Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/40658e-c1a5-4858-8912-00ceeb6a414f/1/ZhxwMRHWErqoZg_Itz4BRM1Zy1g.roa
File: ZhxwMRHWErqoZg_Itz4BRM1Zy1g.roa (raw, json)
Hash identifier: pA1I1yaFQSWAdVvtp/IDWYB864SqtxE1eJEw16TKrNs=
Subject key identifier: 66:1C:70:31:11:D6:12:BA:A8:66:0F:C8:B7:3E:01:44:CD:59:CB:58
Certificate issuer: /CN=665e17c08acdc77e944b2839508f1fd711e8e97b
Certificate serial: 019424B3F2CADCE9EB10A44C75915A847B57
Authority key identifier: 66:5E:17:C0:8A:CD:C7:7E:94:4B:28:39:50:8F:1F:D7:11:E8:E9:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zl4XwIrNx36USyg5UI8f1xHo6Xs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/40658e-c1a5-4858-8912-00ceeb6a414f/1/ZhxwMRHWErqoZg_Itz4BRM1Zy1g.roa
Signing time: Thu 02 Jan 2025 01:49:20 +0000
ROA not before: Thu 02 Jan 2025 01:49:20 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 200216
IP address blocks: 2a13:6940::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:f2:ca:dc:e9:eb:10:a4:4c:75:91:5a:84:7b:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=665e17c08acdc77e944b2839508f1fd711e8e97b
Validity
Not Before: Jan 2 01:49:20 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=661c703111d612baa8660fc8b73e0144cd59cb58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:93:65:db:8e:f4:cb:c5:bb:c0:47:5e:7e:0b:
8e:85:25:f1:28:ef:b4:11:17:22:28:ad:de:a1:0e:
ba:f0:cf:09:d7:ad:da:00:b2:d8:a6:de:75:b6:05:
e5:35:91:1d:50:90:2c:cb:35:d0:0e:3d:bb:ab:39:
b2:17:a7:7b:92:d0:35:b6:b0:04:de:fb:93:82:c0:
82:d4:0c:04:57:3a:a7:46:70:58:1c:d3:95:56:3b:
63:b7:06:b7:b1:23:63:3b:66:1c:81:9e:4c:d3:04:
a7:89:d0:cd:30:73:4c:ad:57:d0:08:2a:e0:90:e3:
85:b1:63:1f:4f:36:01:d6:a3:14:1d:11:e6:12:c5:
13:0a:b3:40:46:aa:96:07:11:e3:66:2b:74:1f:97:
d8:74:b1:3c:93:ab:e4:fb:90:de:3c:84:1a:d7:ba:
0d:6c:7d:c4:9a:e2:5d:bb:d8:4b:d3:0d:12:9e:bf:
e3:74:e4:00:e1:65:eb:57:b8:04:a8:9e:90:2f:2c:
77:be:97:ce:d6:2d:a1:76:3b:10:67:0c:27:37:9a:
0f:51:16:59:6e:12:8f:0a:c7:50:8e:69:2b:c4:90:
a0:0c:92:09:95:23:5d:a2:14:ab:af:94:dd:47:51:
bb:bf:65:65:65:70:4e:ad:e5:20:ee:ec:2c:7c:06:
49:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:1C:70:31:11:D6:12:BA:A8:66:0F:C8:B7:3E:01:44:CD:59:CB:58
X509v3 Authority Key Identifier:
keyid:66:5E:17:C0:8A:CD:C7:7E:94:4B:28:39:50:8F:1F:D7:11:E8:E9:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zl4XwIrNx36USyg5UI8f1xHo6Xs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/40658e-c1a5-4858-8912-00ceeb6a414f/1/ZhxwMRHWErqoZg_Itz4BRM1Zy1g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/40658e-c1a5-4858-8912-00ceeb6a414f/1/Zl4XwIrNx36USyg5UI8f1xHo6Xs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:6940::/29
Signature Algorithm: sha256WithRSAEncryption
47:69:62:f6:08:23:2d:ce:c9:20:5c:c9:b6:38:ac:99:0b:44:
06:39:e0:c7:d1:07:9c:8e:c2:39:12:25:aa:ee:c3:23:b1:58:
18:48:01:ee:ac:26:18:3b:ff:a4:22:d9:cb:32:ef:ba:54:15:
dd:7b:4d:aa:10:23:8d:8a:61:11:c1:5e:fd:13:11:48:8b:0f:
f8:47:88:07:37:61:0f:39:50:d0:5c:2d:c6:ca:4d:3d:8b:15:
2c:5b:60:4e:56:ed:64:dc:2d:4c:99:e2:85:4b:c6:5a:65:d1:
b8:96:a0:9d:54:3d:c0:27:b3:8c:af:e0:89:43:ff:80:25:9b:
7f:36:bd:7e:2c:a6:43:8c:3d:1b:66:b7:7d:23:3c:b5:b7:2c:
ed:ed:99:e6:a6:15:01:9b:ac:93:f5:50:4b:ac:20:59:2b:6c:
95:e4:ba:de:91:4c:b9:22:a7:38:9f:be:cc:29:b1:bc:94:3f:
30:e1:f1:75:ac:c1:69:93:b8:bb:11:11:24:43:82:e2:0f:db:
dd:b7:98:26:57:67:99:3d:7c:49:3e:2d:78:01:56:60:04:28:
db:70:81:68:72:c0:44:69:99:91:e8:4d:1e:d4:5b:fd:3e:67:
e5:cf:93:5a:af:0e:21:f1:3a:46:7a:a6:ba:cb:af:44:65:eb:
00:ba:6c:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:27 2025 by rpki-client on console.sobornost.net