Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/3bfc31-dc32-4541-8460-c927b8c2c7c4/1/_j08j-2FDwC68rueaFbBqi1fpuA.roa
File: _j08j-2FDwC68rueaFbBqi1fpuA.roa (raw, json)
Hash identifier: qxS+XcpGtA2PtYARd7lBLLnmeCdljjuwyVVXC8rvxSU=
Subject key identifier: FE:3D:3C:8F:ED:85:0F:00:BA:F2:BB:9E:68:56:C1:AA:2D:5F:A6:E0
Certificate issuer: /CN=c398060f1bf22f0999cb071b1b42696dbc43e10c
Certificate serial: 019428238E98A2CD9EA4871D560F3F7133B0
Authority key identifier: C3:98:06:0F:1B:F2:2F:09:99:CB:07:1B:1B:42:69:6D:BC:43:E1:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w5gGDxvyLwmZywcbG0JpbbxD4Qw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/3bfc31-dc32-4541-8460-c927b8c2c7c4/1/_j08j-2FDwC68rueaFbBqi1fpuA.roa
Signing time: Thu 02 Jan 2025 17:50:06 +0000
ROA not before: Thu 02 Jan 2025 17:50:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 2043
IP address blocks: 2001:67c:1d4::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:23:8e:98:a2:cd:9e:a4:87:1d:56:0f:3f:71:33:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c398060f1bf22f0999cb071b1b42696dbc43e10c
Validity
Not Before: Jan 2 17:50:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=fe3d3c8fed850f00baf2bb9e6856c1aa2d5fa6e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:16:3f:1e:c5:7f:ce:86:c7:2c:f5:f6:ad:8c:
7e:c1:e5:d5:76:c9:44:b6:66:57:39:47:ac:ad:d5:
82:6c:fd:12:27:ba:ba:58:de:26:aa:3a:e9:b5:d8:
dc:2c:59:23:43:41:f2:99:26:bf:e3:4c:bc:a3:78:
0b:f4:bf:77:96:5b:f1:ff:c8:b5:51:ba:ab:10:ff:
d8:d5:b5:9a:37:9c:58:86:2c:d3:77:cd:2a:61:74:
43:d2:73:0c:5d:dc:fb:c9:fe:45:ad:91:fb:24:43:
8c:1a:03:e7:f5:af:01:17:4d:07:ac:4c:a4:c0:03:
26:3e:e0:19:79:50:48:92:e7:b7:0c:ec:54:ec:75:
7e:42:b4:c9:c5:29:c9:de:b5:9e:f8:91:08:e0:17:
cd:ec:1a:1a:84:49:54:5c:b1:c2:7c:a0:3c:d8:51:
57:50:3c:e5:d7:ba:22:40:c9:10:e3:03:4a:2d:01:
fb:b5:f7:53:c7:ef:6d:16:a6:77:93:50:2b:1e:fc:
93:ba:12:8c:77:9b:ef:0d:30:c6:a4:2a:3e:e3:b1:
71:05:2e:e5:2c:e8:0f:f1:22:d4:b8:59:a1:6c:fb:
a6:1d:0c:4e:e3:bb:23:35:08:5b:d1:aa:ae:12:10:
74:00:0d:c3:b2:d3:bc:8a:67:4e:93:2d:1b:af:6f:
d7:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:3D:3C:8F:ED:85:0F:00:BA:F2:BB:9E:68:56:C1:AA:2D:5F:A6:E0
X509v3 Authority Key Identifier:
keyid:C3:98:06:0F:1B:F2:2F:09:99:CB:07:1B:1B:42:69:6D:BC:43:E1:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w5gGDxvyLwmZywcbG0JpbbxD4Qw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/3bfc31-dc32-4541-8460-c927b8c2c7c4/1/_j08j-2FDwC68rueaFbBqi1fpuA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/3bfc31-dc32-4541-8460-c927b8c2c7c4/1/w5gGDxvyLwmZywcbG0JpbbxD4Qw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:1d4::/48
Signature Algorithm: sha256WithRSAEncryption
8c:82:cd:ce:2b:8d:31:12:01:3c:8c:ed:2b:87:dc:cf:18:54:
39:40:34:41:35:55:80:0b:5b:e0:03:5e:3c:84:13:5e:92:1a:
c3:b8:e0:87:f8:61:5c:aa:e7:a1:21:d4:2a:05:d0:e5:fd:f6:
07:55:01:ca:72:7b:f8:f6:71:d1:be:d4:50:fc:eb:9a:45:2e:
3e:ec:72:67:69:31:22:c5:9d:c2:26:00:f5:0d:4c:fe:2c:ec:
a3:54:85:b9:7e:5b:69:c4:02:12:0c:99:0a:f5:7d:f5:9e:ee:
0c:f6:7b:38:a8:3a:d1:ee:b2:a6:24:5a:ad:5f:c8:ea:5a:a9:
3f:33:dc:20:e7:96:e3:2c:1c:c3:dd:b7:cb:9d:92:36:47:ef:
1f:4a:27:44:74:09:1b:74:a2:ca:21:98:14:70:31:57:c4:50:
41:ad:c5:d4:ca:64:7b:03:67:ae:d2:97:ae:71:46:9b:35:5a:
ed:76:0f:dd:20:8a:b8:35:6f:d6:5f:75:9f:4d:cf:b1:83:f5:
3a:8d:c8:d4:10:90:d0:8f:02:27:66:2b:f6:7e:d1:bd:f3:45:
c4:32:64:ef:5d:7a:6f:38:9e:21:aa:52:ad:d0:5a:6f:8b:3f:
d2:a2:e7:99:36:78:93:cd:eb:27:81:78:a2:c1:91:d1:65:a1:
27:22:42:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:38 2025 by rpki-client on console.sobornost.net