Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/aba502-d191-4fd7-a7cf-504f2766760f/1/M80ufUXhkNHfa9K4zU6X6k_ofZQ.roa
File: M80ufUXhkNHfa9K4zU6X6k_ofZQ.roa (raw, json)
Hash identifier: 4dQl+qST57nUFs67WwcEmlUV01oY2iEO29630JMqbwE=
Subject key identifier: 33:CD:2E:7D:45:E1:90:D1:DF:6B:D2:B8:CD:4E:97:EA:4F:E8:7D:94
Certificate issuer: /CN=b27261d715348bfd73ce9dbb72488656993ba2f1
Certificate serial: 0194221FBB4096851078F618ADD368062202
Authority key identifier: B2:72:61:D7:15:34:8B:FD:73:CE:9D:BB:72:48:86:56:99:3B:A2:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/snJh1xU0i_1zzp27ckiGVpk7ovE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/aba502-d191-4fd7-a7cf-504f2766760f/1/M80ufUXhkNHfa9K4zU6X6k_ofZQ.roa
Signing time: Wed 01 Jan 2025 13:48:12 +0000
ROA not before: Wed 01 Jan 2025 13:48:12 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 29588
IP address blocks: 2a0e:e6c0:6000::/36 maxlen: 36
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:bb:40:96:85:10:78:f6:18:ad:d3:68:06:22:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b27261d715348bfd73ce9dbb72488656993ba2f1
Validity
Not Before: Jan 1 13:48:12 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=33cd2e7d45e190d1df6bd2b8cd4e97ea4fe87d94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:94:53:4c:2e:43:f9:b4:1b:6f:cc:e5:1b:70:
96:33:fa:11:bb:8b:97:25:e2:48:fb:ab:f9:3a:58:
f0:9d:da:f3:d1:d3:31:0d:7e:ec:f6:0c:dc:b1:ef:
26:37:71:49:da:ba:7b:72:a9:a0:82:1c:be:a7:6e:
17:80:be:f1:be:3c:50:df:57:f4:a9:0c:c9:b7:a6:
5a:45:c6:e2:54:eb:97:03:0a:eb:89:52:99:f7:43:
12:08:80:fd:d6:0a:f8:3e:3d:8f:b3:b6:36:d7:d9:
80:bb:88:62:20:17:8f:22:5e:6c:f7:89:57:8d:1e:
b8:48:ba:0f:4e:13:28:76:3c:df:39:82:5e:fd:f8:
72:fc:9e:08:32:85:0a:87:8e:89:54:f8:00:e8:76:
81:8c:fa:1e:6e:6a:e7:e9:9c:0a:65:81:c9:b0:b0:
b6:b1:d7:ed:0a:ae:7a:f0:b8:f7:9b:d9:ce:ae:6e:
6e:88:f0:b1:1a:9b:ee:b3:1b:56:6c:30:09:62:7b:
3b:e4:6f:2b:7f:6c:ba:0c:62:60:de:67:b3:ec:97:
aa:4a:35:f6:4d:59:f5:76:a5:dc:3d:29:7d:a2:07:
57:9a:a5:61:3a:30:33:8b:af:c8:b2:2b:bf:0e:b5:
00:a8:a8:db:b7:a9:ec:dd:74:6b:e5:fc:7c:c5:c4:
77:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:CD:2E:7D:45:E1:90:D1:DF:6B:D2:B8:CD:4E:97:EA:4F:E8:7D:94
X509v3 Authority Key Identifier:
keyid:B2:72:61:D7:15:34:8B:FD:73:CE:9D:BB:72:48:86:56:99:3B:A2:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/snJh1xU0i_1zzp27ckiGVpk7ovE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/aba502-d191-4fd7-a7cf-504f2766760f/1/M80ufUXhkNHfa9K4zU6X6k_ofZQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/aba502-d191-4fd7-a7cf-504f2766760f/1/snJh1xU0i_1zzp27ckiGVpk7ovE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:e6c0:6000::/36
Signature Algorithm: sha256WithRSAEncryption
49:ac:30:32:b5:66:5c:b7:61:4d:30:70:97:4c:d6:ac:5a:32:
bc:fd:6c:d9:41:e8:42:8f:c7:da:15:8a:0d:51:c4:aa:da:e4:
68:ea:1f:f9:a2:7b:26:6a:be:73:d9:2e:32:da:b0:19:ca:13:
35:41:65:20:e9:12:93:e4:08:f6:fb:bb:ba:e4:db:45:3a:57:
12:87:93:4d:04:a5:9c:85:85:c4:63:a1:37:bc:41:60:9b:30:
20:16:cb:e7:02:26:5d:0d:1f:61:cb:2a:44:17:94:e9:ea:30:
97:bb:97:3b:e1:71:1e:98:fa:29:cb:1b:8c:7a:fd:eb:6a:e9:
aa:26:de:b2:be:02:bc:d1:cd:ae:15:15:a2:8b:53:f4:09:df:
02:b5:d6:a7:c3:af:d3:ac:26:a7:85:65:38:6d:18:f4:e1:54:
f1:80:b6:1b:08:98:6a:67:17:db:94:07:c8:4b:0f:84:7f:1e:
6b:4a:08:10:67:ff:57:04:3f:bd:c7:e6:33:b2:22:08:1f:7e:
63:1c:f2:26:61:00:99:9f:1d:1f:29:77:42:0d:bb:82:43:af:
cb:c0:94:0d:2e:63:24:78:7f:42:2f:d7:02:1d:3d:2a:e5:79:
31:52:a2:11:86:0d:d0:02:a2:86:71:54:16:db:fe:40:16:45:
c4:2f:89:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:56 2025 by rpki-client on console.sobornost.net