Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/22f570-0b26-4004-8ed0-d9509473072c/1/UmpHN1dTZ2hpLcnnZpWS2Jt3BIg.roa
File: UmpHN1dTZ2hpLcnnZpWS2Jt3BIg.roa (raw, json)
Hash identifier: PTvkuklKNLY3Mh0Z7gawtcDt9dMpbGsMOP+ydZCmFBk=
Subject key identifier: 52:6A:47:37:57:53:67:68:69:2D:C9:E7:66:95:92:D8:9B:77:04:88
Certificate issuer: /CN=3eb1788fe220e46434692d1cc437072d792d7888
Certificate serial: 019423D7447EA31FEED7A5FE5839D541D949
Authority key identifier: 3E:B1:78:8F:E2:20:E4:64:34:69:2D:1C:C4:37:07:2D:79:2D:78:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PrF4j-Ig5GQ0aS0cxDcHLXkteIg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/22f570-0b26-4004-8ed0-d9509473072c/1/UmpHN1dTZ2hpLcnnZpWS2Jt3BIg.roa
Signing time: Wed 01 Jan 2025 21:48:17 +0000
ROA not before: Wed 01 Jan 2025 21:48:17 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212674
IP address blocks: 2001:7f8:103::/64 maxlen: 64
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:44:7e:a3:1f:ee:d7:a5:fe:58:39:d5:41:d9:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3eb1788fe220e46434692d1cc437072d792d7888
Validity
Not Before: Jan 1 21:48:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=526a473757536768692dc9e7669592d89b770488
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:7c:03:0a:60:5d:2b:4f:41:e0:8d:07:ae:dd:
90:f1:1e:49:1c:1a:f7:ed:dd:0a:a7:3f:e6:f4:b3:
3b:de:bc:fe:a7:a8:fe:79:44:dd:1e:6e:6b:43:9a:
c9:40:6a:73:7e:b8:63:ba:07:11:19:24:34:a1:55:
e7:d2:43:d3:44:82:ba:2d:17:5d:18:0b:7a:e6:63:
ff:54:cf:42:0a:6d:0f:9f:d7:b5:b4:3e:14:14:0f:
2c:da:4e:f8:fc:0b:4f:51:80:15:e5:56:dd:e4:f9:
b9:3d:ea:b3:21:f1:27:7f:62:64:06:08:c6:ae:54:
fe:b5:df:dd:c6:87:99:80:96:be:c9:8d:5e:5b:d4:
57:d0:ee:7a:48:60:01:66:b2:4c:47:40:a0:8b:75:
97:1b:32:9b:12:e3:ef:54:7e:fc:00:73:cf:f8:f0:
f9:58:a5:43:d7:22:43:23:2a:59:e5:4d:72:a2:cd:
77:c5:76:a1:01:47:7d:31:31:d1:6c:f1:3d:4e:64:
c5:e4:22:48:d1:16:31:f9:35:61:48:40:50:dd:18:
88:7c:c1:6b:b8:36:d5:ab:6c:b2:87:8c:69:47:a5:
7c:e1:1a:e2:be:4d:f2:b6:31:ae:19:4a:e8:12:81:
bc:6f:cd:f2:ca:2a:a8:cf:83:e9:0d:37:28:c0:e1:
af:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:6A:47:37:57:53:67:68:69:2D:C9:E7:66:95:92:D8:9B:77:04:88
X509v3 Authority Key Identifier:
keyid:3E:B1:78:8F:E2:20:E4:64:34:69:2D:1C:C4:37:07:2D:79:2D:78:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PrF4j-Ig5GQ0aS0cxDcHLXkteIg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/22f570-0b26-4004-8ed0-d9509473072c/1/UmpHN1dTZ2hpLcnnZpWS2Jt3BIg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/22f570-0b26-4004-8ed0-d9509473072c/1/PrF4j-Ig5GQ0aS0cxDcHLXkteIg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:7f8:103::/64
Signature Algorithm: sha256WithRSAEncryption
15:9b:da:70:95:17:f5:ba:03:9d:db:11:95:1b:5a:7f:22:4b:
58:2a:6b:fe:3e:81:ca:db:21:f8:bd:e7:91:db:7d:87:ff:91:
61:65:11:47:78:3f:9e:98:eb:a1:5c:46:18:b5:e3:e2:cc:5d:
93:8b:49:92:89:53:32:b5:1e:cc:19:28:73:9a:6f:0e:d0:63:
de:ce:3b:52:2d:1d:c8:aa:e4:a2:16:b8:d8:b0:13:f2:ff:db:
6b:0e:d3:54:d3:25:fc:97:83:92:7b:eb:d0:2e:4d:1e:58:79:
17:28:9f:d2:5c:18:17:40:10:5e:f0:4a:85:e0:4a:00:e0:20:
5d:cd:3e:76:ae:93:81:3f:fc:e2:c7:ba:14:a2:eb:3d:a1:a1:
b6:be:6d:b6:07:eb:9d:ba:1d:0d:81:e9:fd:9b:9d:1c:e6:b9:
53:08:76:20:5f:2a:45:6f:38:98:fc:09:13:6e:02:d2:b4:6a:
c9:b5:9c:ec:23:47:f2:e1:8a:b7:fe:a1:bf:db:6a:a1:fc:ba:
36:56:2a:03:61:34:91:ef:bb:26:d0:33:3f:53:46:cd:83:9a:
38:4d:32:8e:2a:76:72:22:e3:f7:4c:35:1a:14:23:e8:1d:a1:
9e:6e:a9:96:6b:39:8a:aa:18:96:73:15:50:f4:49:47:ae:d7:
d6:3f:eb:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:19 2025 by rpki-client on console.sobornost.net