Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/d92cfc-95e8-499e-a6fd-f1b47b12a75c/1/2VOoNC3U3dbfOvp8BLzsJ1f-ifE.roa
File: 2VOoNC3U3dbfOvp8BLzsJ1f-ifE.roa (raw, json)
Hash identifier: /4n1vWOP9xioYbfhWLfqMCZdtH551Gxmhk/RZPxKlZ0=
Subject key identifier: D9:53:A8:34:2D:D4:DD:D6:DF:3A:FA:7C:04:BC:EC:27:57:FE:89:F1
Certificate issuer: /CN=49e9753b5d99fc6c9bd835bd6e4a153201c9c448
Certificate serial: 019518D53D35FE5211FE935F955F688ECE22
Authority key identifier: 49:E9:75:3B:5D:99:FC:6C:9B:D8:35:BD:6E:4A:15:32:01:C9:C4:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sel1O12Z_Gyb2DW9bkoVMgHJxEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/d92cfc-95e8-499e-a6fd-f1b47b12a75c/1/2VOoNC3U3dbfOvp8BLzsJ1f-ifE.roa
Signing time: Tue 18 Feb 2025 11:33:02 +0000
ROA not before: Tue 18 Feb 2025 11:33:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 31686
IP address blocks: 2a14:4440::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:18:d5:3d:35:fe:52:11:fe:93:5f:95:5f:68:8e:ce:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e9753b5d99fc6c9bd835bd6e4a153201c9c448
Validity
Not Before: Feb 18 11:33:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d953a8342dd4ddd6df3afa7c04bcec2757fe89f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:b8:2b:9b:be:82:fd:be:ec:2c:a8:40:cc:95:
6d:a5:04:6d:42:a5:5a:74:af:8a:a8:25:e0:49:f5:
21:5a:dd:89:23:70:67:3a:37:70:05:9a:6b:6f:53:
16:84:38:ef:8c:d0:99:1e:31:89:96:90:66:54:37:
98:ff:24:cb:bf:53:6b:be:c2:35:3e:3f:af:d9:a5:
dd:b4:2c:89:e0:1d:f1:a0:8d:76:72:75:58:8e:07:
60:4b:aa:74:bc:3c:85:03:9a:32:6a:6b:b9:7e:47:
50:da:10:bb:db:73:9b:d9:7b:80:86:48:36:fc:e3:
62:bb:b2:65:9e:43:02:48:12:75:a3:c0:31:17:48:
30:83:86:a0:65:52:c3:9d:ec:28:6b:07:68:1b:72:
2d:03:d6:9a:74:e6:5a:9c:38:fd:9d:e2:6a:ad:66:
b2:05:12:b0:e3:df:d7:29:f5:a2:17:7a:4a:f8:bc:
f7:06:43:b8:ce:67:8e:24:7d:54:4f:cd:c7:2a:3a:
13:58:c4:f4:f7:8d:d1:01:82:97:e9:f5:b4:28:61:
22:05:ff:5b:44:74:35:a8:e9:f6:c7:c0:cd:6f:fb:
fb:2b:13:f5:e1:85:d5:08:7a:44:ea:11:4a:e8:d0:
86:20:10:cf:4a:8d:16:75:b1:94:e4:b6:35:b4:a0:
3b:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:53:A8:34:2D:D4:DD:D6:DF:3A:FA:7C:04:BC:EC:27:57:FE:89:F1
X509v3 Authority Key Identifier:
keyid:49:E9:75:3B:5D:99:FC:6C:9B:D8:35:BD:6E:4A:15:32:01:C9:C4:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sel1O12Z_Gyb2DW9bkoVMgHJxEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/d92cfc-95e8-499e-a6fd-f1b47b12a75c/1/2VOoNC3U3dbfOvp8BLzsJ1f-ifE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/d92cfc-95e8-499e-a6fd-f1b47b12a75c/1/Sel1O12Z_Gyb2DW9bkoVMgHJxEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:4440::/29
Signature Algorithm: sha256WithRSAEncryption
4a:1b:e7:bb:41:89:47:98:32:2a:fc:fe:82:bc:17:25:bf:c8:
e4:3e:58:fd:ce:58:ce:3b:3d:f5:01:9a:25:85:07:e8:5b:81:
04:57:2e:57:e6:03:18:f4:45:ce:59:13:2a:a2:ed:50:5a:c9:
a8:d9:9a:2a:81:94:fa:db:7f:54:ec:92:b3:f0:a0:27:7e:68:
02:86:03:38:51:c4:f8:51:fd:da:fb:5c:a0:53:01:09:06:64:
89:4a:5d:40:d4:bd:cf:f1:22:42:0d:c8:47:c0:11:69:3d:71:
c9:9c:e1:3b:33:47:a1:6f:8e:90:8a:a5:66:d3:36:48:ec:56:
56:71:05:1f:fc:01:60:19:4c:9d:b4:52:4f:54:6d:bd:51:46:
7d:f8:a4:4b:0c:cc:e6:78:d1:ba:9c:30:4d:bd:82:99:4c:b6:
0b:6b:db:ff:2a:26:27:8e:d6:2a:4b:fb:83:47:a1:ff:f1:70:
c6:b4:84:7c:57:73:01:e1:e0:ab:6e:62:cc:77:d7:26:90:d3:
55:50:12:f4:1f:ee:8d:36:11:33:90:65:b9:3f:b8:8a:9c:1c:
5a:4c:9a:25:3b:87:e9:37:20:9b:11:08:6e:c3:ec:b8:cf:a7:
f6:20:a4:c1:59:18:d1:7e:cc:a2:38:c4:91:8b:1d:02:8b:7a:
52:3e:e2:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:57 2025 by rpki-client on console.sobornost.net