Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/b59a8b-8753-4094-bba7-eccc2c1b1c23/1/MDCWnt2rzIXWYWaxPmc0KCazQYc.roa
File: MDCWnt2rzIXWYWaxPmc0KCazQYc.roa (raw, json)
Hash identifier: 9x3sa/eMNtozgLkEhCL0NnGHAKtQHds50tsgQhEMBDs=
Subject key identifier: 30:30:96:9E:DD:AB:CC:85:D6:61:66:B1:3E:67:34:28:26:B3:41:87
Certificate issuer: /CN=b78150f04c3234dbf9f11e11079932802d268fb1
Certificate serial: 019426D9AFED9B05E579461EC265FA0AD12B
Authority key identifier: B7:81:50:F0:4C:32:34:DB:F9:F1:1E:11:07:99:32:80:2D:26:8F:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t4FQ8EwyNNv58R4RB5kygC0mj7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/b59a8b-8753-4094-bba7-eccc2c1b1c23/1/MDCWnt2rzIXWYWaxPmc0KCazQYc.roa
Signing time: Thu 02 Jan 2025 11:49:48 +0000
ROA not before: Thu 02 Jan 2025 11:49:48 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 47951
IP address blocks: 2a13:9740::/29 maxlen: 29
2a13:9740::/30 maxlen: 30
2a13:9744::/30 maxlen: 30
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:af:ed:9b:05:e5:79:46:1e:c2:65:fa:0a:d1:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b78150f04c3234dbf9f11e11079932802d268fb1
Validity
Not Before: Jan 2 11:49:48 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3030969eddabcc85d66166b13e67342826b34187
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:e1:1d:f1:18:8f:9f:71:d4:a3:57:fc:ee:11:
94:d5:b7:8c:77:ac:cb:ba:38:41:c2:42:db:40:3b:
1f:d3:09:30:ed:49:2a:c9:18:ce:2a:e6:3e:14:f7:
64:b5:5d:d0:f9:ed:f1:23:39:a0:45:12:2a:8d:5b:
69:dd:7e:49:ce:fe:7a:45:df:9c:4e:2d:58:f1:42:
fa:25:7a:2c:13:2f:7b:bd:51:12:63:75:b0:11:46:
c2:4c:a0:b6:d4:80:13:47:13:cd:3c:2e:a8:31:cc:
82:08:70:99:68:f6:60:21:5d:56:79:a5:38:6e:45:
fc:89:c6:e4:a2:60:2b:fe:40:bc:7e:72:f0:e5:f3:
32:21:1a:8d:16:1d:26:04:a2:38:d0:3f:1f:1c:9c:
04:40:c3:a5:76:e9:b3:f4:c9:8b:6b:f3:49:73:c9:
57:22:80:6b:3f:09:51:46:1f:a2:41:9a:f2:ad:52:
6d:ca:1f:f1:a5:5b:87:77:20:b9:bb:35:08:46:36:
ce:b8:aa:cf:26:a8:43:8b:d9:2f:e6:cf:24:6c:d6:
1e:2b:81:99:ca:2e:04:96:f5:4c:1a:2c:94:89:62:
52:d1:2b:99:87:e4:b4:fd:00:17:02:7c:18:54:f1:
ed:22:52:32:3e:15:ed:fa:9f:44:a2:f2:19:74:96:
b4:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:30:96:9E:DD:AB:CC:85:D6:61:66:B1:3E:67:34:28:26:B3:41:87
X509v3 Authority Key Identifier:
keyid:B7:81:50:F0:4C:32:34:DB:F9:F1:1E:11:07:99:32:80:2D:26:8F:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t4FQ8EwyNNv58R4RB5kygC0mj7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/b59a8b-8753-4094-bba7-eccc2c1b1c23/1/MDCWnt2rzIXWYWaxPmc0KCazQYc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/b59a8b-8753-4094-bba7-eccc2c1b1c23/1/t4FQ8EwyNNv58R4RB5kygC0mj7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9740::/29
Signature Algorithm: sha256WithRSAEncryption
48:66:c8:b6:bb:81:6b:e1:8c:c4:1a:14:6c:70:86:b9:f1:75:
ee:76:64:08:4a:b4:db:39:13:14:be:68:11:91:ef:e6:be:10:
ce:ff:6c:d5:db:a3:a9:ce:2b:9d:31:7c:02:e1:31:e4:d9:c1:
c5:80:0c:c2:5b:6d:59:4d:ee:32:c6:41:15:35:3f:eb:4c:aa:
88:49:53:2f:25:12:38:0b:82:3a:a6:6b:a6:3f:8d:23:d0:e6:
4d:1c:86:e3:5b:87:fb:6c:df:58:ba:2a:da:56:2a:a4:d1:ab:
a1:da:85:29:33:5e:75:6a:15:e4:ba:0c:31:fb:0b:23:c5:32:
88:ca:3a:5e:33:1a:70:b7:c0:bd:1e:10:e4:71:17:05:a3:5d:
91:a0:b9:c7:c7:94:28:91:5d:7b:07:80:7f:48:c9:4e:fc:26:
3a:0d:fd:52:40:91:f3:2d:6f:c9:ae:28:73:cd:73:0c:c1:bd:
64:36:02:18:55:2f:52:3d:ab:d8:93:a8:1f:51:15:b8:92:8c:
d3:28:ba:c8:c0:4b:9c:4a:cc:0c:b6:47:ab:5f:08:ca:71:99:
73:bc:77:54:40:46:a7:7a:20:a6:ee:f0:56:56:5d:39:67:01:
3a:42:cd:8d:bf:b8:47:40:63:24:5c:23:71:9e:4a:1c:16:7e:
7f:d0:7e:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:33 2025 by rpki-client on console.sobornost.net