Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/qerWJ9N0klhuhzcIgvZSrAumV_Y.roa
File: qerWJ9N0klhuhzcIgvZSrAumV_Y.roa (raw, json)
Hash identifier: /vwvzpt6A9BdPc1JxUloTrK4LVtePi7FvbqVFdA3VF8=
Subject key identifier: A9:EA:D6:27:D3:74:92:58:6E:87:37:08:82:F6:52:AC:0B:A6:57:F6
Certificate issuer: /CN=ba60a4d874d9601c8142c352f80c56a43276cd47
Certificate serial: 019423D7E6C950DAE1FAF148E9A0F201E896
Authority key identifier: BA:60:A4:D8:74:D9:60:1C:81:42:C3:52:F8:0C:56:A4:32:76:CD:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/umCk2HTZYByBQsNS-AxWpDJ2zUc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/qerWJ9N0klhuhzcIgvZSrAumV_Y.roa
Signing time: Wed 01 Jan 2025 21:48:59 +0000
ROA not before: Wed 01 Jan 2025 21:48:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 208970
IP address blocks: 2a09:e440:100::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:e6:c9:50:da:e1:fa:f1:48:e9:a0:f2:01:e8:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba60a4d874d9601c8142c352f80c56a43276cd47
Validity
Not Before: Jan 1 21:48:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a9ead627d37492586e87370882f652ac0ba657f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:77:aa:8d:e5:de:1f:38:63:85:3a:f6:a7:a6:
06:94:43:bf:83:fd:33:51:0f:d5:38:23:6b:23:9d:
08:1e:83:16:88:37:3b:e2:58:8a:0c:98:f4:60:aa:
b8:93:bf:26:d1:18:6d:76:84:12:27:fc:f4:1f:c1:
e8:97:4f:57:b0:8a:5c:a8:ea:03:a5:fd:48:c5:70:
19:e0:e8:bd:de:2d:f5:5f:5c:46:03:af:f5:d0:52:
c1:ec:77:fe:76:6e:7b:6f:b7:8e:38:e1:bf:4e:2d:
de:3b:c2:7c:09:b5:92:0f:51:30:b1:89:e0:4c:d9:
0c:d7:2e:70:ad:09:95:d8:a5:7a:81:88:7e:86:5f:
65:f4:c4:5a:2d:02:7a:fd:62:85:2e:31:98:eb:63:
8d:e2:ef:49:32:88:c3:07:c2:61:39:d3:90:bd:7a:
9f:49:21:a0:2b:e4:98:49:29:e5:e5:f9:ef:7e:cd:
d8:b8:10:9c:f0:5e:b2:38:b4:68:fe:dd:eb:51:e8:
70:a0:8a:a3:bc:81:51:8c:11:19:db:7b:67:7f:d5:
de:c4:19:6e:2f:07:f8:c0:0a:1c:fd:c7:98:53:3c:
a9:42:71:9b:25:7c:b4:52:15:5a:a1:f1:f0:20:ae:
f4:e8:1e:4e:f1:d7:5c:36:54:9e:26:0f:04:d3:bf:
be:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:EA:D6:27:D3:74:92:58:6E:87:37:08:82:F6:52:AC:0B:A6:57:F6
X509v3 Authority Key Identifier:
keyid:BA:60:A4:D8:74:D9:60:1C:81:42:C3:52:F8:0C:56:A4:32:76:CD:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/umCk2HTZYByBQsNS-AxWpDJ2zUc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/qerWJ9N0klhuhzcIgvZSrAumV_Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/umCk2HTZYByBQsNS-AxWpDJ2zUc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:e440:100::/40
Signature Algorithm: sha256WithRSAEncryption
86:60:e1:86:8e:f8:65:e5:27:80:d0:b3:8f:9b:bf:97:fc:5c:
53:e9:51:4e:98:e0:97:dc:56:2e:25:c0:48:e1:4d:1f:28:b1:
66:a7:45:f9:1d:06:70:b2:ce:3b:e9:c8:61:e6:b7:0f:ed:db:
a0:71:b5:77:6a:d0:d2:c0:1c:dc:26:27:16:97:19:22:05:ac:
50:1e:0e:01:20:96:0a:b4:33:bd:85:b1:dc:48:f5:9e:73:79:
31:93:03:3a:cc:0d:e7:e1:8a:e8:95:03:bc:32:2d:a1:43:48:
b4:e6:7f:b1:6e:e5:84:76:87:9d:ef:9e:d3:e3:ae:53:49:e8:
81:9f:df:07:4d:7f:4c:a6:8c:09:5d:ff:67:08:14:bf:d9:7c:
2d:9b:22:15:17:76:95:f2:b5:00:5c:b3:44:bf:d6:fd:1c:00:
c8:48:02:98:c2:a3:ba:0d:51:4a:86:89:e9:43:05:d7:c6:d3:
86:c5:9e:4c:c4:fe:42:3a:5e:99:5a:b4:e0:85:5a:d0:cf:8a:
96:a6:58:31:17:ad:01:52:8f:e0:1d:fd:48:2d:8c:46:86:f1:
7f:f4:d2:27:8f:8c:cf:87:b1:26:0c:51:19:38:c2:e9:26:c8:
ba:bd:9d:55:e5:61:8e:ce:56:42:7f:ae:81:53:fa:77:fa:bb:
b1:b8:9f:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:29 2025 by rpki-client on console.sobornost.net