Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/aPQYCUeYsRBPa33DJnUBrdIlI_U.roa
File: aPQYCUeYsRBPa33DJnUBrdIlI_U.roa (raw, json)
Hash identifier: 2SdjBKwohPOOObHb5zwUyT13bSd9FyUXl9LgJSxvAMY=
Subject key identifier: 68:F4:18:09:47:98:B1:10:4F:6B:7D:C3:26:75:01:AD:D2:25:23:F5
Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Certificate serial: 0194D4C1524202B4D49BFD21F39F734D09DF
Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/aPQYCUeYsRBPa33DJnUBrdIlI_U.roa
Signing time: Wed 05 Feb 2025 06:17:06 +0000
ROA not before: Wed 05 Feb 2025 06:17:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 198351
IP address blocks: 2a12:bec4:1020::/48 maxlen: 48
2a12:bec4:1021::/48 maxlen: 48
2a12:bec4:1022::/48 maxlen: 48
2a12:bec4:1023::/48 maxlen: 48
2a12:bec4:1024::/48 maxlen: 48
2a12:bec4:1025::/48 maxlen: 48
2a12:bec4:1026::/48 maxlen: 48
2a12:bec4:1027::/48 maxlen: 48
2a12:bec4:1028::/48 maxlen: 48
2a12:bec4:1029::/48 maxlen: 48
2a12:bec4:102a::/48 maxlen: 48
2a12:bec4:102b::/48 maxlen: 48
2a12:bec4:102c::/48 maxlen: 48
2a12:bec4:102d::/48 maxlen: 48
2a12:bec4:102e::/48 maxlen: 48
2a12:bec4:102f::/48 maxlen: 48
2a12:bec4:17a0::/48 maxlen: 48
2a12:bec4:17a1::/48 maxlen: 48
2a12:bec4:17a2::/48 maxlen: 48
2a12:bec4:17a3::/48 maxlen: 48
2a12:bec4:17a4::/48 maxlen: 48
2a12:bec4:17a5::/48 maxlen: 48
2a12:bec4:17a6::/48 maxlen: 48
2a12:bec4:17a7::/48 maxlen: 48
2a12:bec4:17a8::/48 maxlen: 48
2a12:bec4:17a9::/48 maxlen: 48
2a12:bec4:17aa::/48 maxlen: 48
2a12:bec4:17ab::/48 maxlen: 48
2a12:bec4:17ac::/48 maxlen: 48
2a12:bec4:17ad::/48 maxlen: 48
2a12:bec4:17ae::/48 maxlen: 48
2a12:bec4:17af::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:d4:c1:52:42:02:b4:d4:9b:fd:21:f3:9f:73:4d:09:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Validity
Not Before: Feb 5 06:17:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=68f418094798b1104f6b7dc3267501add22523f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:61:2d:d6:81:f1:ec:32:2e:d2:aa:2a:ce:54:
aa:fe:1a:50:73:14:5b:cc:f0:8f:e3:11:d7:b0:fa:
07:ff:81:d2:cd:8e:0b:97:22:da:c9:82:3f:6b:a9:
a6:0b:ae:af:55:78:e8:68:91:57:36:ab:95:55:03:
3c:72:85:8c:74:c9:ea:cb:92:f4:1f:ef:bb:b9:7c:
9a:2e:92:ca:08:9b:e2:69:0e:0d:d2:37:65:03:c4:
31:fb:89:dd:de:9f:f5:ee:b0:d7:f7:7d:86:e1:69:
36:8e:6c:cf:23:ec:70:42:74:38:dd:6a:bb:51:cc:
e0:c5:bc:bd:ab:e0:8c:f8:53:88:a3:04:20:5b:e7:
2c:45:bf:9a:58:e8:70:da:04:21:db:3d:0e:64:24:
b0:aa:ee:89:99:82:db:e6:d3:93:5a:57:f0:9a:32:
43:e4:12:9d:3e:85:fe:f4:a2:7d:39:87:38:e1:d0:
5b:c4:e5:49:a4:ad:68:cf:fc:0d:92:af:c7:c8:ac:
26:73:6d:d4:d4:03:a0:87:7e:4f:25:1e:2e:62:bb:
a7:e8:ca:60:46:18:1f:1d:08:b8:af:3b:8e:d1:ae:
ae:ab:d0:a5:43:fa:53:60:7a:cb:47:8a:5c:1f:8f:
1d:32:1d:80:11:f8:81:74:8d:99:f6:3f:85:c2:ab:
68:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:F4:18:09:47:98:B1:10:4F:6B:7D:C3:26:75:01:AD:D2:25:23:F5
X509v3 Authority Key Identifier:
keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/aPQYCUeYsRBPa33DJnUBrdIlI_U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:bec4:1020::/44
2a12:bec4:17a0::/44
Signature Algorithm: sha256WithRSAEncryption
65:1a:fa:15:2f:9c:17:18:c5:10:3d:31:d9:51:df:25:63:50:
c6:c1:53:d3:7c:73:f3:64:19:e5:d2:65:65:e2:f3:82:f2:8f:
ca:61:06:48:fe:28:e8:69:51:13:68:8f:bc:e7:b6:21:55:a4:
cd:c7:31:4c:2b:d2:1e:bd:58:ac:ca:93:23:01:41:99:e8:e0:
5f:96:cd:e8:26:85:d3:87:2f:78:cf:41:3d:6e:ab:b1:60:a6:
5a:94:5f:8b:10:e3:e7:c3:12:ec:d2:aa:21:7f:54:bd:72:d1:
60:99:30:a3:82:1d:7d:5c:6b:54:47:e1:46:0f:22:a1:68:2d:
97:27:0f:9e:c1:ae:b6:3c:e6:af:42:22:e7:d1:58:9b:ff:39:
97:8e:e4:c2:bf:32:7f:23:e7:45:6a:11:77:5e:23:db:d6:b1:
c4:8b:2f:bf:a8:58:1a:6d:9a:47:94:f7:f9:57:5c:af:d0:51:
08:ba:38:65:3b:d1:74:c3:7c:28:1c:85:e1:09:7d:5b:ae:0b:
e9:eb:51:fb:f0:d7:29:48:bd:60:80:41:92:df:e0:7e:9a:a3:
06:79:c9:26:22:ae:3a:27:e7:3e:7e:f2:60:45:92:10:78:35:
cb:56:e3:26:59:02:46:b0:20:a2:28:41:59:4a:f9:5c:62:ce:
f0:2e:a4:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:14 2025 by rpki-client on console.sobornost.net