Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/e106c3-0b1f-4010-86f1-65a46c8e41e9/1/2kjnNcqey0OLGfySAKowHBG5Guo.roa
File: 2kjnNcqey0OLGfySAKowHBG5Guo.roa (raw, json)
Hash identifier: 9jemYzIQoMUwDIBYN/+zDuFoechTYsBGwQpOaXYxFKk=
Subject key identifier: DA:48:E7:35:CA:9E:CB:43:8B:19:FC:92:00:AA:30:1C:11:B9:1A:EA
Certificate issuer: /CN=3d0483538737453e2f57ffb57499c3922e83636d
Certificate serial: 0194258FCDC8C935FE277267EDC0C22888FA
Authority key identifier: 3D:04:83:53:87:37:45:3E:2F:57:FF:B5:74:99:C3:92:2E:83:63:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PQSDU4c3RT4vV_-1dJnDki6DY20.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/e106c3-0b1f-4010-86f1-65a46c8e41e9/1/2kjnNcqey0OLGfySAKowHBG5Guo.roa
Signing time: Thu 02 Jan 2025 05:49:28 +0000
ROA not before: Thu 02 Jan 2025 05:49:28 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214339
IP address blocks: 2a07:6d40:2::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:cd:c8:c9:35:fe:27:72:67:ed:c0:c2:28:88:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d0483538737453e2f57ffb57499c3922e83636d
Validity
Not Before: Jan 2 05:49:28 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=da48e735ca9ecb438b19fc9200aa301c11b91aea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:c2:3d:77:56:6d:39:47:db:58:aa:d5:2c:11:
16:7d:2e:63:e2:54:cd:dc:c6:73:eb:b8:74:34:07:
92:a5:6c:3a:40:b7:c1:29:83:59:ec:b1:b5:e3:b5:
53:62:1e:8e:9e:84:9a:c8:4b:f0:8c:8a:5f:6c:0b:
24:f6:36:8e:d0:5c:3c:8a:a2:0f:e7:f0:0c:78:a4:
2d:f5:33:9f:a9:2d:46:6d:e0:6f:52:5f:5f:89:35:
58:37:52:d2:5e:5e:b6:25:b9:2c:a2:2e:b2:f4:a5:
7e:f6:e9:22:d6:84:fb:df:42:e6:79:4f:a9:60:19:
6d:11:06:31:72:dc:4b:80:c9:02:b9:9b:68:ec:9e:
77:3e:95:1d:41:5e:11:ff:59:40:ed:e0:94:9b:85:
b1:5f:32:5d:ec:f4:86:eb:62:7c:2b:da:5b:99:21:
fd:5b:11:58:fc:23:e3:53:e5:f0:02:7c:e4:c7:ab:
f6:3b:87:e6:d6:f6:2e:2b:eb:94:dd:ca:e3:0e:32:
d1:19:ba:0d:f9:9f:71:b3:1e:56:aa:75:cf:04:4f:
00:4d:89:d4:2e:19:6a:0f:33:bd:4d:92:6e:03:b5:
b7:e1:63:fb:04:cf:48:2c:61:36:9e:5f:52:44:06:
0d:d1:c7:6c:d8:43:24:07:6b:1e:08:32:05:2e:22:
3c:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:48:E7:35:CA:9E:CB:43:8B:19:FC:92:00:AA:30:1C:11:B9:1A:EA
X509v3 Authority Key Identifier:
keyid:3D:04:83:53:87:37:45:3E:2F:57:FF:B5:74:99:C3:92:2E:83:63:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PQSDU4c3RT4vV_-1dJnDki6DY20.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/e106c3-0b1f-4010-86f1-65a46c8e41e9/1/2kjnNcqey0OLGfySAKowHBG5Guo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/e106c3-0b1f-4010-86f1-65a46c8e41e9/1/PQSDU4c3RT4vV_-1dJnDki6DY20.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:6d40:2::/48
Signature Algorithm: sha256WithRSAEncryption
76:72:f0:8c:74:17:1c:bc:ab:56:d4:fa:2e:43:49:3f:a4:c0:
f5:24:23:13:f0:c3:cf:93:fd:97:8e:a9:88:ba:e8:55:5e:40:
bc:3b:01:62:9b:95:0b:e9:1d:53:d4:a8:bb:4d:d7:1c:85:e9:
d6:ef:d5:4d:c1:d5:21:46:fc:2c:64:89:1f:68:e7:ba:66:92:
6a:b9:78:ca:e3:4e:7b:3f:3b:3d:32:fc:08:8c:8c:1f:b5:87:
bd:55:34:c1:00:70:44:b8:e1:7b:8f:7e:34:2c:48:9d:1c:dd:
22:09:58:27:89:23:fa:92:07:ba:f5:e0:ec:c9:a8:64:8c:29:
52:6e:71:6d:8b:67:b8:fa:49:7c:b0:3f:48:6b:36:22:c5:24:
c9:a0:22:d5:de:00:39:88:11:99:d7:47:68:4c:fb:fe:7f:5c:
45:f6:66:42:b2:5a:d2:bd:5c:3c:59:34:a7:f0:40:34:f4:90:
71:0a:26:74:b4:78:eb:7c:a8:2b:f6:ea:c3:23:09:1c:8f:78:
7b:32:8c:07:db:77:b3:87:10:12:3b:4f:3f:5c:2a:86:9b:20:
a4:a4:a9:5f:4a:ed:b4:79:c9:cb:5c:e4:8a:cb:46:c9:0b:af:
fe:9f:56:e6:fe:0f:3a:7a:fe:a7:e3:0d:57:ea:9d:70:46:cc:
2c:fe:00:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:27 2025 by rpki-client on console.sobornost.net