Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/SRXAIUcWKyu2Reb7Irbk0TYxepI.roa
File: SRXAIUcWKyu2Reb7Irbk0TYxepI.roa (raw, json)
Hash identifier: E0GXjTAkXRd6+Ja609s7r1X1JSEGG2Y4RW/ka2FAUCc=
Subject key identifier: 49:15:C0:21:47:16:2B:2B:B6:45:E6:FB:22:B6:E4:D1:36:31:7A:92
Certificate issuer: /CN=5da3941c27cfe5c234c4bf221ecb2a579b2deaab
Certificate serial: 0194DC5E794058B2737EA03695B2744922AE
Authority key identifier: 5D:A3:94:1C:27:CF:E5:C2:34:C4:BF:22:1E:CB:2A:57:9B:2D:EA:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XaOUHCfP5cI0xL8iHssqV5st6qs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/SRXAIUcWKyu2Reb7Irbk0TYxepI.roa
Signing time: Thu 06 Feb 2025 17:46:06 +0000
ROA not before: Thu 06 Feb 2025 17:46:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 34665
IP address blocks: 2a0e:4bc2::/32 maxlen: 32
2a0e:5644::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:dc:5e:79:40:58:b2:73:7e:a0:36:95:b2:74:49:22:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5da3941c27cfe5c234c4bf221ecb2a579b2deaab
Validity
Not Before: Feb 6 17:46:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4915c02147162b2bb645e6fb22b6e4d136317a92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:7f:87:32:f4:9a:42:b3:03:f0:38:4b:9a:5b:
a7:2e:f0:44:24:e4:56:04:1c:22:c4:6a:2d:70:22:
55:cc:3c:eb:3e:af:93:da:d1:e9:12:0d:81:62:57:
19:08:92:8c:21:21:93:ee:26:f9:44:6c:8d:c3:6f:
71:68:28:e1:d9:31:0f:00:46:c6:01:85:d3:2b:16:
3f:4b:7e:ac:14:bc:4e:5e:8d:8b:11:9d:56:aa:7d:
e7:32:27:c8:19:1f:bb:47:c8:ba:ec:5c:0b:ca:5a:
cc:6f:ea:50:52:6b:ac:7b:d5:69:39:32:09:50:50:
08:0a:f9:b9:9d:61:51:5c:9f:7d:0d:3d:9c:70:db:
bb:3b:16:31:07:28:11:b1:6b:10:29:a2:5f:0d:15:
b0:71:62:9c:f6:ea:78:26:f5:54:1f:59:7e:12:f7:
e7:a8:54:06:7e:83:0a:1b:d0:00:e3:70:97:04:5c:
c5:5c:80:19:91:db:21:22:c1:29:e1:a3:e5:1d:a5:
94:7e:0d:4a:9c:ee:5b:3c:d7:08:f3:1a:10:07:5c:
fa:9a:8d:a7:bb:00:9f:ec:46:2b:91:1d:42:93:90:
fd:90:f8:5d:0a:68:c1:a9:38:99:02:7f:70:5c:32:
52:4c:3f:d5:73:45:35:45:c6:ad:99:a7:67:1c:76:
0f:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:15:C0:21:47:16:2B:2B:B6:45:E6:FB:22:B6:E4:D1:36:31:7A:92
X509v3 Authority Key Identifier:
keyid:5D:A3:94:1C:27:CF:E5:C2:34:C4:BF:22:1E:CB:2A:57:9B:2D:EA:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XaOUHCfP5cI0xL8iHssqV5st6qs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/SRXAIUcWKyu2Reb7Irbk0TYxepI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/XaOUHCfP5cI0xL8iHssqV5st6qs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:4bc2::/32
2a0e:5644::/32
Signature Algorithm: sha256WithRSAEncryption
84:60:ac:77:9d:81:12:fe:5a:f4:33:cb:df:02:b8:ae:ec:e4:
2a:25:d5:9e:88:40:9b:e7:22:a2:49:b6:6f:76:51:f3:98:19:
8e:52:04:86:e3:f1:71:bc:ee:dc:a6:55:c7:6b:f6:af:9d:e6:
88:04:6b:0b:ac:0b:6f:1c:7b:d3:a5:a8:0b:7f:00:06:cd:a4:
fe:37:ee:f9:e4:0f:bf:fd:34:a2:9f:7a:b0:82:c8:3d:73:a4:
ce:53:ed:77:d3:a4:e6:86:8f:3b:aa:2d:de:24:8a:b8:bc:87:
b1:6c:36:fc:ab:14:2a:68:59:7d:69:b1:f4:07:77:34:24:fe:
df:71:d2:c3:65:7f:d4:38:3d:ef:3e:fd:05:cf:f6:d5:cd:0f:
e7:27:f0:ff:3a:d6:37:55:50:1b:08:c0:51:25:fb:35:e0:60:
0b:5e:04:35:8d:3e:0f:08:64:cf:b0:bf:b3:4d:b8:da:32:a3:
18:f8:6b:4d:da:bb:b6:3b:fd:f9:08:c4:d6:80:6d:ba:03:29:
e8:c9:dd:2d:a5:82:41:b7:f7:e1:b7:7b:8d:bc:68:43:4b:3a:
5d:1b:56:7c:b2:01:44:82:20:94:a6:72:89:93:9a:f2:17:cd:
9a:bb:39:c6:94:d2:44:5f:32:bb:9e:49:57:82:fa:e6:8b:b5:
1b:b3:16:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 8 04:50:48 2025 by rpki-client on console.sobornost.net