Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/388fd8-c81f-4e71-af52-c0b1ad435b95/1/lejfRms_8jcNpkPTbPyQIBJyGvk.roa
File: lejfRms_8jcNpkPTbPyQIBJyGvk.roa (raw, json)
Hash identifier: tyCtAQGeo8obwJOw9cT2nm1EzzLsrcw7uVb2b4sZkgw=
Subject key identifier: 95:E8:DF:46:6B:3F:F2:37:0D:A6:43:D3:6C:FC:90:20:12:72:1A:F9
Certificate issuer: /CN=a7fd3f89335dcf828666b28fad8ae993bd448878
Certificate serial: 019427B634636F86B096D59A6C51AA90F41B
Authority key identifier: A7:FD:3F:89:33:5D:CF:82:86:66:B2:8F:AD:8A:E9:93:BD:44:88:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p_0_iTNdz4KGZrKPrYrpk71EiHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/388fd8-c81f-4e71-af52-c0b1ad435b95/1/lejfRms_8jcNpkPTbPyQIBJyGvk.roa
Signing time: Thu 02 Jan 2025 15:50:39 +0000
ROA not before: Thu 02 Jan 2025 15:50:39 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 45036
IP address blocks: 2a12:a4c2::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b6:34:63:6f:86:b0:96:d5:9a:6c:51:aa:90:f4:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7fd3f89335dcf828666b28fad8ae993bd448878
Validity
Not Before: Jan 2 15:50:39 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=95e8df466b3ff2370da643d36cfc902012721af9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:f9:46:e8:34:0d:0f:e4:2a:81:81:a3:13:e9:
f8:ea:0e:0d:84:4f:c1:d9:29:f9:f7:81:45:c4:db:
97:61:96:7b:a0:79:bd:3d:28:8f:5f:f3:7d:47:0a:
ad:39:0d:dc:c4:99:e3:c5:bc:b0:87:80:e2:29:12:
e6:ab:fd:07:7e:eb:e8:97:62:0c:fb:8f:8d:a8:16:
57:7b:24:ee:86:71:e2:b4:e1:17:a1:4e:2b:eb:37:
18:3c:66:2d:0a:4b:bb:ab:b7:2c:18:2a:15:7f:dc:
7d:44:88:ad:99:bf:7f:44:97:01:cd:c7:5d:10:0b:
4b:6d:6f:68:2d:86:d0:2a:d2:e9:40:64:40:11:18:
51:f8:ff:a7:32:e5:e7:18:b3:25:c8:f5:66:df:e7:
05:e2:50:6e:0a:fa:b9:19:52:3f:e7:ff:2d:ac:6a:
7c:f1:68:06:91:c5:62:14:1a:55:5b:29:ba:91:29:
14:27:d2:8c:6d:fc:36:07:28:4c:96:50:fe:21:2d:
79:b4:c8:7c:c3:da:54:05:83:84:c4:4a:a3:0e:94:
09:87:70:e6:75:85:83:37:83:56:6f:84:6f:9c:7f:
31:01:0f:82:e4:ee:b5:6f:19:d9:95:99:ab:f5:1b:
28:8b:18:3e:9c:2b:32:30:49:26:db:dd:b3:6c:58:
ca:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:E8:DF:46:6B:3F:F2:37:0D:A6:43:D3:6C:FC:90:20:12:72:1A:F9
X509v3 Authority Key Identifier:
keyid:A7:FD:3F:89:33:5D:CF:82:86:66:B2:8F:AD:8A:E9:93:BD:44:88:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p_0_iTNdz4KGZrKPrYrpk71EiHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/388fd8-c81f-4e71-af52-c0b1ad435b95/1/lejfRms_8jcNpkPTbPyQIBJyGvk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/388fd8-c81f-4e71-af52-c0b1ad435b95/1/p_0_iTNdz4KGZrKPrYrpk71EiHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:a4c2::/32
Signature Algorithm: sha256WithRSAEncryption
0c:d2:cf:e6:a0:c9:c4:34:ca:47:f9:76:dd:8c:83:de:c6:4e:
cc:cc:e5:f8:10:fd:f4:01:5a:90:02:99:72:e5:bb:33:bc:84:
eb:a2:a7:bc:f6:47:ef:80:8f:8a:56:db:2c:83:b5:9b:4e:e3:
86:da:3c:63:ac:c9:32:60:3f:e2:b6:ab:98:26:fe:8f:6d:35:
ec:a6:21:7c:91:f3:72:65:27:13:8b:5e:f8:3d:3e:cb:ad:92:
bb:de:85:d7:3e:f9:10:74:28:d9:6d:e0:1e:85:66:ce:54:ce:
4d:8e:94:e7:f9:2e:c7:ef:dd:94:71:a0:81:27:53:a0:73:38:
db:cf:66:09:35:55:1e:ce:e8:46:17:c2:ad:91:d4:90:a9:97:
77:41:f6:75:38:bc:2c:3d:ad:76:e5:9e:c1:5f:f8:e6:5b:9e:
49:9b:87:48:a2:fe:7e:7b:cb:fa:dd:7b:99:36:43:72:cb:79:
31:b3:9d:8f:a3:b0:a7:49:4f:0d:47:a2:a7:66:db:bf:e5:7a:
c9:eb:ba:41:9f:ec:f7:79:9b:45:aa:e7:bb:2e:8a:82:51:fc:
f9:0f:63:42:3a:4f:8f:25:c4:af:b5:09:59:d7:9f:ee:e0:09:
0a:a6:99:13:99:8d:d4:39:fa:fa:87:66:51:a7:7c:f2:71:e7:
a1:6b:d6:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:03 2025 by rpki-client on console.sobornost.net