Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/hICsXPtZPMFeh8oKKrc5TEuqrGs.roa
File: hICsXPtZPMFeh8oKKrc5TEuqrGs.roa (raw, json)
Hash identifier: Fxpn5Ii7dCIaGcgYh5Nr2HdtZASbqbweBcQCJxVSiOk=
Subject key identifier: 84:80:AC:5C:FB:59:3C:C1:5E:87:CA:0A:2A:B7:39:4C:4B:AA:AC:6B
Certificate issuer: /CN=56b98f83ccbda7c19f004151c98b57c59d268f54
Certificate serial: 0195AEADA3169AB437196DE35F3C04A7BD39
Authority key identifier: 56:B9:8F:83:CC:BD:A7:C1:9F:00:41:51:C9:8B:57:C5:9D:26:8F:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/hICsXPtZPMFeh8oKKrc5TEuqrGs.roa
Signing time: Wed 19 Mar 2025 13:52:49 +0000
ROA not before: Wed 19 Mar 2025 13:52:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 0
IP address blocks: 2a14:5840::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:ae:ad:a3:16:9a:b4:37:19:6d:e3:5f:3c:04:a7:bd:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56b98f83ccbda7c19f004151c98b57c59d268f54
Validity
Not Before: Mar 19 13:52:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8480ac5cfb593cc15e87ca0a2ab7394c4baaac6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:b4:15:e1:25:89:7a:68:c8:60:1c:26:af:c0:
64:a2:7a:21:40:9f:d8:3c:e5:3c:53:c9:b0:57:f5:
99:3f:ba:79:cf:d7:84:2f:5e:d8:73:ea:e6:0a:dc:
f6:ac:7c:e7:b2:1f:21:2c:6c:f6:75:28:6d:98:5c:
ac:c3:a7:cd:3a:7b:8c:e4:59:a6:2b:34:58:0e:55:
ec:00:d9:2d:de:e4:80:58:ad:2c:87:1e:26:d0:8c:
dc:5c:88:27:c9:38:f7:e8:19:d1:69:5d:8e:5e:d0:
0e:96:76:e0:ad:30:e3:ae:88:fe:39:2d:98:b1:da:
68:f7:06:4c:c9:e2:b9:fd:8a:d4:28:1f:4e:eb:e0:
59:c9:7f:4d:c6:91:35:fb:6c:ad:52:36:dd:9a:5e:
fb:80:8d:83:22:dc:8e:ae:20:63:36:56:b8:7a:b2:
7a:b7:a2:73:ef:c9:76:f3:27:78:4c:ad:80:73:7a:
1e:2c:f3:60:d3:1e:2f:08:9e:30:63:57:8a:be:b8:
07:0d:ec:da:b7:1b:be:5f:2e:05:bc:81:38:8c:9c:
63:28:fc:2e:09:97:fd:e9:27:2a:53:03:19:b5:a4:
1f:b9:1c:c8:08:7e:67:34:68:ca:c0:70:b2:a3:e5:
63:c4:11:c0:72:e3:c6:d0:0e:02:42:33:d3:51:0f:
39:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:80:AC:5C:FB:59:3C:C1:5E:87:CA:0A:2A:B7:39:4C:4B:AA:AC:6B
X509v3 Authority Key Identifier:
keyid:56:B9:8F:83:CC:BD:A7:C1:9F:00:41:51:C9:8B:57:C5:9D:26:8F:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/hICsXPtZPMFeh8oKKrc5TEuqrGs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:5840::/29
Signature Algorithm: sha256WithRSAEncryption
2a:45:f5:5b:d3:83:b6:0a:1f:f6:5b:43:b4:00:0e:7b:6d:8c:
93:1c:e3:95:2b:ab:9b:0a:f2:89:31:5d:02:05:06:b2:da:9b:
ca:d2:5e:85:1c:70:41:c0:5b:31:12:af:7f:98:52:64:57:20:
bf:ce:58:45:75:19:43:b3:63:92:7e:1f:9f:0b:b6:ef:07:dc:
44:b1:a9:98:dc:cb:17:76:ad:7b:6f:62:ff:53:f9:e7:04:9e:
22:d0:04:9a:fa:2d:99:01:5d:a3:30:01:e5:9f:1c:20:03:f4:
64:84:53:73:cb:18:2f:bb:21:21:8e:49:3f:57:db:47:19:f1:
f7:63:ff:36:51:cb:65:9f:7b:ac:5a:df:d6:84:10:0e:24:ed:
57:6b:04:2f:70:04:ca:4d:9f:11:1c:40:64:9a:56:07:5a:de:
93:d0:f2:d2:75:1d:2f:db:ed:04:95:d6:64:f4:32:f4:e1:3c:
b7:f9:77:af:42:23:b2:f4:0a:ce:e9:de:ae:31:77:cc:ae:51:
6c:c7:b9:da:8b:e2:f5:f4:00:72:98:0c:67:6f:89:79:1f:c9:
ec:d1:7c:2f:5e:b5:9d:79:ec:99:7c:3c:dc:5a:49:3e:ac:f4:
a2:e5:80:95:92:c1:aa:83:e3:06:84:a9:30:de:67:10:98:74:
84:55:35:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 25 22:14:02 2025 by rpki-client on console.sobornost.net