Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/39b08d-eb01-43b0-b56c-273884b53c6e/1/A5e1ajK6VG8bsSgi6vHK9FVhkA0.roa
File: A5e1ajK6VG8bsSgi6vHK9FVhkA0.roa (raw, json)
Hash identifier: DwfexPS0q4iJHOaKGcYE+MnhBqtqidrsPJZ1x03qAag=
Subject key identifier: 03:97:B5:6A:32:BA:54:6F:1B:B1:28:22:EA:F1:CA:F4:55:61:90:0D
Certificate issuer: /CN=c334a35abfa82d549e490704d68bbe658005d63c
Certificate serial: 0194244497DD9F2EB44C5C89EF9BC30FF3E3
Authority key identifier: C3:34:A3:5A:BF:A8:2D:54:9E:49:07:04:D6:8B:BE:65:80:05:D6:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wzSjWr-oLVSeSQcE1ou-ZYAF1jw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/39b08d-eb01-43b0-b56c-273884b53c6e/1/A5e1ajK6VG8bsSgi6vHK9FVhkA0.roa
Signing time: Wed 01 Jan 2025 23:47:42 +0000
ROA not before: Wed 01 Jan 2025 23:47:42 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44980
IP address blocks: 2001:1a08:666::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:44:97:dd:9f:2e:b4:4c:5c:89:ef:9b:c3:0f:f3:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c334a35abfa82d549e490704d68bbe658005d63c
Validity
Not Before: Jan 1 23:47:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0397b56a32ba546f1bb12822eaf1caf45561900d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:a6:22:c5:7d:ef:fd:df:19:58:00:1e:7f:2f:
15:70:57:67:d1:24:69:b7:11:3e:aa:ce:4c:ef:c1:
7e:88:22:81:6a:5a:1d:fe:ba:e6:92:28:d9:69:e6:
58:0b:49:cb:c5:17:ff:bd:29:8d:a0:91:b3:3d:69:
d1:af:99:80:25:ea:f4:bc:cf:45:5d:48:a1:99:5f:
90:02:f3:c6:13:b7:51:92:06:ab:33:0b:20:43:79:
6f:66:ef:96:17:c5:35:c4:b7:5e:1a:ca:74:8d:8a:
11:63:19:55:7e:1b:33:a5:68:2c:e5:9c:04:d9:a4:
e7:13:5c:57:43:b1:2d:b9:2c:31:d9:05:a0:85:c4:
b8:06:f2:bf:e7:c0:50:23:7a:4f:c7:3e:bf:09:29:
7c:a8:ce:b7:8a:82:7d:39:ed:dd:ee:a2:47:1f:e4:
d8:b2:89:b4:38:fa:f1:2c:65:53:02:64:0d:fe:7b:
4a:95:3a:1c:42:05:b0:8b:b8:1b:44:fc:08:ad:36:
b6:fe:ee:a8:6f:2c:07:b2:80:93:2a:f4:9c:a7:d3:
64:e2:67:38:46:55:d2:2d:aa:16:88:28:29:73:86:
71:0e:ec:eb:7e:94:13:8f:02:da:b1:7d:52:bd:6e:
ba:84:d1:d6:18:d3:49:29:a5:46:87:d2:a7:c8:b4:
b6:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:97:B5:6A:32:BA:54:6F:1B:B1:28:22:EA:F1:CA:F4:55:61:90:0D
X509v3 Authority Key Identifier:
keyid:C3:34:A3:5A:BF:A8:2D:54:9E:49:07:04:D6:8B:BE:65:80:05:D6:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wzSjWr-oLVSeSQcE1ou-ZYAF1jw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/39b08d-eb01-43b0-b56c-273884b53c6e/1/A5e1ajK6VG8bsSgi6vHK9FVhkA0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/39b08d-eb01-43b0-b56c-273884b53c6e/1/wzSjWr-oLVSeSQcE1ou-ZYAF1jw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:1a08:666::/48
Signature Algorithm: sha256WithRSAEncryption
28:77:56:f6:11:54:14:79:3e:d8:ab:b2:9d:4e:61:4b:df:aa:
57:7e:f0:42:76:0b:84:d0:d8:4e:1b:17:9b:5c:07:66:f1:ac:
86:44:09:34:e4:1f:6d:39:31:cf:46:a4:50:8a:a6:6f:3e:af:
48:e3:62:ed:78:5d:a3:c6:48:39:17:2f:3f:79:5f:67:5e:82:
73:8c:1b:38:f3:d5:26:ab:4c:2e:ee:12:a7:1e:06:56:15:82:
64:98:af:44:a6:8a:05:88:26:aa:56:4d:89:98:8b:6b:ca:7e:
8c:b2:16:8c:a1:77:37:67:56:5a:91:1e:40:4b:36:d0:f5:02:
aa:eb:dc:51:ae:f7:13:c6:2b:7b:61:04:22:0b:ff:36:d4:2e:
6b:16:26:ea:78:4a:aa:c3:ce:8b:7e:e1:f0:c2:01:41:b0:76:
78:c9:9a:3d:63:5a:24:84:49:b8:76:e5:a0:44:ef:14:ae:6f:
ad:56:74:b3:8e:56:59:ac:01:c3:51:3a:a6:53:5a:ed:94:91:
0b:20:10:9d:17:93:9b:b8:d5:4f:21:7e:fc:af:36:dd:48:32:
fc:66:dc:f9:a9:21:5b:b4:49:ac:18:88:23:e9:ce:10:c4:fc:
07:e9:6b:e8:21:87:48:68:d2:5b:df:3f:9e:89:53:fc:03:24:
8b:7e:64:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:27 2025 by rpki-client on console.sobornost.net