b:b9:04:e5:c8:31:11:
fe:00:86:f8:6e:ce:cd:f6:c3:18:66:6e:b0:c8:81:5d:2e:f7:
71:08:d3:6f:f9:a6:cc:b8:26:29:17:3c:f8:6a:5f:0a:2e:9d:
dc:e0:ea:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:47 2025 by rpki-client on console.sobornost.net