Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/3e2165-3bb5-45c3-989a-2953894b1f6d/1/Y_jo-YJu2PbRSOLAQ7xTf_r0vtA.roa
File: Y_jo-YJu2PbRSOLAQ7xTf_r0vtA.roa (raw, json)
Hash identifier: QUNrldTiuNEx4ojoaKc5e0ZjUX5UdNXjzYCNRvPqGvw=
Subject key identifier: 63:F8:E8:F9:82:6E:D8:F6:D1:48:E2:C0:43:BC:53:7F:FA:F4:BE:D0
Certificate issuer: /CN=351a14ce9d25239b92fe5abce532515044c1aba4
Certificate serial: 01942368F4B224A2D3C412CB6E3ACD311023
Authority key identifier: 35:1A:14:CE:9D:25:23:9B:92:FE:5A:BC:E5:32:51:50:44:C1:AB:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NRoUzp0lI5uS_lq85TJRUETBq6Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/3e2165-3bb5-45c3-989a-2953894b1f6d/1/Y_jo-YJu2PbRSOLAQ7xTf_r0vtA.roa
Signing time: Wed 01 Jan 2025 19:47:48 +0000
ROA not before: Wed 01 Jan 2025 19:47:48 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 57640
IP address blocks: 2a05:91c2::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:68:f4:b2:24:a2:d3:c4:12:cb:6e:3a:cd:31:10:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=351a14ce9d25239b92fe5abce532515044c1aba4
Validity
Not Before: Jan 1 19:47:48 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=63f8e8f9826ed8f6d148e2c043bc537ffaf4bed0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:78:f2:0b:04:61:6e:85:ca:c3:68:4d:03:7d:
5f:90:8d:95:bf:4d:25:9c:10:35:81:e0:80:67:7e:
b2:d2:5d:29:ca:47:20:6c:25:79:8b:95:40:a2:ed:
53:a2:19:f9:1f:92:9f:5e:eb:4a:70:fb:95:94:dd:
33:29:5c:c4:17:d3:51:1e:9e:9c:af:6a:d3:f1:c4:
83:9a:94:93:f4:b0:07:8a:4c:06:1d:63:e4:74:8a:
a5:f9:61:30:f5:8b:69:02:5e:fb:a1:b5:16:19:95:
7a:1e:27:47:7b:48:ac:67:2d:b3:63:8d:7c:3c:df:
b4:ec:54:c6:7c:2c:d0:6d:77:dd:68:ca:b7:48:95:
b2:95:9d:3e:73:b2:cb:4b:f1:1d:a1:92:f1:51:56:
1c:5f:cb:6b:0d:f0:fc:22:4b:4e:95:e9:ef:d4:93:
74:0f:3c:07:8e:5c:cd:d6:2d:29:d4:f3:cc:09:09:
a6:85:27:40:67:de:37:fb:89:e3:49:f8:59:fe:21:
0e:cb:b5:9d:dc:df:fa:e7:57:c0:cd:d4:2a:67:c6:
09:46:4e:2b:60:57:26:72:4a:9c:c5:c3:2a:3a:13:
d6:92:85:25:5b:61:cf:52:f8:c5:08:4d:6e:0d:44:
d3:d7:9c:a8:fc:f8:8c:ee:aa:86:36:df:56:b4:27:
fc:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:F8:E8:F9:82:6E:D8:F6:D1:48:E2:C0:43:BC:53:7F:FA:F4:BE:D0
X509v3 Authority Key Identifier:
keyid:35:1A:14:CE:9D:25:23:9B:92:FE:5A:BC:E5:32:51:50:44:C1:AB:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NRoUzp0lI5uS_lq85TJRUETBq6Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/3e2165-3bb5-45c3-989a-2953894b1f6d/1/Y_jo-YJu2PbRSOLAQ7xTf_r0vtA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/3e2165-3bb5-45c3-989a-2953894b1f6d/1/NRoUzp0lI5uS_lq85TJRUETBq6Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:91c2::/48
Signature Algorithm: sha256WithRSAEncryption
45:7f:07:9f:07:e4:4c:f2:9e:b2:f5:23:cf:b2:07:0e:8e:d4:
5e:4f:b1:7a:47:06:7e:76:fa:d2:87:5c:78:1d:a9:bf:de:47:
03:96:95:02:86:db:82:df:c8:9c:f6:68:97:2c:6c:44:da:ec:
67:d7:88:a7:99:8c:0a:0e:4e:84:4b:d4:c7:f4:81:70:77:65:
4a:fc:0e:ae:1d:b8:33:4c:f1:09:a0:d1:18:db:e9:3c:51:98:
b8:d4:39:2a:7b:65:ac:2e:83:07:e6:e9:1c:ef:9c:8a:47:05:
85:77:b0:29:7a:52:3a:aa:be:76:0f:aa:ee:70:dd:33:45:ef:
58:93:03:a6:e0:81:4b:e3:98:31:29:91:7f:3b:fb:2c:1b:37:
54:c2:0b:9a:75:6e:5e:74:66:9d:d4:5f:7c:14:d0:1d:30:ca:
c7:55:6c:e5:25:da:5a:73:27:e5:cf:31:f3:c0:79:b6:4e:08:
31:34:20:31:78:d0:fb:42:4f:c2:95:1a:78:2e:61:7b:e9:ce:
d1:8d:5c:61:61:80:29:7b:9d:eb:75:54:92:b9:cd:c2:24:56:
e0:7b:bd:a2:71:30:8f:48:81:72:4b:bc:fd:e7:6c:41:56:ab:
cb:eb:4a:48:82:d7:bb:34:81:71:de:b9:e7:60:0b:b4:31:eb:
58:1d:d1:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:32 2025 by rpki-client on console.sobornost.net