Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/4dbd63-76b1-4b03-9dea-50c16bdd5c24/1/1fEhDLG2T1y1zCMSekjeKTFgEiE.roa
File: 1fEhDLG2T1y1zCMSekjeKTFgEiE.roa (raw, json)
Hash identifier: qkZRZL3uEJ/IofMfb0sGApiJ8jObyAIyttVh0abUKHc=
Subject key identifier: D5:F1:21:0C:B1:B6:4F:5C:B5:CC:23:12:7A:48:DE:29:31:60:12:21
Certificate issuer: /CN=49f7c1a4677eb7826dae69de01a699b6201d6244
Certificate serial: 019420D5B932D0313E7CB5B08561DF47CA96
Authority key identifier: 49:F7:C1:A4:67:7E:B7:82:6D:AE:69:DE:01:A6:99:B6:20:1D:62:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SffBpGd-t4JtrmneAaaZtiAdYkQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/4dbd63-76b1-4b03-9dea-50c16bdd5c24/1/1fEhDLG2T1y1zCMSekjeKTFgEiE.roa
Signing time: Wed 01 Jan 2025 07:47:44 +0000
ROA not before: Wed 01 Jan 2025 07:47:44 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 207592
IP address blocks: 2a02:d480:700::/42 maxlen: 42
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d5:b9:32:d0:31:3e:7c:b5:b0:85:61:df:47:ca:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49f7c1a4677eb7826dae69de01a699b6201d6244
Validity
Not Before: Jan 1 07:47:44 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d5f1210cb1b64f5cb5cc23127a48de2931601221
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:75:d5:b1:db:e3:01:bc:42:d3:de:4d:85:9c:
3f:fe:ab:44:8a:9d:5f:c3:99:dd:1a:04:d3:05:7f:
50:12:d5:c8:42:1b:a9:ac:5a:07:2d:4c:33:a1:dc:
0f:76:d1:c7:a0:c5:78:0b:54:fa:ca:0e:d8:a8:4e:
5d:9d:c1:77:4e:80:3c:7b:35:ec:84:80:05:37:f1:
e5:2b:4a:8f:60:60:5d:d6:f8:87:8f:50:09:75:e7:
16:39:f2:90:69:76:09:00:d3:62:21:ec:ed:d2:11:
ef:fa:f3:6e:9d:b2:42:26:d7:49:d2:93:d2:a2:7e:
9f:e7:c5:7d:af:67:ca:9b:e1:2e:81:b3:4e:5c:38:
c2:1a:20:a7:3d:2f:5c:c5:74:96:f7:d9:f2:ed:41:
fe:5f:f2:93:24:ef:5d:89:b7:b2:31:4a:51:0d:e5:
79:b2:02:36:ab:85:44:9f:a1:6d:c7:df:6a:8b:07:
5b:c1:b7:7c:bb:db:aa:51:24:18:45:51:7d:ac:56:
43:30:07:c6:6c:07:34:83:d6:b7:3b:31:ae:44:2d:
03:c4:10:a4:8c:d7:fb:31:a3:42:ed:a6:1d:d3:0d:
79:2b:e0:fe:6b:90:fc:0f:65:b1:d8:61:9f:19:06:
1a:b4:65:a5:3f:8a:c7:85:e6:a1:56:34:ab:c7:34:
fd:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:F1:21:0C:B1:B6:4F:5C:B5:CC:23:12:7A:48:DE:29:31:60:12:21
X509v3 Authority Key Identifier:
keyid:49:F7:C1:A4:67:7E:B7:82:6D:AE:69:DE:01:A6:99:B6:20:1D:62:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SffBpGd-t4JtrmneAaaZtiAdYkQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/4dbd63-76b1-4b03-9dea-50c16bdd5c24/1/1fEhDLG2T1y1zCMSekjeKTFgEiE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/4dbd63-76b1-4b03-9dea-50c16bdd5c24/1/SffBpGd-t4JtrmneAaaZtiAdYkQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:d480:700::/42
Signature Algorithm: sha256WithRSAEncryption
0b:b9:64:ab:1c:32:aa:50:f7:c7:18:62:8d:a7:6f:55:e6:d5:
2b:a9:de:42:30:7e:45:c0:44:60:68:db:a5:d0:d7:4a:a3:9f:
a3:92:49:93:f7:28:0d:a3:54:62:d1:b1:ea:1c:36:17:82:92:
3c:16:30:41:56:8a:51:83:95:02:d9:83:d9:b6:49:e4:3f:a5:
63:6e:28:17:33:13:e8:ce:86:64:4e:87:00:0e:42:70:1b:a3:
9a:ce:9e:7a:87:7e:92:08:80:e5:35:9c:16:20:39:e1:d4:84:
7c:68:3a:52:ae:4c:b8:2d:6a:f2:aa:c5:56:68:aa:de:6c:1f:
42:0c:b6:de:a3:63:ed:c8:6b:4a:c3:a1:67:fd:f1:ce:9a:eb:
fb:12:88:a5:17:ad:12:ee:91:10:27:7c:a8:75:5e:56:63:78:
44:bf:af:f4:80:7f:da:37:21:1b:19:ff:79:98:79:36:72:ed:
6d:c6:61:4f:64:b8:d7:b2:7a:73:70:b1:9c:b3:a9:3a:6e:c3:
4c:86:91:0c:77:f7:0b:fd:45:0b:5c:ca:34:cf:82:dd:a7:ea:
c1:79:70:38:5c:f2:3a:02:8b:97:1b:9d:14:cc:9f:c0:12:23:
27:1b:83:df:ff:5a:13:be:01:e8:82:93:a4:35:a2:61:80:66:
37:2c:19:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:33 2025 by rpki-client on console.sobornost.net