Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/28a68c-fb5e-4860-94b4-639780e939e5/1/lJDuBJQ2g-pa95d14zb3BmzZ6y0.roa
File: lJDuBJQ2g-pa95d14zb3BmzZ6y0.roa (raw, json)
Hash identifier: PkfDtleZ8MxNB+BT5gtlIpBNxKZcU3c8R+9W8avuRDQ=
Subject key identifier: 94:90:EE:04:94:36:83:EA:5A:F7:97:75:E3:36:F7:06:6C:D9:EB:2D
Certificate issuer: /CN=13ff23caba7e01f681e73dfab1743ff6478ddced
Certificate serial: 0194252132C10F734441C4EE4141443AB334
Authority key identifier: 13:FF:23:CA:BA:7E:01:F6:81:E7:3D:FA:B1:74:3F:F6:47:8D:DC:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E_8jyrp-AfaB5z36sXQ_9keN3O0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/28a68c-fb5e-4860-94b4-639780e939e5/1/lJDuBJQ2g-pa95d14zb3BmzZ6y0.roa
Signing time: Thu 02 Jan 2025 03:48:40 +0000
ROA not before: Thu 02 Jan 2025 03:48:40 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 13235
IP address blocks: 2a03:55e0::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:32:c1:0f:73:44:41:c4:ee:41:41:44:3a:b3:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=13ff23caba7e01f681e73dfab1743ff6478ddced
Validity
Not Before: Jan 2 03:48:40 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9490ee04943683ea5af79775e336f7066cd9eb2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:fa:c7:cc:13:b0:9c:74:7a:7a:e7:a1:67:69:
b0:72:85:97:20:0a:f0:1b:aa:20:70:74:16:ea:37:
6c:d4:46:90:4b:32:66:a6:50:4f:58:0c:31:a3:aa:
0e:ce:d8:8a:28:8e:82:72:86:e1:ae:f7:6c:60:d7:
c0:9b:03:3c:a0:ac:e1:d8:72:3f:33:b0:10:59:54:
9f:dc:b0:02:c7:dc:df:aa:3a:cc:b8:bd:de:d5:2c:
5a:fe:b8:dd:08:b4:82:8d:7c:d4:40:97:db:7f:93:
49:f5:8d:92:97:24:b9:b6:24:d8:11:87:46:7f:55:
95:a4:30:c3:1c:fa:be:6f:f0:55:b5:d0:d0:cf:91:
cf:1a:56:68:6c:55:4f:c9:fc:10:ec:20:e8:ea:0e:
78:11:b7:c6:fd:ad:fa:d4:b6:18:46:53:cf:c9:cd:
f4:89:f5:02:73:51:6a:b9:83:0a:f7:7d:97:94:49:
b5:a2:b5:17:90:f4:19:0d:6d:50:69:a8:14:95:ad:
3a:c4:62:b6:93:a7:50:23:74:3a:b6:eb:fc:a2:f4:
1c:fd:4b:4c:23:33:5e:46:cd:4c:e8:2a:2f:a6:86:
42:38:72:fa:b7:65:2a:bc:25:c2:86:03:fa:d0:ac:
4d:66:08:2f:0c:1f:cc:14:26:9d:ad:88:b2:e0:4d:
f1:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:90:EE:04:94:36:83:EA:5A:F7:97:75:E3:36:F7:06:6C:D9:EB:2D
X509v3 Authority Key Identifier:
keyid:13:FF:23:CA:BA:7E:01:F6:81:E7:3D:FA:B1:74:3F:F6:47:8D:DC:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E_8jyrp-AfaB5z36sXQ_9keN3O0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/28a68c-fb5e-4860-94b4-639780e939e5/1/lJDuBJQ2g-pa95d14zb3BmzZ6y0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/28a68c-fb5e-4860-94b4-639780e939e5/1/E_8jyrp-AfaB5z36sXQ_9keN3O0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:55e0::/32
Signature Algorithm: sha256WithRSAEncryption
06:66:d3:a7:a9:8b:df:b5:d8:59:65:43:ab:d9:4e:44:57:b5:
4d:fe:72:0b:15:eb:59:95:06:3e:01:5a:e0:c0:8e:56:08:ed:
46:2d:10:09:62:cf:0b:c8:b5:74:33:51:e7:e5:05:d8:3b:f0:
f6:a3:26:60:b0:33:29:84:d1:76:97:36:0d:8f:c2:9e:f8:89:
c2:db:cf:23:16:ba:76:75:da:fa:5b:a5:74:3b:a8:c0:6a:bc:
9d:ad:50:39:e5:1d:7e:ca:4b:df:b0:c6:80:33:41:0b:d3:79:
89:b3:b5:2d:25:d2:a0:81:a2:52:f8:46:15:51:de:d2:26:a8:
a0:36:5b:35:f7:66:7e:8a:79:91:9b:39:39:30:45:5c:e0:3b:
f6:54:43:e3:f4:99:ca:61:fe:91:cd:ff:fd:f0:82:fa:0e:57:
bf:69:5e:57:47:6d:48:29:17:62:6a:71:00:14:fe:f3:de:6d:
c8:7f:de:c4:9b:c7:1a:5a:9e:ef:0d:be:7c:49:13:ab:27:ec:
25:d8:b1:91:a1:3e:c9:52:e1:0f:39:8d:d2:c4:2e:47:6e:92:
a2:49:0a:e1:86:70:2c:04:9f:a5:fa:d9:35:ab:05:fa:be:0f:
b2:2a:f0:af:cb:57:1f:2a:f5:eb:31:84:aa:0c:b9:2d:38:d1:
53:47:0d:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:25 2025 by rpki-client on console.sobornost.net