Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/232047-b2e8-4fba-bdd5-c3fec45ed056/1/IBuDbFztg6cu6_SyL664l8rb0Bg.roa
File: IBuDbFztg6cu6_SyL664l8rb0Bg.roa (raw, json)
Hash identifier: sBkUmstvhsehUWZFbZl0SyDfpDqJqLCazOrvtWfvn2I=
Subject key identifier: 20:1B:83:6C:5C:ED:83:A7:2E:EB:F4:B2:2F:AE:B8:97:CA:DB:D0:18
Certificate issuer: /CN=07077969a8b6a55c461adde106c006486a26359f
Certificate serial: 019427477BA603E9C44570261D23F846AC3C
Authority key identifier: 07:07:79:69:A8:B6:A5:5C:46:1A:DD:E1:06:C0:06:48:6A:26:35:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Bwd5aai2pVxGGt3hBsAGSGomNZ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/232047-b2e8-4fba-bdd5-c3fec45ed056/1/IBuDbFztg6cu6_SyL664l8rb0Bg.roa
Signing time: Thu 02 Jan 2025 13:49:43 +0000
ROA not before: Thu 02 Jan 2025 13:49:43 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215679
IP address blocks: 2a14:7780::/29 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:47:7b:a6:03:e9:c4:45:70:26:1d:23:f8:46:ac:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07077969a8b6a55c461adde106c006486a26359f
Validity
Not Before: Jan 2 13:49:43 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=201b836c5ced83a72eebf4b22faeb897cadbd018
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:5a:4d:94:78:a0:c8:cc:13:6c:64:ec:c6:fc:
06:8a:19:c5:51:c7:00:11:d7:db:60:bf:5c:12:b9:
7f:a1:a8:42:d3:ee:74:00:85:ed:fa:3f:e2:e0:12:
81:cb:32:53:c2:b3:66:cc:a3:14:d0:84:1a:e8:40:
65:f1:b9:c3:f8:01:73:d1:4c:86:07:96:22:cc:d7:
d4:48:5c:2b:2c:79:d8:ab:73:1d:e7:d3:53:56:86:
69:b7:7e:5f:45:24:6f:5b:16:fe:8d:e9:97:d6:08:
62:16:43:48:4d:c7:e8:e6:6c:2d:b4:f4:f4:25:3d:
d4:4f:70:30:e2:8a:4a:96:8d:a1:bc:8e:62:c9:ca:
92:eb:04:e9:ad:f2:b2:77:81:1d:ef:4b:10:53:77:
7f:72:dd:18:c0:09:1f:51:f3:60:76:56:40:e6:ec:
60:c2:f0:92:4d:d0:80:32:17:eb:c7:49:9d:77:93:
86:dc:3c:f8:c4:fe:a4:fb:ee:7c:70:f8:59:7c:1f:
ab:2e:e4:81:3d:3a:b2:49:37:7e:c5:12:c3:50:88:
ef:ae:ab:fa:fe:dc:b7:0a:fa:5d:f8:5d:48:10:31:
7d:e7:2d:4b:d3:0b:e2:63:aa:dd:54:41:13:83:90:
30:55:50:f4:0b:10:c6:4d:da:51:8a:66:e6:75:2b:
93:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:1B:83:6C:5C:ED:83:A7:2E:EB:F4:B2:2F:AE:B8:97:CA:DB:D0:18
X509v3 Authority Key Identifier:
keyid:07:07:79:69:A8:B6:A5:5C:46:1A:DD:E1:06:C0:06:48:6A:26:35:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Bwd5aai2pVxGGt3hBsAGSGomNZ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/232047-b2e8-4fba-bdd5-c3fec45ed056/1/IBuDbFztg6cu6_SyL664l8rb0Bg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/232047-b2e8-4fba-bdd5-c3fec45ed056/1/Bwd5aai2pVxGGt3hBsAGSGomNZ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7780::/29
Signature Algorithm: sha256WithRSAEncryption
33:a5:b2:50:86:88:49:b5:8c:79:f2:56:8e:63:c2:f7:7c:37:
fb:42:6a:f7:f0:30:29:21:49:81:3b:b6:a7:93:ea:e4:ef:fb:
54:17:c3:39:3c:09:dc:94:54:11:3f:c6:62:9e:2c:e0:a3:52:
75:3c:5f:7b:96:40:ec:01:14:56:60:9a:6e:d9:36:79:ff:97:
37:f2:d1:ea:cf:f8:e0:9a:b8:bf:8c:f4:9e:23:a2:03:28:a2:
c2:1c:75:e1:7a:21:63:47:40:aa:3b:dd:e2:6e:ca:51:25:9d:
f2:f6:94:dc:e5:f2:ec:84:0b:01:32:24:41:07:0c:25:d7:ab:
73:ae:24:5d:fa:09:01:66:6b:7b:7f:2b:59:de:b9:ce:a2:ae:
04:b2:b5:5e:9a:7d:67:46:a4:69:db:19:1a:b6:54:e1:9f:09:
e5:0e:00:30:01:ff:6b:25:36:ef:61:1c:d3:eb:a7:04:ee:5f:
57:a1:fd:60:85:b5:f8:08:2f:db:dc:13:c9:f4:ee:c5:e5:54:
39:fc:64:6b:50:22:58:79:82:e7:7e:f7:f5:94:50:3b:cd:47:
16:51:e2:56:df:e7:e8:de:a8:9f:df:1f:15:0a:ef:a1:e3:aa:
d3:0b:10:c3:ae:29:b3:0e:45:a2:f1:19:28:35:92:06:37:1b:
12:57:74:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 23 19:14:16 2025 by rpki-client on console.sobornost.net