Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/771486-bee3-424a-b341-7cfdf2df6632/1/59d3PdJCULjs4_4j0Pq3kDdHdgk.roa
File: 59d3PdJCULjs4_4j0Pq3kDdHdgk.roa (raw, json)
Hash identifier: WpHyMpfUDziVYZlQft4BRU7sTsf5P29/Ozm59gpC8kc=
Subject key identifier: E7:D7:77:3D:D2:42:50:B8:EC:E3:FE:23:D0:FA:B7:90:37:47:76:09
Certificate issuer: /CN=310b05251378994cfa8088d23b6eeed4e9e6ab08
Certificate serial: 01941FFA7C165A3C590B7C6FB4CC56E428F8
Authority key identifier: 31:0B:05:25:13:78:99:4C:FA:80:88:D2:3B:6E:EE:D4:E9:E6:AB:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MQsFJRN4mUz6gIjSO27u1Onmqwg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/771486-bee3-424a-b341-7cfdf2df6632/1/59d3PdJCULjs4_4j0Pq3kDdHdgk.roa
Signing time: Wed 01 Jan 2025 03:48:16 +0000
ROA not before: Wed 01 Jan 2025 03:48:16 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43513
IP address blocks: 2a11:9883::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:7c:16:5a:3c:59:0b:7c:6f:b4:cc:56:e4:28:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=310b05251378994cfa8088d23b6eeed4e9e6ab08
Validity
Not Before: Jan 1 03:48:16 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e7d7773dd24250b8ece3fe23d0fab79037477609
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:35:b6:8e:db:02:f5:d5:f8:b2:64:6b:c9:e5:
b0:2e:5e:76:06:bb:1d:85:8c:ed:84:9d:2e:b3:61:
91:d5:87:e3:26:67:2c:61:91:72:46:80:aa:da:52:
13:92:6b:0f:cf:65:e7:f8:84:92:dd:03:27:99:2b:
4c:74:8c:60:6c:cd:ea:1e:66:3d:a9:97:4a:a1:38:
d9:a0:dc:7d:49:73:59:4f:4d:61:2b:f2:8c:e0:63:
30:bc:d5:0b:de:96:1b:19:33:97:76:0a:26:72:82:
ba:04:0f:86:c7:16:12:cc:a3:0a:8d:f2:de:98:f1:
8f:30:93:70:cf:ff:11:fc:fd:8f:88:46:c8:ca:35:
02:8f:b0:19:02:e9:18:7e:71:12:3d:0c:0f:da:33:
26:21:51:71:42:ba:d6:20:ad:ba:08:48:cf:3c:10:
c7:dd:a1:94:8f:e3:2d:e5:48:94:4e:23:45:32:a1:
f7:b9:59:f7:bb:42:8c:2f:95:f0:73:7e:1b:df:95:
84:03:8d:38:5f:53:bd:c9:7e:ee:c1:e9:e9:3b:68:
4e:e2:ae:88:5f:24:3b:ef:55:fa:d4:79:4e:1a:aa:
f6:06:5a:57:a7:98:48:0e:ea:21:13:10:5d:cf:ab:
ad:be:31:73:b4:d2:3e:1d:1a:5a:71:56:c5:c1:5b:
28:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:D7:77:3D:D2:42:50:B8:EC:E3:FE:23:D0:FA:B7:90:37:47:76:09
X509v3 Authority Key Identifier:
keyid:31:0B:05:25:13:78:99:4C:FA:80:88:D2:3B:6E:EE:D4:E9:E6:AB:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MQsFJRN4mUz6gIjSO27u1Onmqwg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/771486-bee3-424a-b341-7cfdf2df6632/1/59d3PdJCULjs4_4j0Pq3kDdHdgk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/771486-bee3-424a-b341-7cfdf2df6632/1/MQsFJRN4mUz6gIjSO27u1Onmqwg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:9883::/32
Signature Algorithm: sha256WithRSAEncryption
37:8d:75:3f:9b:b6:0c:02:8a:b1:61:68:74:64:a7:b4:92:1c:
53:8e:87:7a:59:e6:61:20:48:86:ea:e0:88:84:14:15:8d:35:
54:91:cd:77:bd:75:c7:af:6c:84:fe:ba:7a:ad:af:b4:c0:d1:
23:d5:15:d9:bc:e8:6f:12:fa:7f:44:60:75:6e:66:53:8b:79:
f3:7f:de:a7:52:a3:11:3e:87:ac:fe:81:34:5f:a5:4a:d2:b9:
e5:d9:b2:e1:a2:fb:f0:95:09:ee:74:c2:54:44:1b:05:98:f0:
2c:e0:0b:c5:0e:e7:2b:4c:65:e1:ad:36:ce:4d:be:4f:00:8b:
be:04:76:eb:20:c2:0b:91:ff:ec:6e:b7:8c:a2:44:e6:7c:5c:
a4:8b:80:f6:ae:83:7b:d2:c5:2a:64:c4:ab:e8:79:19:4c:a8:
5f:c9:5f:4e:78:df:e6:61:b0:61:c8:42:e4:4e:82:27:67:2e:
0a:5d:08:83:1e:e8:5a:56:eb:6d:4c:b8:75:fa:01:57:ab:87:
9a:59:37:79:e9:0f:0a:cc:0d:bf:03:9f:1c:c6:95:2e:ca:1f:
d9:65:55:58:06:93:e2:29:07:86:3d:63:d6:42:2f:e7:02:a2:
ed:80:69:e4:24:69:d2:02:86:76:1a:79:f1:74:92:a6:2d:4b:
31:9b:29:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:19 2025 by rpki-client on console.sobornost.net