Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/dda412-4545-48a6-bde2-9a37c6069bc1/1/XMzMrB_8MPuaKVcXQLSpfY45uHg.roa
File: XMzMrB_8MPuaKVcXQLSpfY45uHg.roa (raw, json)
Hash identifier: Kg28zSoDTugIChfPSBvRhPy84bB18/D8eH/rgKbNXTo=
Subject key identifier: 5C:CC:CC:AC:1F:FC:30:FB:9A:29:57:17:40:B4:A9:7D:8E:39:B8:78
Certificate issuer: /CN=0325034258f275b7c87e5f4f70706c0cf588efc3
Certificate serial: 019420681214C39030895FA4B8C273F49284
Authority key identifier: 03:25:03:42:58:F2:75:B7:C8:7E:5F:4F:70:70:6C:0C:F5:88:EF:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AyUDQljydbfIfl9PcHBsDPWI78M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/dda412-4545-48a6-bde2-9a37c6069bc1/1/XMzMrB_8MPuaKVcXQLSpfY45uHg.roa
Signing time: Wed 01 Jan 2025 05:47:58 +0000
ROA not before: Wed 01 Jan 2025 05:47:58 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215369
IP address blocks: 2a10:18c4::/30 maxlen: 30
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:68:12:14:c3:90:30:89:5f:a4:b8:c2:73:f4:92:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0325034258f275b7c87e5f4f70706c0cf588efc3
Validity
Not Before: Jan 1 05:47:58 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5cccccac1ffc30fb9a29571740b4a97d8e39b878
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:9b:63:66:15:e5:01:bc:8e:38:09:2c:d7:f8:
f5:4d:06:c1:3a:61:d0:e5:ea:94:d1:40:23:a6:5e:
72:42:14:92:6d:30:d5:24:cf:b7:d4:11:33:87:af:
78:82:ec:3e:b4:f4:61:85:1d:8a:97:3b:35:7b:ba:
3d:56:1f:76:ea:00:ab:fd:a7:91:5e:07:8d:08:d4:
c3:a9:1c:20:ba:dc:d4:a0:df:c6:56:5a:31:0b:65:
6b:9b:95:6c:e1:2f:19:d2:f7:59:aa:55:64:b6:12:
49:08:13:36:13:76:48:6c:4b:96:ba:51:19:f8:b9:
f4:18:1e:20:ed:7e:ab:fd:56:27:b1:97:3e:50:e8:
3b:21:22:12:fb:22:b1:f2:14:72:bb:ef:69:48:cf:
0e:6e:16:d5:d9:bf:04:65:71:08:0f:05:92:98:e7:
a3:30:e0:4e:7d:0b:1b:4d:59:21:35:4f:a5:d7:ac:
8d:c5:2d:a6:a7:20:91:f8:e7:e0:45:af:4c:e2:23:
ad:e5:01:28:20:df:33:74:50:d8:9d:f8:84:a2:f1:
24:f6:64:3a:c3:40:26:b4:2b:81:0d:10:52:2e:22:
5c:c9:da:45:71:9e:61:1d:1e:84:40:1a:c2:26:ab:
52:b4:c0:22:bd:8d:d2:19:89:e9:64:15:8a:ee:52:
70:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:CC:CC:AC:1F:FC:30:FB:9A:29:57:17:40:B4:A9:7D:8E:39:B8:78
X509v3 Authority Key Identifier:
keyid:03:25:03:42:58:F2:75:B7:C8:7E:5F:4F:70:70:6C:0C:F5:88:EF:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AyUDQljydbfIfl9PcHBsDPWI78M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/dda412-4545-48a6-bde2-9a37c6069bc1/1/XMzMrB_8MPuaKVcXQLSpfY45uHg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/dda412-4545-48a6-bde2-9a37c6069bc1/1/AyUDQljydbfIfl9PcHBsDPWI78M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:18c4::/30
Signature Algorithm: sha256WithRSAEncryption
36:11:e0:4a:9b:d8:c6:87:3b:3b:e1:bd:c1:e1:73:e9:82:1e:
76:85:df:61:27:fb:0e:3d:46:78:44:07:3b:3d:6b:3d:ea:f2:
d1:7f:7b:4b:99:fb:83:ed:35:56:5f:61:83:e0:ee:4c:b7:00:
26:1f:d1:23:70:59:31:5c:ec:53:1a:35:1c:0f:07:b1:49:d2:
6a:64:5f:84:92:d4:7b:74:48:a1:65:a8:bb:f4:20:9a:de:66:
39:28:4e:f1:ad:20:f4:a6:a5:a0:c4:d5:e7:5d:2d:3b:03:31:
5a:63:47:ad:81:8d:cd:0c:cc:c9:cd:9c:83:23:4d:51:aa:0b:
6e:7a:ba:67:d1:c8:d4:3d:bb:79:ed:bc:1b:c8:aa:e4:05:c3:
d8:f1:63:9b:47:b4:53:bd:98:ec:25:bf:3f:66:7c:6e:76:e4:
3c:e1:94:d2:72:0a:73:de:c5:c9:ce:0f:0a:93:f3:05:b4:5e:
b8:0f:26:4e:7f:54:25:d6:d2:2d:94:a0:22:05:58:d2:e2:20:
b5:18:fb:88:90:9c:b3:8d:d3:65:8a:b5:95:e5:b2:12:f8:55:
ab:e7:d1:3f:f4:c0:15:93:39:f2:a6:42:67:b0:09:c2:d2:9d:
14:a5:15:73:ed:1e:fa:be:0d:d4:0a:b4:6f:46:5c:c2:e2:b6:
54:f9:bf:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:11 2025 by rpki-client on console.sobornost.net