Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/D3prKnhrJUs7lzKgFmC--FYzhJg.roa
File: D3prKnhrJUs7lzKgFmC--FYzhJg.roa (raw, json)
Hash identifier: jpEGn/gnoLqqzUknjMEsPeLMCEjIvZmc7yXSColOwx0=
Subject key identifier: 0F:7A:6B:2A:78:6B:25:4B:3B:97:32:A0:16:60:BE:F8:56:33:84:98
Certificate issuer: /CN=798f7b1fd802b3dc6abd7a5cda786a6311e1d63d
Certificate serial: 01942067E8373B007FCF2DE231FEBD3CA3B2
Authority key identifier: 79:8F:7B:1F:D8:02:B3:DC:6A:BD:7A:5C:DA:78:6A:63:11:E1:D6:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eY97H9gCs9xqvXpc2nhqYxHh1j0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/D3prKnhrJUs7lzKgFmC--FYzhJg.roa
Signing time: Wed 01 Jan 2025 05:47:48 +0000
ROA not before: Wed 01 Jan 2025 05:47:48 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 200895
IP address blocks: 2a12:3fc2:e100::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:67:e8:37:3b:00:7f:cf:2d:e2:31:fe:bd:3c:a3:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=798f7b1fd802b3dc6abd7a5cda786a6311e1d63d
Validity
Not Before: Jan 1 05:47:48 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0f7a6b2a786b254b3b9732a01660bef856338498
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:67:ac:eb:e0:7c:5d:e7:c4:a7:bc:4b:f7:9d:
8a:36:d2:aa:e9:42:ea:7d:21:d1:19:4d:cb:78:79:
53:9d:6f:d4:59:18:36:ec:fc:84:ae:f1:b8:c3:00:
a2:f3:8c:e5:ee:35:40:bc:59:88:39:12:ed:39:1c:
91:64:9a:53:44:a8:87:c1:ef:7d:fe:62:ab:fe:dc:
87:1b:56:4a:08:f2:69:25:dc:0b:52:3d:c0:f1:73:
b5:bc:6e:4e:cd:5a:fe:c9:dc:22:d1:8d:cf:1d:a2:
16:37:1d:8e:f5:0c:f8:9e:3f:e6:4f:38:6c:25:ed:
ff:5f:84:7a:5d:a6:4d:c0:d7:87:86:07:d3:1d:d4:
ce:23:0d:e6:2c:5d:de:b2:61:8f:ad:6a:d5:e7:80:
2f:38:11:2f:23:7c:cd:f3:1e:28:53:61:42:95:93:
93:95:e7:cb:60:73:2d:a0:85:94:ec:1f:ed:7d:62:
ae:66:28:1e:ee:33:a1:4c:51:dd:78:91:2e:e8:26:
81:b9:d2:e5:bb:0e:e5:50:f9:91:62:f6:d4:f7:ac:
a6:ba:70:7b:fb:d2:87:3e:18:ab:44:37:60:f0:36:
0a:7c:c1:f1:6a:63:b9:f4:29:0a:83:e5:9d:6f:d7:
57:68:28:f5:6f:c2:ca:25:3a:ce:10:64:bf:5a:cb:
d3:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:7A:6B:2A:78:6B:25:4B:3B:97:32:A0:16:60:BE:F8:56:33:84:98
X509v3 Authority Key Identifier:
keyid:79:8F:7B:1F:D8:02:B3:DC:6A:BD:7A:5C:DA:78:6A:63:11:E1:D6:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eY97H9gCs9xqvXpc2nhqYxHh1j0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/D3prKnhrJUs7lzKgFmC--FYzhJg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/30883a-16d7-4212-9199-09d0aa28e551/1/eY97H9gCs9xqvXpc2nhqYxHh1j0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:3fc2:e100::/40
Signature Algorithm: sha256WithRSAEncryption
62:04:56:86:2c:a0:fb:31:1d:f8:d8:19:ab:28:45:d8:40:69:
f7:ca:dc:e0:c8:12:16:4e:bb:fd:f2:7f:9a:6d:af:8e:dd:76:
5e:87:9d:14:55:27:14:9f:55:42:2d:f5:8e:a4:7b:6f:be:58:
c0:62:3b:17:57:71:25:7b:9c:3f:18:b0:dd:7d:2b:e4:b3:2d:
fc:53:fc:33:94:9e:bc:30:bf:34:24:65:d2:5c:73:8e:18:bb:
a3:98:7f:2a:e7:1f:4a:46:a6:69:ff:34:bb:48:3f:ee:d7:c2:
a3:fb:19:ab:0f:16:b9:f9:58:9c:30:bb:55:40:50:9e:6e:75:
51:da:2b:62:66:61:62:34:4d:48:0a:ae:fb:b0:e4:a2:38:3f:
a6:e6:fc:f5:d1:b2:0e:32:4e:35:f9:72:e5:b9:2f:ea:aa:b9:
ee:48:84:41:e5:82:62:6e:dd:aa:9a:fe:bc:96:da:f2:87:aa:
44:7a:a1:e4:84:b7:9e:77:91:70:7a:d3:21:e5:8a:29:53:ad:
1e:15:06:54:5b:df:4b:67:c0:a3:ac:15:da:b4:2c:2c:34:50:
c3:10:49:55:c8:34:d7:94:cc:d2:50:a8:a4:72:08:6b:38:7e:
a3:db:c4:86:6f:75:73:b6:fc:c2:c4:4d:40:d2:72:f9:4d:20:
51:35:c9:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 1 23:55:16 2025 by rpki-client on console.sobornost.net