Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/23auccAffXFIIKLeLwTIatRjFOA.roa
File: 23auccAffXFIIKLeLwTIatRjFOA.roa (raw, json)
Hash identifier: sRXgVYq+gNWG3wMO4JxSXkBGXFHJVo6nx/QhFnrI+8c=
Subject key identifier: DB:76:AE:71:C0:1F:7D:71:48:20:A2:DE:2F:04:C8:6A:D4:63:14:E0
Certificate issuer: /CN=370e5450d1486780aba54f045ec4802f19f0b4f7
Certificate serial: 019428271359A2C714B14D4F7658DDDFEDC0
Authority key identifier: 37:0E:54:50:D1:48:67:80:AB:A5:4F:04:5E:C4:80:2F:19:F0:B4:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/23auccAffXFIIKLeLwTIatRjFOA.roa
Signing time: Thu 02 Jan 2025 17:53:56 +0000
ROA not before: Thu 02 Jan 2025 17:53:56 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48314
IP address blocks: 2a0e:46c4:1447::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:27:13:59:a2:c7:14:b1:4d:4f:76:58:dd:df:ed:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=370e5450d1486780aba54f045ec4802f19f0b4f7
Validity
Not Before: Jan 2 17:53:56 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=db76ae71c01f7d714820a2de2f04c86ad46314e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:74:9b:3d:60:22:fe:04:20:68:51:dc:8c:a9:
d6:d9:15:52:08:cb:77:26:fb:07:32:9e:6d:ca:92:
a8:95:6c:30:13:84:22:dc:82:6d:26:86:37:d8:e4:
1e:a1:c6:aa:e8:de:94:71:b9:3d:c8:d0:60:1e:a8:
7c:b5:af:58:e3:a1:36:1f:9d:03:5f:60:b9:72:14:
ef:36:70:27:04:91:a2:20:fc:91:dc:24:d5:75:46:
52:b3:46:47:d3:59:89:f2:bb:7e:f6:77:ab:97:d7:
ae:a2:53:ce:48:68:19:d1:7e:1a:73:0d:49:9c:2f:
f9:a0:82:3e:f6:c1:73:93:15:6a:c2:a2:d2:e5:a8:
0c:97:a5:dd:a2:1d:8c:ba:fc:1d:8d:c5:ac:66:06:
c6:28:1a:81:e3:cc:45:66:5f:15:74:ac:07:ba:3d:
18:bb:89:30:bb:4e:1f:22:cb:8d:9f:8e:22:db:7e:
a2:b1:58:51:76:c5:f8:6b:a1:22:99:6d:28:bc:fc:
65:fb:f5:61:3a:9f:db:de:91:bc:f5:79:d6:0b:46:
0c:6b:e2:35:02:ec:c8:a9:ae:34:e7:a5:28:a9:24:
47:ab:77:81:8c:24:07:74:4e:b1:fe:f5:6f:e9:d7:
c1:e3:9f:68:39:fd:b1:4c:f2:05:1a:15:e6:96:15:
86:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:76:AE:71:C0:1F:7D:71:48:20:A2:DE:2F:04:C8:6A:D4:63:14:E0
X509v3 Authority Key Identifier:
keyid:37:0E:54:50:D1:48:67:80:AB:A5:4F:04:5E:C4:80:2F:19:F0:B4:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/23auccAffXFIIKLeLwTIatRjFOA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:46c4:1447::/48
Signature Algorithm: sha256WithRSAEncryption
41:c5:74:5a:4d:2a:5c:27:a3:a8:e9:06:25:7f:95:ec:dc:e6:
e8:33:dc:fd:94:b1:78:25:22:af:8d:88:24:42:7e:21:53:93:
d9:01:c8:89:5c:b6:a2:80:e8:32:9c:7b:59:19:b5:a6:75:67:
99:8d:d1:c9:b9:e3:ec:ee:8f:11:e4:83:be:2d:ff:50:bd:9b:
b7:fc:dd:15:3e:61:7e:ca:ef:d6:1b:0b:bf:95:e2:d1:00:a3:
61:a2:77:87:6a:0f:8a:ca:a8:fa:33:10:f1:f2:ce:aa:b4:70:
0e:42:5c:75:52:3d:f3:58:48:13:18:dc:6f:7d:77:35:6d:9e:
86:f8:3e:83:65:67:24:54:73:35:c5:ab:1c:4b:a9:09:10:20:
75:d1:87:76:2a:af:40:35:cd:70:d6:d2:4a:b7:17:c2:df:7f:
8f:85:7f:bd:88:41:14:e0:33:6c:4e:0f:07:46:f7:80:90:fc:
19:86:b6:82:c5:ae:19:0a:fa:4a:9e:86:a5:9e:23:57:a9:07:
e1:3c:cb:15:10:19:f0:77:bf:c2:8f:bc:ba:5e:6a:45:a9:ad:
18:42:2e:be:67:1f:22:54:49:29:4b:e2:35:08:af:26:dd:56:
b1:bb:47:78:df:99:e6:03:98:00:9d:5a:96:42:55:ad:62:d4:
6b:9f:28:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:56 2025 by rpki-client on console.sobornost.net