Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/efc9f1-bec3-4771-b480-0184e81aead9/1/dMX9QwbYl-FTlUJ1R8o2dHt-Q3w.roa
File: dMX9QwbYl-FTlUJ1R8o2dHt-Q3w.roa (raw, json)
Hash identifier: e2o3TSPgT1QYuW3l4VAbr/3mKHvbyIxxzpTJ+Xkb62A=
Subject key identifier: 74:C5:FD:43:06:D8:97:E1:53:95:42:75:47:CA:36:74:7B:7E:43:7C
Certificate issuer: /CN=81cdc17dad03bcb9bc34a9e377ab2070852dca65
Certificate serial: 0195602608743946C40A8F3CFBBB105A00B1
Authority key identifier: 81:CD:C1:7D:AD:03:BC:B9:BC:34:A9:E3:77:AB:20:70:85:2D:CA:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gc3Bfa0DvLm8NKnjd6sgcIUtymU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/efc9f1-bec3-4771-b480-0184e81aead9/1/dMX9QwbYl-FTlUJ1R8o2dHt-Q3w.roa
Signing time: Tue 04 Mar 2025 07:54:19 +0000
ROA not before: Tue 04 Mar 2025 07:54:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212950
IP address blocks: 2a0e:a500::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:60:26:08:74:39:46:c4:0a:8f:3c:fb:bb:10:5a:00:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81cdc17dad03bcb9bc34a9e377ab2070852dca65
Validity
Not Before: Mar 4 07:54:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=74c5fd4306d897e15395427547ca36747b7e437c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ba:8c:4b:7d:33:d8:8b:6c:bb:c5:6d:08:25:
dc:30:df:48:f9:17:1b:95:9c:98:dd:18:c3:4d:00:
fe:d9:47:c9:6e:19:06:20:d8:1e:f5:a2:2e:af:ec:
8e:26:c4:89:61:eb:9f:d2:9d:d1:9d:5f:dd:fb:d5:
f0:d1:69:4c:33:61:1e:5e:10:2e:fa:87:b5:b8:91:
63:4f:22:26:e2:76:6a:2a:f4:ce:86:92:f4:75:35:
f3:5c:0f:5f:e7:e9:2c:04:bb:4b:73:27:23:5e:e8:
22:bc:06:48:b1:25:3c:b6:31:ae:a8:e2:16:b3:e8:
69:10:36:01:fa:55:2a:5a:fc:92:86:d8:e5:d9:32:
38:2a:ae:64:6c:f3:3b:ad:52:96:eb:2f:8c:60:a5:
8f:6d:ef:6e:3b:5a:b3:43:ae:96:09:ae:d1:30:48:
35:bf:10:21:e2:eb:30:6d:ef:fd:56:b1:f8:ac:58:
a8:f4:52:33:93:88:f0:a4:10:08:45:de:04:52:67:
aa:80:14:52:43:c7:be:7e:e9:4a:2e:a0:e9:82:96:
29:be:1f:72:80:d4:94:5c:ea:22:d5:1d:ee:6c:ed:
11:1e:b1:37:e7:58:5c:27:ff:8b:47:40:7c:a2:07:
d5:46:d3:3c:76:0d:fc:f0:ef:75:e1:b3:a0:e1:93:
15:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:C5:FD:43:06:D8:97:E1:53:95:42:75:47:CA:36:74:7B:7E:43:7C
X509v3 Authority Key Identifier:
keyid:81:CD:C1:7D:AD:03:BC:B9:BC:34:A9:E3:77:AB:20:70:85:2D:CA:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gc3Bfa0DvLm8NKnjd6sgcIUtymU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/efc9f1-bec3-4771-b480-0184e81aead9/1/dMX9QwbYl-FTlUJ1R8o2dHt-Q3w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/96/efc9f1-bec3-4771-b480-0184e81aead9/1/gc3Bfa0DvLm8NKnjd6sgcIUtymU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:a500::/32
Signature Algorithm: sha256WithRSAEncryption
46:d9:06:4a:ac:06:57:c6:ea:1b:aa:72:ec:11:49:2d:99:82:
09:9d:3e:e0:be:23:a7:31:af:48:0a:cc:7c:bc:5a:a7:9a:48:
47:5c:6e:5a:c5:b6:80:56:d4:ce:cf:86:4c:fd:27:97:ec:27:
74:c1:90:87:f3:b1:59:17:6a:bb:df:6a:2f:e8:0b:e7:ca:56:
5a:a4:23:d7:cf:9f:b0:7a:0c:0b:c7:f5:0c:2e:e1:ba:28:b0:
57:7b:ad:c7:5c:c8:fc:74:c9:b2:1a:5d:bf:4d:7d:96:0d:d0:
be:07:d7:ec:68:59:2a:bb:c7:53:5a:53:75:01:2b:c9:91:f8:
9d:c7:b2:07:39:18:75:ad:2a:4c:e0:94:24:bc:4f:3b:bb:4d:
a4:cd:c0:bf:35:6a:f5:9b:59:3b:de:ee:33:45:a6:84:b5:8c:
c1:8b:7b:f6:9e:d3:36:b6:ac:3f:0c:7d:dc:1c:a6:60:5c:fe:
b5:4e:f3:57:d9:ce:36:5a:d1:47:72:be:8f:72:e5:3c:de:d2:
14:15:7f:2a:fa:7e:7b:86:69:7a:46:9d:eb:0e:84:56:d9:bd:
a6:f0:cc:35:8b:0a:9a:05:a2:b5:d9:73:c9:69:6a:87:ff:1f:
94:17:d2:98:ec:7e:5c:87:7e:a3:3d:c2:a0:a4:bf:65:76:e0:
b3:4c:95:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:28 2025 by rpki-client on console.sobornost.net