Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/xgJFjaLiTqyrTAWyq4f18Pg7amk.roa
File: xgJFjaLiTqyrTAWyq4f18Pg7amk.roa (raw, json)
Hash identifier: 2iBDAhKAGL78CKGIrACCnUM4WIuzKixnPTq74lNq4V0=
Subject key identifier: C6:02:45:8D:A2:E2:4E:AC:AB:4C:05:B2:AB:87:F5:F0:F8:3B:6A:69
Certificate issuer: /CN=adac830ccaa74783dd961fab241a228d7cc6f808
Certificate serial: 019428231614D878B251BD0335EA72CE8854
Authority key identifier: AD:AC:83:0C:CA:A7:47:83:DD:96:1F:AB:24:1A:22:8D:7C:C6:F8:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/xgJFjaLiTqyrTAWyq4f18Pg7amk.roa
Signing time: Thu 02 Jan 2025 17:49:35 +0000
ROA not before: Thu 02 Jan 2025 17:49:35 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 8485
IP address blocks: 2a02:e840:1002::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:23:16:14:d8:78:b2:51:bd:03:35:ea:72:ce:88:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adac830ccaa74783dd961fab241a228d7cc6f808
Validity
Not Before: Jan 2 17:49:35 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c602458da2e24eacab4c05b2ab87f5f0f83b6a69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:6f:a2:27:62:61:39:e2:74:f2:dd:21:96:16:
31:1f:33:15:5a:1a:1a:28:03:80:89:b0:a8:7e:64:
c4:ba:cd:9b:6e:cd:98:65:4a:a0:20:1b:d8:e9:ff:
c0:5e:25:e6:ed:47:ef:49:86:b3:f8:da:95:d8:1c:
4a:09:5b:3f:60:5b:ff:60:f7:8a:11:1d:f2:6f:d5:
c1:2a:98:47:47:d4:78:39:20:36:c9:f1:8d:df:98:
36:7b:06:8f:46:e6:8f:d7:1b:d6:79:ce:c5:35:1f:
5f:a1:d9:a5:b9:c4:85:66:05:a9:82:a4:0c:58:25:
96:d4:f4:ae:7e:6f:5e:7d:a6:63:d4:5d:b1:65:b7:
d0:75:52:d3:e2:4b:ec:11:50:d5:e3:37:dc:54:e7:
79:a7:66:da:75:ef:63:5f:99:c6:1b:b9:8d:85:c0:
5a:13:4d:24:f8:83:e5:9d:a4:33:7a:da:34:a0:c6:
0d:79:e3:02:07:1b:15:b6:92:e3:42:09:90:25:75:
a8:d2:58:86:9b:d4:89:75:b6:a4:94:93:54:59:98:
93:db:12:ae:54:94:b5:26:d0:63:0f:02:b1:46:34:
f7:05:a0:d7:c3:20:6f:40:21:ee:6b:69:1e:3d:bd:
a0:10:42:cc:ba:d1:bd:93:22:77:10:14:34:bf:a8:
b7:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:02:45:8D:A2:E2:4E:AC:AB:4C:05:B2:AB:87:F5:F0:F8:3B:6A:69
X509v3 Authority Key Identifier:
keyid:AD:AC:83:0C:CA:A7:47:83:DD:96:1F:AB:24:1A:22:8D:7C:C6:F8:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/xgJFjaLiTqyrTAWyq4f18Pg7amk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/rayDDMqnR4Pdlh-rJBoijXzG-Ag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:e840:1002::/48
Signature Algorithm: sha256WithRSAEncryption
13:95:40:80:89:ff:12:cf:3e:dd:cc:f0:a4:7a:61:97:ed:dc:
17:15:7e:96:e5:2f:55:d8:08:80:d4:27:58:38:21:ba:2e:0f:
93:c4:74:f2:25:48:98:e7:1e:cf:1a:c5:8c:8a:ff:74:83:0a:
bb:2c:51:54:46:f0:fe:5b:47:ac:49:5d:4c:ac:af:0f:67:ab:
95:30:ec:60:bf:52:7f:14:38:eb:a5:94:60:60:6e:7c:68:d2:
8b:6c:bc:8f:1d:e9:aa:cd:9d:89:3b:b1:6a:ee:9f:69:76:d2:
8a:61:92:5b:8e:12:5c:ba:11:b9:a6:a6:11:44:21:36:b9:12:
80:a5:bf:9f:1e:57:2a:c4:e4:46:d2:c8:0b:d3:e2:fb:e3:33:
c0:ac:a6:77:24:2b:e6:39:87:33:6b:49:11:57:e6:e5:e0:51:
50:91:e7:96:3c:60:1e:55:f8:c9:69:a5:ab:38:0a:06:ba:e9:
a7:35:b1:f0:0a:5f:52:2b:c3:67:ea:bf:ca:5d:67:07:4c:d0:
8e:ca:c1:df:7c:13:21:e6:25:66:0d:90:fa:a5:25:7c:bc:9e:
30:74:eb:df:08:fc:57:78:b0:b6:b1:3a:2e:3e:6c:2b:92:ee:
ce:4f:9d:7d:8e:6f:19:3f:2f:f8:68:55:72:4d:9a:c0:61:5e:
5e:db:b9:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:11 2025 by rpki-client on console.sobornost.net