Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/0a96c9-18ea-4753-a2c5-ac9acd352842/1/TZsdWn_ShXFxIkxKlQy8DibZR2E.roa
File: TZsdWn_ShXFxIkxKlQy8DibZR2E.roa (raw, json)
Hash identifier: co6aRk3sBWvyMyvUq+M5GzZIlIBl72OUVtfVngSrNNU=
Subject key identifier: 4D:9B:1D:5A:7F:D2:85:71:71:22:4C:4A:95:0C:BC:0E:26:D9:47:61
Certificate issuer: /CN=b81bb21b5c1889030d365a549f21d5b426f9dda8
Certificate serial: 01942444A7FD14F3CF543D6AB7887A4DAB35
Authority key identifier: B8:1B:B2:1B:5C:18:89:03:0D:36:5A:54:9F:21:D5:B4:26:F9:DD:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uBuyG1wYiQMNNlpUnyHVtCb53ag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/0a96c9-18ea-4753-a2c5-ac9acd352842/1/TZsdWn_ShXFxIkxKlQy8DibZR2E.roa
Signing time: Wed 01 Jan 2025 23:47:46 +0000
ROA not before: Wed 01 Jan 2025 23:47:46 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 35062
IP address blocks: 2001:678:4a8::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:44:a7:fd:14:f3:cf:54:3d:6a:b7:88:7a:4d:ab:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b81bb21b5c1889030d365a549f21d5b426f9dda8
Validity
Not Before: Jan 1 23:47:46 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4d9b1d5a7fd2857171224c4a950cbc0e26d94761
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:2a:1e:d0:ac:7d:2b:c8:c9:df:20:d1:c0:0c:
37:12:94:5a:3e:40:87:98:85:22:2d:a1:b8:7a:c0:
b3:f8:a5:8f:06:24:73:27:5a:a4:8c:c6:44:fa:68:
9a:88:72:17:a2:f8:16:1c:a5:24:cb:d1:d0:49:2c:
f3:f6:7a:73:c5:03:de:79:59:77:ac:c1:17:9c:18:
9b:6b:4e:e7:d3:9a:15:3e:89:66:c3:7e:81:db:ba:
cb:3f:8f:ae:38:2d:19:21:c0:b2:ae:f0:c7:c5:c1:
24:18:e1:b7:96:e4:8b:b0:2c:d9:66:ed:c4:50:05:
b6:d3:66:ed:50:96:91:5a:06:a6:5f:b8:1b:1f:f9:
c8:86:9a:90:ba:3e:cb:d1:1b:71:c0:8a:cb:f1:66:
1e:e4:60:7a:e3:9e:96:61:08:d6:86:f0:0f:b0:3b:
1b:00:58:bc:33:c1:91:a4:0a:ff:f0:71:0b:54:3f:
1e:d8:a0:02:3b:1f:1e:49:23:7b:ce:98:5b:0f:77:
92:e7:7b:5c:f2:7f:54:5b:ed:f9:70:de:0e:05:99:
06:de:3b:88:9b:d9:10:c0:d7:9e:5b:62:63:9e:e6:
52:6a:a7:86:cc:a5:c4:f6:8e:ae:b0:0f:a5:db:55:
f4:6e:f0:78:6f:37:1a:b7:10:08:d7:fe:84:31:55:
1e:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:9B:1D:5A:7F:D2:85:71:71:22:4C:4A:95:0C:BC:0E:26:D9:47:61
X509v3 Authority Key Identifier:
keyid:B8:1B:B2:1B:5C:18:89:03:0D:36:5A:54:9F:21:D5:B4:26:F9:DD:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uBuyG1wYiQMNNlpUnyHVtCb53ag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/0a96c9-18ea-4753-a2c5-ac9acd352842/1/TZsdWn_ShXFxIkxKlQy8DibZR2E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/0a96c9-18ea-4753-a2c5-ac9acd352842/1/uBuyG1wYiQMNNlpUnyHVtCb53ag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:4a8::/48
Signature Algorithm: sha256WithRSAEncryption
c9:dc:90:39:10:06:05:bb:98:76:5f:69:e9:77:0d:1b:d5:4d:
f1:bc:e9:3b:bd:a6:55:41:a3:bf:f0:fb:06:2b:20:02:43:88:
d5:ee:10:f3:e5:3d:e7:99:07:70:95:91:d7:a1:30:74:95:50:
a0:6b:ad:e6:50:62:69:44:f9:3c:eb:97:78:e4:f9:07:8a:c1:
6a:f2:14:c8:68:0c:69:6b:77:e2:5d:43:de:b3:fb:3e:58:71:
15:a9:e7:31:3c:49:9e:73:dc:4f:21:1a:5a:5b:97:9d:57:cc:
1f:f9:bf:9c:d1:13:a1:e0:f4:db:2e:73:4b:20:36:a2:aa:da:
48:8d:6d:5c:93:0c:c6:a0:85:3b:e2:41:01:aa:9e:11:96:1a:
be:0c:19:96:de:a8:67:e7:31:f3:31:d5:e2:5d:13:47:d0:0c:
19:8e:94:4f:69:59:20:3c:1c:bc:64:85:b4:76:3c:7d:bf:d9:
46:b9:ea:7c:97:93:3f:f0:a8:2c:37:4c:24:ea:ac:59:2c:1d:
3c:61:ad:74:9e:71:01:c0:7c:41:de:59:14:12:2c:70:28:02:
27:14:21:d8:5f:4f:10:27:a0:be:22:35:05:0a:df:73:28:77:
20:4e:a3:11:ea:eb:27:d5:ca:74:d0:a0:05:e8:64:1f:30:c1:
1d:63:15:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:33 2025 by rpki-client on console.sobornost.net