Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/B5jBrigaJO3-AA-t_YN4JZyKlOc.roa
File: B5jBrigaJO3-AA-t_YN4JZyKlOc.roa (raw, json)
Hash identifier: rGNTEj/GGFLwPvW+NfWJ0mtsiCJfkPNhKXWRWEo8b5k=
Subject key identifier: 07:98:C1:AE:28:1A:24:ED:FE:00:0F:AD:FD:83:78:25:9C:8A:94:E7
Certificate issuer: /CN=5251b40b33198ac5a1edf50fff08628160335dfd
Certificate serial: 0194222028CF7C1F5FE813C19C40837F1C35
Authority key identifier: 52:51:B4:0B:33:19:8A:C5:A1:ED:F5:0F:FF:08:62:81:60:33:5D:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UlG0CzMZisWh7fUP_whigWAzXf0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/B5jBrigaJO3-AA-t_YN4JZyKlOc.roa
Signing time: Wed 01 Jan 2025 13:48:40 +0000
ROA not before: Wed 01 Jan 2025 13:48:40 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 62041
IP address blocks: 2001:67c:4e8::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:20:28:cf:7c:1f:5f:e8:13:c1:9c:40:83:7f:1c:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5251b40b33198ac5a1edf50fff08628160335dfd
Validity
Not Before: Jan 1 13:48:40 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0798c1ae281a24edfe000fadfd8378259c8a94e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:99:26:4c:f6:eb:8d:9d:58:3c:ea:70:32:4b:
e4:f6:62:d1:ff:7c:c7:2b:71:3e:20:76:22:67:b2:
e3:6e:8a:54:58:03:a2:65:23:84:89:23:a0:5f:1f:
96:e5:b2:33:11:81:32:51:96:80:09:88:9e:86:64:
61:83:84:f7:d5:4b:34:72:20:8d:c3:a7:14:c6:c3:
a4:bc:c0:9c:42:64:f3:e7:b6:21:fd:ff:6f:59:65:
db:5f:e1:7c:16:cf:75:70:43:97:ff:3c:6d:c8:0c:
96:17:74:52:f4:26:a6:49:42:1b:73:56:64:8b:6d:
34:b9:7d:79:c1:96:3a:76:28:bd:d1:73:25:31:7a:
f3:dc:13:3f:2c:c9:78:a8:11:46:b0:f7:05:ce:50:
20:98:cf:ed:a4:a6:5a:51:6a:43:5a:48:bf:d0:b6:
2e:c1:e4:11:67:01:72:aa:fa:53:e0:c6:fd:a4:71:
08:4c:f3:ac:6c:15:1e:78:96:d5:82:24:8f:54:c0:
f5:d7:c9:48:27:1a:09:c6:1f:1e:e7:aa:5d:4b:36:
6a:18:54:0f:0a:3a:25:b0:8d:6e:fc:8c:1a:36:32:
ac:c0:2c:84:92:24:1a:12:58:f2:7a:9f:ba:7a:c9:
9d:b4:54:fe:97:6a:c1:ff:d4:6d:36:c8:10:de:36:
3b:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:98:C1:AE:28:1A:24:ED:FE:00:0F:AD:FD:83:78:25:9C:8A:94:E7
X509v3 Authority Key Identifier:
keyid:52:51:B4:0B:33:19:8A:C5:A1:ED:F5:0F:FF:08:62:81:60:33:5D:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UlG0CzMZisWh7fUP_whigWAzXf0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/B5jBrigaJO3-AA-t_YN4JZyKlOc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/UlG0CzMZisWh7fUP_whigWAzXf0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:4e8::/48
Signature Algorithm: sha256WithRSAEncryption
13:bf:04:bc:a3:d4:b7:1b:60:d5:9c:dd:9c:54:d4:af:a8:b5:
b5:25:d6:22:df:84:60:3a:19:b2:b6:ac:c6:58:9e:71:ae:58:
4f:7e:16:bd:ae:ae:df:76:7e:7e:31:88:a2:4c:14:c4:f0:ec:
0f:cd:54:57:72:39:03:6c:4a:8c:e7:bc:a0:bb:3a:6a:d6:b5:
d4:ca:0d:80:96:70:ee:4c:91:30:cd:d3:1c:5a:76:9b:58:63:
49:d3:d0:a0:8c:e2:63:7e:60:4f:dd:15:7f:b1:79:28:8a:96:
be:a4:9a:eb:0f:b6:c9:37:ce:2c:74:a3:41:43:97:c4:d1:f4:
f3:8b:ad:af:2f:5f:39:18:9d:3d:94:c3:e8:85:ff:15:f5:c6:
8a:d1:db:50:44:0b:e8:ef:df:ad:9f:e4:5e:98:91:10:7f:03:
74:b3:48:78:7a:d6:25:ba:09:77:7f:44:64:66:ac:b7:1c:d5:
e4:cc:45:fe:88:32:0e:2d:39:af:74:e3:9f:65:df:4f:1c:fa:
89:cf:e7:63:1f:b9:16:42:7c:4d:fe:85:ce:d3:a1:3e:3e:b4:
84:8b:15:e0:f6:d8:1d:3c:00:ca:0c:64:8f:19:f3:6f:45:65:
4d:68:34:f4:40:f6:fa:a7:c5:b8:15:9d:d6:9a:7b:74:66:ea:
55:51:a1:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:54 2025 by rpki-client on console.sobornost.net