Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/30e582-4448-4952-94a0-30ff2c83f001/1/_XmPllT7ofYCPa4yLDSVV52Pl3k.roa
File: _XmPllT7ofYCPa4yLDSVV52Pl3k.roa (raw, json)
Hash identifier: bV+K4k+usRA15bCwnB7mW9jVhJg2loiLSbzbXFY6zLY=
Subject key identifier: FD:79:8F:96:54:FB:A1:F6:02:3D:AE:32:2C:34:95:57:9D:8F:97:79
Certificate issuer: /CN=55fad96dd05af8c2d26192c841131f2f97459fed
Certificate serial: 0194266A29056281CC52DC7229EC83E484B0
Authority key identifier: 55:FA:D9:6D:D0:5A:F8:C2:D2:61:92:C8:41:13:1F:2F:97:45:9F:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VfrZbdBa-MLSYZLIQRMfL5dFn-0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/30e582-4448-4952-94a0-30ff2c83f001/1/_XmPllT7ofYCPa4yLDSVV52Pl3k.roa
Signing time: Thu 02 Jan 2025 09:47:58 +0000
ROA not before: Thu 02 Jan 2025 09:47:58 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43312
IP address blocks: 2a0e:3304::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6a:29:05:62:81:cc:52:dc:72:29:ec:83:e4:84:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=55fad96dd05af8c2d26192c841131f2f97459fed
Validity
Not Before: Jan 2 09:47:58 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=fd798f9654fba1f6023dae322c3495579d8f9779
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:4d:b1:a7:b7:89:a1:fd:ec:f2:73:df:e9:24:
07:59:c7:41:d9:a4:31:9d:03:3e:e0:d5:8b:f0:a7:
23:2e:11:72:9b:d9:3c:bc:53:3d:f7:af:a9:b9:37:
38:32:bb:66:21:f9:ed:b2:90:a7:7c:df:47:b6:7c:
9a:fb:80:67:ad:89:ee:b6:b1:30:02:19:4f:9d:c8:
5c:11:fc:b0:84:0c:26:cd:49:8a:ab:a1:ac:d9:36:
7c:f0:7a:3e:3a:3c:e9:3c:b0:6e:1b:2b:b9:f0:63:
db:41:4b:26:7b:5d:64:ff:ed:2e:d4:3b:84:aa:9f:
d5:d6:60:fc:d6:92:24:68:44:49:85:dc:d7:f2:13:
e4:1c:08:0f:f6:2c:f1:2d:82:5a:5a:56:d6:f5:aa:
40:c9:1a:d5:dd:c1:74:ad:c5:25:9b:43:1f:53:e8:
b7:fa:e1:f1:d9:b4:2e:9b:4f:b3:2c:aa:bd:1c:41:
8b:b1:54:74:16:e9:c8:7a:d4:f0:10:6e:4f:93:45:
86:73:14:b5:78:f5:7b:38:33:9c:3b:1d:76:0a:78:
19:ba:1c:ae:21:7c:9e:d5:52:bb:27:6e:2b:2a:78:
bd:c7:d6:0e:a3:a3:8c:fc:9e:63:f0:a1:4c:5c:6a:
4e:50:a7:44:a1:37:6c:7f:e2:35:ec:88:c6:ba:e4:
69:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:79:8F:96:54:FB:A1:F6:02:3D:AE:32:2C:34:95:57:9D:8F:97:79
X509v3 Authority Key Identifier:
keyid:55:FA:D9:6D:D0:5A:F8:C2:D2:61:92:C8:41:13:1F:2F:97:45:9F:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VfrZbdBa-MLSYZLIQRMfL5dFn-0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/30e582-4448-4952-94a0-30ff2c83f001/1/_XmPllT7ofYCPa4yLDSVV52Pl3k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/30e582-4448-4952-94a0-30ff2c83f001/1/VfrZbdBa-MLSYZLIQRMfL5dFn-0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:3304::/32
Signature Algorithm: sha256WithRSAEncryption
96:7e:15:87:d2:31:cc:d1:3b:0f:3b:c4:b4:7a:c0:13:3c:46:
f9:d6:c2:f9:2c:1a:d2:fd:be:45:d5:ed:06:b6:0a:48:85:fe:
70:81:f0:05:13:d9:77:47:e8:b8:f9:30:af:16:15:65:45:e2:
90:49:14:c4:82:45:ee:f4:fd:06:20:b8:04:ba:3c:51:73:df:
af:60:c7:30:25:24:a2:97:96:19:9a:2c:d3:ed:6e:9a:b6:49:
16:5b:1e:f4:5f:26:ad:f7:56:1b:20:e9:13:2c:ce:89:ad:07:
af:7e:3b:2c:a3:c7:38:ef:34:15:d9:59:d2:96:7a:52:30:b1:
41:51:7c:0c:e8:f3:87:5a:e7:b2:03:de:97:9c:a8:7b:07:ae:
b6:0d:eb:9c:7e:f0:c4:5a:82:93:44:c2:9c:04:6c:b5:13:75:
11:64:97:5b:c2:ec:db:a7:67:fd:42:d3:73:31:94:5c:c1:bd:
49:30:31:89:ee:5d:9b:ee:3f:71:c4:45:74:f2:84:a6:48:0f:
c3:a8:a9:61:23:c5:db:87:b7:67:66:ff:b9:22:6f:30:4b:e3:
b1:77:9d:3a:ed:d2:9b:a5:fb:aa:c5:39:ba:15:ed:4f:3d:13:
bc:39:e5:a3:ff:c5:63:0c:84:9b:bf:46:65:3a:73:e5:5d:7e:
2e:62:68:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:10 2025 by rpki-client on console.sobornost.net