Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/a72891-de2f-4156-a011-43f64bcea99d/1/1Rd2o3xUjPYq6-ROGbojsnIAO7o.roa
File: 1Rd2o3xUjPYq6-ROGbojsnIAO7o.roa (raw, json)
Hash identifier: cJibfgam1opzds5Qh9r7Y5ffttnidwSOVT40ptzFnqs=
Subject key identifier: D5:17:76:A3:7C:54:8C:F6:2A:EB:E4:4E:19:BA:23:B2:72:00:3B:BA
Certificate issuer: /CN=0bac82804700ad36538bf86f34c073e971430da5
Certificate serial: 019421B1C4A6C625654614542A68780A083D
Authority key identifier: 0B:AC:82:80:47:00:AD:36:53:8B:F8:6F:34:C0:73:E9:71:43:0D:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C6yCgEcArTZTi_hvNMBz6XFDDaU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/a72891-de2f-4156-a011-43f64bcea99d/1/1Rd2o3xUjPYq6-ROGbojsnIAO7o.roa
Signing time: Wed 01 Jan 2025 11:48:05 +0000
ROA not before: Wed 01 Jan 2025 11:48:05 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 39840
IP address blocks: 2001:67c:2554::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b1:c4:a6:c6:25:65:46:14:54:2a:68:78:0a:08:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0bac82804700ad36538bf86f34c073e971430da5
Validity
Not Before: Jan 1 11:48:05 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d51776a37c548cf62aebe44e19ba23b272003bba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:76:22:76:2e:9f:af:46:ac:9f:27:9a:c0:c9:
2c:28:5b:a5:10:f7:70:82:6f:89:99:5a:90:a9:02:
b3:5e:65:0b:e4:f8:e8:0e:1a:72:bd:61:ee:fe:33:
3c:13:e5:e0:8c:d6:42:46:b1:2a:22:1d:6e:80:2f:
82:90:b4:7b:77:88:fb:30:52:44:36:a9:77:a3:f1:
fe:65:c2:d0:14:ed:31:4e:98:9c:00:bf:d3:4f:0a:
3c:9b:b0:3b:f9:0b:a3:91:91:18:4a:10:9a:c5:25:
45:e2:f5:42:d3:79:ce:b6:de:e6:56:c7:20:9b:82:
66:6c:c6:b4:b2:27:44:b9:6e:96:51:c0:86:c7:61:
04:2f:aa:da:92:49:39:6e:0d:16:93:60:ec:32:be:
c4:c6:72:c9:67:4f:ed:a4:23:69:2d:88:62:db:1d:
5a:b0:9d:fd:d8:0c:64:e0:c9:e0:13:ef:31:88:73:
ff:3f:b1:5a:74:fd:ad:ba:48:bd:95:38:f1:a6:94:
04:9a:38:cc:81:dd:71:fc:d2:8c:cf:70:97:9f:d7:
45:12:c4:29:4b:c1:69:11:23:70:16:47:40:44:29:
92:f1:59:3b:65:d5:dc:d0:93:d8:54:5f:b8:e0:23:
65:63:af:b0:88:d8:37:77:22:33:8d:6d:96:f3:eb:
fa:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:17:76:A3:7C:54:8C:F6:2A:EB:E4:4E:19:BA:23:B2:72:00:3B:BA
X509v3 Authority Key Identifier:
keyid:0B:AC:82:80:47:00:AD:36:53:8B:F8:6F:34:C0:73:E9:71:43:0D:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C6yCgEcArTZTi_hvNMBz6XFDDaU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/a72891-de2f-4156-a011-43f64bcea99d/1/1Rd2o3xUjPYq6-ROGbojsnIAO7o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/a72891-de2f-4156-a011-43f64bcea99d/1/C6yCgEcArTZTi_hvNMBz6XFDDaU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2554::/48
Signature Algorithm: sha256WithRSAEncryption
4b:87:cf:78:0e:19:f7:f0:b6:0c:02:96:4f:ea:78:20:08:e6:
5a:d5:fb:7e:b0:34:cf:a7:bd:ec:79:04:1c:d9:82:74:e3:72:
4b:19:6d:e3:49:da:40:81:4e:b9:99:02:0a:ad:38:bc:9b:e1:
3f:88:19:c5:b8:6b:03:88:9e:09:0e:67:8a:f6:34:4d:be:ae:
0c:1a:ab:d0:3d:25:28:00:b4:5e:72:77:12:60:aa:b9:2d:42:
a8:01:4f:08:72:58:2b:f7:81:e4:37:c7:42:7f:35:5f:02:ed:
65:05:7d:f2:cd:d2:73:25:a3:13:df:9b:8c:81:a1:bd:8d:a1:
80:87:0a:15:c7:91:e1:0c:c1:e3:b2:97:ed:7a:fa:58:25:37:
ef:36:ed:24:72:2f:fe:53:b0:10:f2:8c:f3:fe:73:0a:90:7f:
65:05:56:43:88:fd:78:ff:2d:ae:50:54:30:98:46:07:3c:cb:
86:54:79:c6:ee:35:30:49:96:7f:c0:1f:45:b8:37:2f:96:5d:
92:a1:67:6b:9e:bc:f0:fa:40:a7:2b:c3:a2:9a:89:e2:9a:d5:
57:2f:d6:83:05:c2:48:f8:dd:6e:b2:21:43:8e:94:c6:d1:32:
45:77:2a:d8:a6:c5:34:66:58:11:ff:06:b1:66:d3:2b:bc:4c:
9d:75:8d:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:31 2025 by rpki-client on console.sobornost.net