Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/d3f65d-afab-4d28-b46e-620a79cf792b/1/hsQv-_pPjXxEs3KS3Yli7KkGY8s.roa
File: hsQv-_pPjXxEs3KS3Yli7KkGY8s.roa (raw, json)
Hash identifier: hNWKluVfWlyL1Lj4BF60xi3YP+tHJFMq6o5hVtlALzw=
Subject key identifier: 86:C4:2F:FB:FA:4F:8D:7C:44:B3:72:92:DD:89:62:EC:A9:06:63:CB
Certificate issuer: /CN=dbd4f8e4762377f86b07a8753f6e98f6f4b6b792
Certificate serial: 0194258F561ED01264EB2489086477E33CC0
Authority key identifier: DB:D4:F8:E4:76:23:77:F8:6B:07:A8:75:3F:6E:98:F6:F4:B6:B7:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/29T45HYjd_hrB6h1P26Y9vS2t5I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/d3f65d-afab-4d28-b46e-620a79cf792b/1/hsQv-_pPjXxEs3KS3Yli7KkGY8s.roa
Signing time: Thu 02 Jan 2025 05:48:58 +0000
ROA not before: Thu 02 Jan 2025 05:48:58 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 8881
IP address blocks: 2a02:45c0:6::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:56:1e:d0:12:64:eb:24:89:08:64:77:e3:3c:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbd4f8e4762377f86b07a8753f6e98f6f4b6b792
Validity
Not Before: Jan 2 05:48:58 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=86c42ffbfa4f8d7c44b37292dd8962eca90663cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:af:a5:c0:8a:50:66:95:54:05:9a:04:99:7a:
2d:58:f8:d5:39:f3:e4:0f:d8:6c:38:58:4f:b9:a3:
d2:a6:56:e9:a6:c7:c0:31:d1:c2:6f:05:61:3c:67:
88:b7:d6:7a:d4:56:ab:3c:cc:1c:fd:1e:59:f2:d9:
28:42:26:e2:61:57:0e:7f:1f:07:07:3c:7c:5c:c4:
0c:b2:05:fe:83:46:df:c7:da:57:cc:0e:f3:ca:fb:
e8:63:08:48:8d:66:4b:b7:31:8b:67:63:d5:4e:13:
e8:63:dc:63:79:4e:a2:36:09:fd:5f:69:96:44:13:
55:6b:e4:d0:37:f4:89:00:cf:0f:70:28:33:36:2a:
ab:86:a5:d4:ce:18:45:3c:e0:9a:bf:6a:d3:7e:3d:
df:af:fd:91:27:35:02:be:b7:87:a3:8d:4f:5a:0b:
e8:e6:60:2a:d7:0b:d5:91:d7:6e:bd:58:da:42:ed:
2e:ca:3b:0b:14:10:33:3d:2c:ae:e0:0f:a5:b2:af:
8a:1a:65:97:ed:ed:0c:ba:a1:fe:2d:e3:0c:b5:61:
f0:90:0e:9b:4d:98:48:f0:62:73:6d:30:30:e5:7b:
f3:02:0c:ea:17:1e:e5:88:bd:4d:80:4c:79:75:4a:
b0:3d:40:62:a6:f0:6b:d1:ed:5b:0b:04:59:f3:e3:
71:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:C4:2F:FB:FA:4F:8D:7C:44:B3:72:92:DD:89:62:EC:A9:06:63:CB
X509v3 Authority Key Identifier:
keyid:DB:D4:F8:E4:76:23:77:F8:6B:07:A8:75:3F:6E:98:F6:F4:B6:B7:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/29T45HYjd_hrB6h1P26Y9vS2t5I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/d3f65d-afab-4d28-b46e-620a79cf792b/1/hsQv-_pPjXxEs3KS3Yli7KkGY8s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/d3f65d-afab-4d28-b46e-620a79cf792b/1/29T45HYjd_hrB6h1P26Y9vS2t5I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:45c0:6::/48
Signature Algorithm: sha256WithRSAEncryption
c1:15:79:7f:74:86:9e:97:8e:7c:22:40:9e:36:dc:98:09:c4:
6e:f5:58:d9:d7:d7:ab:b5:02:ff:ba:c5:11:ab:f2:ca:a4:89:
33:92:86:a1:14:e8:e7:79:92:c7:33:e2:6b:43:c2:e7:b7:b8:
69:40:5f:8f:5e:8d:ad:11:c5:dc:a6:16:c5:f2:e0:58:95:19:
15:cc:8b:29:24:7c:26:8f:ae:b4:f1:d2:ab:e9:96:29:be:5e:
aa:82:bf:d0:eb:22:35:8f:13:b1:78:2b:6e:4f:51:0e:12:d6:
f6:e9:f4:8b:7e:c7:bc:dd:53:c7:34:76:a8:be:3d:b8:17:95:
26:95:80:38:77:f7:2c:ff:2a:53:88:ee:a0:b3:0d:35:57:1c:
b8:53:e3:dc:2e:03:e0:b6:e6:0b:6d:bc:ec:78:37:36:8c:f6:
bc:3a:54:d4:7d:6a:19:82:2c:d6:ae:e7:75:8b:6a:38:98:0f:
b4:b9:e4:6d:3e:0f:77:c6:39:45:bd:ea:48:9b:e6:17:2a:4c:
81:70:ff:63:98:b2:e4:81:9f:8e:b2:a0:af:8f:10:b7:ba:f0:
af:50:e9:00:a8:cc:4c:1e:d4:8f:47:da:f5:7e:c9:16:f6:a2:
b4:9c:d4:81:71:cf:c1:e7:29:cc:27:d8:06:33:c4:44:f5:37:
60:ee:84:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:14 2025 by rpki-client on console.sobornost.net