Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Y68HM_eE8K1w4SS6fxm68_4816Q.roa
File: Y68HM_eE8K1w4SS6fxm68_4816Q.roa (raw, json)
Hash identifier: j5XSBxx8t0t2IG8jaeix/JPoU5Vp2pcHE0yvoVN43nY=
Subject key identifier: 63:AF:07:33:F7:84:F0:AD:70:E1:24:BA:7F:19:BA:F3:FE:3C:D7:A4
Certificate issuer: /CN=29fa7dd63f2e2d87b5f7850093c743bbfbe14e44
Certificate serial: 019600DD5F745B12B3549238DC0DD96E7DCA
Authority key identifier: 29:FA:7D:D6:3F:2E:2D:87:B5:F7:85:00:93:C7:43:BB:FB:E1:4E:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kfp91j8uLYe194UAk8dDu_vhTkQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Y68HM_eE8K1w4SS6fxm68_4816Q.roa
Signing time: Fri 04 Apr 2025 12:53:49 +0000
ROA not before: Fri 04 Apr 2025 12:53:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 209709
IP address blocks: 2a14:c880:8000::/33 maxlen: 33
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:00:dd:5f:74:5b:12:b3:54:92:38:dc:0d:d9:6e:7d:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29fa7dd63f2e2d87b5f7850093c743bbfbe14e44
Validity
Not Before: Apr 4 12:53:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=63af0733f784f0ad70e124ba7f19baf3fe3cd7a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:5d:e8:05:e9:fb:6f:8d:01:ed:52:7d:1c:23:
27:2e:6c:e0:36:9e:80:10:ea:1a:d0:54:84:d4:42:
4b:ae:77:3d:f4:2a:15:82:d7:97:ed:fd:d8:a7:2f:
3a:91:38:23:10:b6:c5:5f:9e:1a:97:d5:4b:6c:43:
22:28:c8:64:ae:fd:a0:7d:24:9e:56:6e:86:d7:01:
da:24:7d:d7:e9:c7:9d:c5:bf:dd:e8:ff:11:ea:0b:
67:af:ab:af:5d:40:05:c2:d1:41:8e:20:cc:57:53:
ec:8b:33:db:68:10:ab:3d:27:cb:cc:cf:34:2c:01:
0e:4a:14:ea:25:e2:18:d9:cd:33:78:e4:d2:0c:c8:
48:60:e9:0d:b1:83:aa:35:ff:81:a9:62:37:37:11:
33:dc:b0:69:d1:7c:b1:cf:ae:06:c2:cf:37:26:8e:
a3:3b:7d:1f:dc:ce:1e:8f:1d:e5:c4:9c:08:32:21:
cc:f4:6d:5d:94:e8:5c:e6:48:93:39:7c:42:05:17:
3e:20:86:9b:17:6d:4c:02:83:0f:f6:aa:b2:e1:d2:
ee:20:21:8d:5d:aa:43:b3:a2:7e:b9:dd:77:79:d5:
bf:2c:cb:7a:8e:2b:46:a5:57:41:8d:c4:ba:d0:93:
9d:c2:a3:7f:fc:cc:6e:a6:08:e3:d5:ae:49:34:06:
b6:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:AF:07:33:F7:84:F0:AD:70:E1:24:BA:7F:19:BA:F3:FE:3C:D7:A4
X509v3 Authority Key Identifier:
keyid:29:FA:7D:D6:3F:2E:2D:87:B5:F7:85:00:93:C7:43:BB:FB:E1:4E:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kfp91j8uLYe194UAk8dDu_vhTkQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Y68HM_eE8K1w4SS6fxm68_4816Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:c880:8000::/33
Signature Algorithm: sha256WithRSAEncryption
2e:52:c2:90:39:17:4e:b2:c9:45:48:ea:7d:6c:6d:9e:66:3a:
69:ef:71:ce:c6:c5:d2:e6:e2:a4:21:52:d4:7d:bd:46:01:1c:
bf:63:3d:dc:15:03:de:98:d1:95:d1:83:14:f7:71:c6:a1:4a:
d6:b9:d2:75:b9:aa:e6:dc:69:60:2a:ca:19:34:a4:fc:15:96:
34:94:84:b9:ff:b7:e8:5c:9f:34:d9:41:5b:ef:f6:b4:c7:3c:
9e:fb:f9:4e:db:30:01:0a:39:a1:9b:b3:ac:45:17:92:7b:36:
d1:c0:4c:47:13:74:1f:7c:1d:a0:9b:8f:7f:44:a7:98:25:31:
9d:48:e7:c2:60:55:04:12:4e:21:35:d5:9f:68:1b:72:88:bc:
4d:a4:ea:db:7a:e8:23:39:8f:8e:5e:2a:47:ec:c2:08:d0:87:
75:f3:63:ab:33:2e:d1:55:d9:57:33:03:30:76:05:4c:63:70:
89:a0:13:66:21:aa:e3:d4:f4:f4:14:fe:c8:83:0a:67:0a:61:
eb:85:9d:36:bd:43:90:3f:8f:b8:a8:e2:9d:24:03:4b:b7:a8:
b8:ce:2b:4a:a5:a6:7e:09:c4:64:2a:2f:3f:6b:fb:5a:2a:58:
ee:08:75:e0:9a:6f:c3:e0:61:d2:76:60:c9:a3:d2:29:1a:5c:
82:c7:84:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:25 2025 by rpki-client on console.sobornost.net