Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/F1OWe033_DuZ-JjrisCh6PYvi1s.roa
File: F1OWe033_DuZ-JjrisCh6PYvi1s.roa (raw, json)
Hash identifier: bLONjsizRZ/N6QYxCW6KHMn5K6t8a7PJWP3/t57vEJk=
Subject key identifier: 17:53:96:7B:4D:F7:FC:3B:99:F8:98:EB:8A:C0:A1:E8:F6:2F:8B:5B
Certificate issuer: /CN=29fa7dd63f2e2d87b5f7850093c743bbfbe14e44
Certificate serial: 019600E108B13EC79FA38A1A1531B4F6B963
Authority key identifier: 29:FA:7D:D6:3F:2E:2D:87:B5:F7:85:00:93:C7:43:BB:FB:E1:4E:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kfp91j8uLYe194UAk8dDu_vhTkQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/F1OWe033_DuZ-JjrisCh6PYvi1s.roa
Signing time: Fri 04 Apr 2025 12:57:49 +0000
ROA not before: Fri 04 Apr 2025 12:57:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 203025
IP address blocks: 2a14:c887::/33 maxlen: 33
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:00:e1:08:b1:3e:c7:9f:a3:8a:1a:15:31:b4:f6:b9:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29fa7dd63f2e2d87b5f7850093c743bbfbe14e44
Validity
Not Before: Apr 4 12:57:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1753967b4df7fc3b99f898eb8ac0a1e8f62f8b5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:10:f1:bc:22:c1:f8:29:56:d7:6d:6c:3b:47:
0b:73:62:27:66:b0:9b:3d:cb:49:fa:4d:a7:52:4f:
9d:a5:cd:45:b7:53:86:aa:51:53:b6:69:67:5a:f3:
98:2c:cf:a7:2c:bf:2a:10:34:5c:e6:70:a4:a5:29:
d4:31:e9:1d:e0:89:03:87:30:e9:ec:d1:af:4b:4d:
31:29:6b:5c:b3:67:29:88:0e:6b:29:28:3d:4a:84:
47:39:3d:f6:dd:52:27:4f:c6:20:0b:b5:c9:ec:e9:
9f:1f:5b:05:85:17:ed:6f:b9:38:c3:3d:a5:0b:51:
2b:6a:77:c0:e7:5e:27:ec:6e:a1:73:be:f9:f3:ee:
75:68:5d:14:64:5b:0b:22:60:78:5f:18:d3:3b:a8:
97:73:1e:49:41:8a:c8:96:64:47:ce:5e:88:fe:e4:
07:53:68:8a:96:54:d3:d3:fb:92:b2:5e:2b:be:21:
99:be:e8:09:7e:7c:6e:bd:31:f0:0c:cf:09:84:38:
dd:0f:6b:2d:53:20:50:bf:2b:8a:c3:19:4a:46:7f:
df:b8:41:1c:7a:b5:d3:a0:4a:66:2a:c1:7c:de:e9:
b2:b2:85:aa:4c:a0:cf:f7:26:58:93:ef:2e:01:2b:
c1:41:06:63:78:12:d1:eb:2d:70:5b:81:43:60:9d:
ba:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:53:96:7B:4D:F7:FC:3B:99:F8:98:EB:8A:C0:A1:E8:F6:2F:8B:5B
X509v3 Authority Key Identifier:
keyid:29:FA:7D:D6:3F:2E:2D:87:B5:F7:85:00:93:C7:43:BB:FB:E1:4E:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kfp91j8uLYe194UAk8dDu_vhTkQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/F1OWe033_DuZ-JjrisCh6PYvi1s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:c887::/33
Signature Algorithm: sha256WithRSAEncryption
4c:60:59:3c:97:4e:84:77:5d:2c:7a:75:1a:21:19:41:c7:ba:
30:8a:69:5e:18:8a:73:e3:29:0e:f5:6b:50:f8:5c:44:88:4d:
6e:c7:00:b0:b6:ca:c1:86:2f:08:f2:b4:70:84:54:bf:3f:87:
82:0e:5a:44:9b:56:76:51:71:be:ca:d4:35:2c:da:ad:00:06:
cf:f3:dc:7a:8d:4f:2b:9f:4d:2f:29:34:83:df:e0:9f:70:0e:
0e:44:00:7f:c6:55:17:76:d9:7f:05:22:9e:cb:46:82:b8:59:
31:db:cf:d0:c9:9c:dd:b3:16:b0:cb:7b:6c:7c:cb:78:44:9e:
c1:fa:58:c1:fa:92:a5:01:00:cf:9f:2f:6f:59:2a:db:be:d6:
f6:b3:f0:c9:4a:70:9a:c7:e6:6c:e5:32:1b:24:d9:1d:c8:99:
40:6d:df:e9:86:8a:52:5c:84:41:19:f8:35:64:bb:5d:e8:cc:
e3:b0:e9:be:3b:e0:12:e8:2f:d3:9f:89:db:17:62:18:e8:96:
41:f8:8e:81:de:f4:91:cc:2c:ea:08:e6:3e:2c:2a:27:94:eb:
80:d6:f0:8c:41:83:39:cc:3a:6f:e8:f9:5e:0d:55:79:6f:5a:
b5:3a:9c:2a:a2:38:9c:8c:fd:9c:29:5e:8a:1a:d3:99:8f:17:
b9:60:3c:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:25 2025 by rpki-client on console.sobornost.net