Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/eB1ZfcKSsbMnTZNpr9680YHoSPc.roa
File: eB1ZfcKSsbMnTZNpr9680YHoSPc.roa (raw, json)
Hash identifier: 7p1p563GM9Gu8GPjl1+dPDhIzVlL2k4ErNQN4NdZ9Vg=
Subject key identifier: 78:1D:59:7D:C2:92:B1:B3:27:4D:93:69:AF:DE:BC:D1:81:E8:48:F7
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 019427B3B3E5405730B0B0F7DB5CDB57F628
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/eB1ZfcKSsbMnTZNpr9680YHoSPc.roa
Signing time: Thu 02 Jan 2025 15:47:55 +0000
ROA not before: Thu 02 Jan 2025 15:47:55 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215577
IP address blocks: 2a07:e345:200::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b3:b3:e5:40:57:30:b0:b0:f7:db:5c:db:57:f6:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jan 2 15:47:55 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=781d597dc292b1b3274d9369afdebcd181e848f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:05:fd:03:7e:f6:d8:45:cb:6e:ea:8b:23:27:
83:ff:fd:f8:f6:38:53:56:03:a3:fc:69:b5:95:38:
dd:29:57:b0:b0:12:b4:36:ad:4b:fd:eb:81:f8:a4:
13:db:62:2f:66:d7:5c:21:32:3f:40:1c:a1:d7:86:
aa:0b:47:9c:4b:b5:00:a1:ae:a7:33:19:b3:8f:e5:
8a:0b:a5:8b:80:d2:3b:6c:cf:2b:03:9f:8e:9e:d6:
23:b1:b5:d1:63:86:77:b8:85:b3:64:8b:b8:26:9b:
1e:99:1d:c3:76:d7:9f:65:ae:4d:2b:53:d4:2a:c5:
f3:e0:e4:a5:a4:a7:80:6a:7c:3b:b3:e6:fd:7a:4e:
a4:f6:da:68:1e:67:c8:24:b1:29:58:da:2b:6e:00:
8e:da:e8:76:21:d2:50:9a:df:41:5d:00:7e:e6:b3:
54:6f:09:33:f3:ec:f0:b9:2d:be:ab:26:42:81:1d:
d5:28:60:f0:cb:f6:e2:2f:14:3a:4b:47:e3:da:3b:
ec:a7:4e:a2:3c:4c:b6:20:e6:61:76:d8:9e:a8:da:
fb:a9:d5:50:4b:75:8e:15:cf:61:63:13:69:a9:2f:
2b:15:c5:9f:93:86:ba:8e:4d:4b:98:97:fd:79:50:
1a:bf:04:7c:af:5f:48:aa:19:bb:ac:27:88:73:dc:
85:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:1D:59:7D:C2:92:B1:B3:27:4D:93:69:AF:DE:BC:D1:81:E8:48:F7
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/eB1ZfcKSsbMnTZNpr9680YHoSPc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:e345:200::/48
Signature Algorithm: sha256WithRSAEncryption
b9:99:c8:23:57:02:c7:ed:78:fc:b6:dd:bf:ac:56:23:ea:96:
fe:c8:c0:52:17:92:9a:b4:58:8a:99:a9:6b:a0:63:20:54:64:
9e:c8:c2:a8:f8:ee:a0:12:ad:15:02:0f:dc:ca:6e:8c:f0:7c:
5f:f1:db:43:ab:56:cd:ea:dc:90:36:29:11:17:d7:f6:70:4c:
30:ef:76:af:c0:77:aa:bf:c2:fb:8b:06:14:84:7a:b7:7f:9e:
08:0d:9e:eb:f5:89:86:b5:79:28:d8:be:53:e9:ba:a0:fc:bb:
71:d8:ca:8f:2d:7d:18:83:6f:46:5f:60:0e:0a:d4:31:38:0f:
e6:e0:9c:b7:6b:c1:68:4c:ae:d4:bb:4f:13:13:58:13:14:3c:
a2:33:6c:6d:1d:eb:a0:1f:91:42:c6:c1:52:d3:5a:20:b6:82:
b5:a9:56:3d:2c:22:09:54:a4:ca:e7:51:b4:f8:2b:ab:ad:8b:
49:37:bb:25:68:51:2c:31:a6:76:6d:f9:b4:90:b1:9b:19:43:
f9:0a:e5:61:28:55:cb:74:c7:8d:1f:0d:ad:cd:08:e2:f5:0c:
14:75:ee:6f:f8:da:58:83:e7:d1:2d:f2:07:e8:b3:5b:95:e9:
46:e2:9b:ef:a8:41:21:ec:92:a2:c1:ca:43:1d:98:0d:f4:72:
8b:33:63:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:19 2025 by rpki-client on console.sobornost.net