Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/771486-bee3-424a-b341-7cfdf2df6632/1/9lN7dlDX3E71wSCMtnCUL3i762k.roa
File: 9lN7dlDX3E71wSCMtnCUL3i762k.roa (raw, json)
Hash identifier: PK7Bs+uxjjNwmQbjd0qP17GmCFFEEyTI74qIrN4mbzY=
Subject key identifier: F6:53:7B:76:50:D7:DC:4E:F5:C1:20:8C:B6:70:94:2F:78:BB:EB:69
Certificate issuer: /CN=310b05251378994cfa8088d23b6eeed4e9e6ab08
Certificate serial: 01941FFA7D49E52EF555970367E64D329608
Authority key identifier: 31:0B:05:25:13:78:99:4C:FA:80:88:D2:3B:6E:EE:D4:E9:E6:AB:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MQsFJRN4mUz6gIjSO27u1Onmqwg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/771486-bee3-424a-b341-7cfdf2df6632/1/9lN7dlDX3E71wSCMtnCUL3i762k.roa
Signing time: Wed 01 Jan 2025 03:48:17 +0000
ROA not before: Wed 01 Jan 2025 03:48:17 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206728
IP address blocks: 2a11:9880::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:7d:49:e5:2e:f5:55:97:03:67:e6:4d:32:96:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=310b05251378994cfa8088d23b6eeed4e9e6ab08
Validity
Not Before: Jan 1 03:48:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f6537b7650d7dc4ef5c1208cb670942f78bbeb69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:d2:26:e8:ae:9d:a9:99:10:db:eb:d4:49:55:
c8:13:05:09:b5:3f:19:d1:9a:58:21:77:de:46:34:
a5:6f:84:72:d6:b8:b7:90:36:22:c0:a9:0b:66:88:
e3:ad:08:b2:1c:60:f9:6d:c6:5e:ee:60:dd:c0:af:
86:e9:10:8c:ef:90:8b:aa:50:db:b1:71:56:2f:66:
54:bc:8a:18:04:9e:40:b9:cd:8d:ad:9b:02:3d:47:
bb:ee:1e:a2:1e:3b:96:12:2a:5d:23:bc:2a:69:5a:
2b:8a:8b:07:00:4c:23:e5:f6:bd:e2:7d:3b:6b:20:
66:4d:6b:b0:f4:38:8d:7c:6e:97:c8:3c:50:52:f0:
99:c7:02:7d:22:d8:b9:7f:c9:9b:3a:7e:1e:cf:1a:
d6:d6:f0:35:fb:3e:dc:bc:48:97:37:b5:9a:fd:28:
ae:d7:a7:7d:c1:30:2c:b6:99:b3:90:db:87:1c:77:
41:8c:ec:8d:d1:5d:67:ad:97:78:53:ad:53:c9:c8:
ab:00:81:79:9d:48:93:9c:b3:04:db:94:86:c3:e6:
67:00:b8:49:1d:24:0f:d8:27:34:b0:95:7c:79:e3:
00:4a:0c:53:5b:18:0a:7f:4f:5d:99:68:e8:34:a4:
d7:e0:42:a4:0c:0f:c0:5d:ec:50:ab:e5:69:4c:d9:
ed:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:53:7B:76:50:D7:DC:4E:F5:C1:20:8C:B6:70:94:2F:78:BB:EB:69
X509v3 Authority Key Identifier:
keyid:31:0B:05:25:13:78:99:4C:FA:80:88:D2:3B:6E:EE:D4:E9:E6:AB:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MQsFJRN4mUz6gIjSO27u1Onmqwg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/771486-bee3-424a-b341-7cfdf2df6632/1/9lN7dlDX3E71wSCMtnCUL3i762k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/771486-bee3-424a-b341-7cfdf2df6632/1/MQsFJRN4mUz6gIjSO27u1Onmqwg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:9880::/32
Signature Algorithm: sha256WithRSAEncryption
4a:14:d6:6c:90:5b:f5:07:34:c6:f7:c5:bf:cd:19:89:dc:1d:
d9:48:49:07:e8:d4:62:bb:3e:1f:83:75:9f:50:23:3c:d0:b4:
a9:0f:0b:5e:04:1c:87:2c:9b:ff:0e:3c:24:a6:ef:ae:51:8e:
45:cb:44:3a:93:c3:88:c1:91:63:cd:c1:4c:b4:4b:ad:4b:fa:
88:5d:de:d8:df:b5:1b:38:27:85:86:5a:a9:f9:d8:f4:8a:f9:
e4:8d:e7:de:1a:9c:1f:6a:21:31:49:e8:a0:e7:24:88:7c:d4:
32:a1:4c:8e:28:4e:b6:98:f2:56:08:16:4d:72:6a:e6:29:b0:
8e:73:65:ee:15:8a:6e:3d:41:57:15:35:58:08:9a:ef:fa:1c:
73:a1:c0:1c:0c:b2:c5:07:64:e0:13:58:fe:58:fd:c8:61:60:
41:cd:04:38:59:6e:da:4b:42:d7:9b:d9:a5:25:d1:f3:8d:14:
17:ab:c2:80:32:06:d7:7a:2f:56:fe:d3:9d:1a:82:ea:fe:88:
04:7d:64:6f:c1:61:99:8b:99:70:a5:9a:23:80:8c:f4:6f:e8:
9e:6f:93:f7:c6:9f:cb:48:c4:95:de:17:2f:c7:4d:9f:da:2a:
bf:05:65:ad:0c:a9:fd:4b:73:cd:8e:b9:8f:f7:7f:f6:e9:d7:
b1:3e:04:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:19 2025 by rpki-client on console.sobornost.net