Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/f4a80d-f5f7-4522-b9b5-f772a0139016/1/2ZLinOVEwJGKFicgX--T-MLOzJk.roa
File: 2ZLinOVEwJGKFicgX--T-MLOzJk.roa (raw, json)
Hash identifier: c5tPFVJAjAdrD/biJVfWeRiWObKwMs1MmzB2QE9giIE=
Subject key identifier: D9:92:E2:9C:E5:44:C0:91:8A:16:27:20:5F:EF:93:F8:C2:CE:CC:99
Certificate issuer: /CN=23d8448c5cb90398e4c285cec9c0f4766ac931df
Certificate serial: 0194221FD53A63BB6F131795AAB1B5100C44
Authority key identifier: 23:D8:44:8C:5C:B9:03:98:E4:C2:85:CE:C9:C0:F4:76:6A:C9:31:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I9hEjFy5A5jkwoXOycD0dmrJMd8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/f4a80d-f5f7-4522-b9b5-f772a0139016/1/2ZLinOVEwJGKFicgX--T-MLOzJk.roa
Signing time: Wed 01 Jan 2025 13:48:19 +0000
ROA not before: Wed 01 Jan 2025 13:48:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 760
IP address blocks: 2001:62a::/31 maxlen: 31
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:d5:3a:63:bb:6f:13:17:95:aa:b1:b5:10:0c:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23d8448c5cb90398e4c285cec9c0f4766ac931df
Validity
Not Before: Jan 1 13:48:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d992e29ce544c0918a1627205fef93f8c2cecc99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:b1:f4:73:7a:00:2e:4c:30:8e:71:47:e8:08:
9a:0a:ae:f0:bc:92:d8:74:57:24:c6:10:d3:b0:4e:
c0:3f:97:52:af:6c:67:ed:56:93:4f:74:f0:e6:0e:
d3:da:2c:9b:64:db:06:0c:c0:cf:c3:56:5a:18:66:
f8:df:1e:f2:f8:4c:ee:89:a7:5a:7f:ce:05:c4:33:
d4:86:85:06:b5:20:1c:69:00:dc:53:56:85:2e:15:
7f:d7:31:cc:ee:da:1b:bd:28:9e:e4:8e:02:1a:2f:
44:e2:6e:8d:7c:26:4a:04:c9:44:2a:1b:c0:08:9c:
67:cf:d5:14:c1:ef:f9:25:df:d8:3e:3d:9a:7d:59:
f4:53:05:91:16:b2:1d:10:e5:ff:50:bc:eb:41:a8:
0f:09:62:1d:1d:eb:73:6b:d9:a6:c1:52:35:b4:33:
14:c0:df:da:af:a8:0c:01:34:75:f4:06:40:24:84:
cb:5d:b9:a6:94:6f:4b:fc:cd:fd:c6:b2:2c:ce:63:
f2:bc:81:d8:75:14:33:70:a0:50:5f:5b:c8:25:c4:
7e:b8:34:36:7f:50:94:0d:bd:34:ea:e4:d2:8f:41:
35:9a:cd:d2:66:e6:4d:95:fd:b0:5c:fe:fe:20:8e:
20:86:c7:75:03:42:22:c9:80:50:78:f8:95:84:80:
d0:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:92:E2:9C:E5:44:C0:91:8A:16:27:20:5F:EF:93:F8:C2:CE:CC:99
X509v3 Authority Key Identifier:
keyid:23:D8:44:8C:5C:B9:03:98:E4:C2:85:CE:C9:C0:F4:76:6A:C9:31:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I9hEjFy5A5jkwoXOycD0dmrJMd8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/f4a80d-f5f7-4522-b9b5-f772a0139016/1/2ZLinOVEwJGKFicgX--T-MLOzJk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/f4a80d-f5f7-4522-b9b5-f772a0139016/1/I9hEjFy5A5jkwoXOycD0dmrJMd8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:62a::/31
Signature Algorithm: sha256WithRSAEncryption
c2:a2:6c:a7:12:bc:7a:ea:32:ff:94:fb:86:5e:5c:38:a3:b8:
4b:e2:66:5c:ee:1b:86:f6:23:28:48:07:d4:11:ae:1b:6c:43:
58:6f:37:94:cd:ca:5e:b5:31:11:b5:8d:ec:59:e5:b6:fd:1b:
0b:de:8d:28:fb:8b:14:ce:0f:d8:70:10:98:aa:45:a3:cb:4d:
ce:05:4a:58:d7:c0:88:02:ed:a0:9f:ed:a7:61:f9:a5:50:5c:
7d:19:50:9e:ed:82:22:7b:be:5d:9b:cd:2a:8b:da:62:16:d2:
6f:62:b0:81:a1:25:c9:29:7d:e8:d1:b3:0a:17:f9:7a:60:fa:
31:ca:d6:ce:7f:3c:e4:18:8f:af:b2:b8:a6:d6:ed:73:d1:1c:
1e:8e:8f:f9:34:e6:0d:c5:e4:3b:04:0c:af:37:d0:58:b2:1e:
56:f7:2e:4c:77:be:be:dd:1a:74:48:f7:41:3f:2f:25:01:70:
1e:7c:a5:18:75:f9:15:06:2e:e3:2a:24:e6:c1:f6:43:1b:e0:
a3:c7:71:ec:56:06:e8:66:88:99:44:00:fb:f4:54:60:0b:a4:
ee:18:f9:d8:90:b0:a9:fd:fa:6c:e3:2c:db:c8:f5:fa:4e:dd:
98:b9:8e:74:1a:5f:26:37:e3:a9:d1:ef:96:88:ad:6d:5b:fa:
14:28:49:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:30 2025 by rpki-client on console.sobornost.net