Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/ImDmS3Dd5Y1fhRszq0VuZL9kZLk.roa
File: ImDmS3Dd5Y1fhRszq0VuZL9kZLk.roa (raw, json)
Hash identifier: EvXZ07jwh2NqNRXhraUEHqP8uZeyMgx2raifYFZIHwA=
Subject key identifier: 22:60:E6:4B:70:DD:E5:8D:5F:85:1B:33:AB:45:6E:64:BF:64:64:B9
Certificate issuer: /CN=58ad60da52671e9083cf39864eca2aa23241be9e
Certificate serial: 01950B927642F2444A3D1670AA8EE3603FF0
Authority key identifier: 58:AD:60:DA:52:67:1E:90:83:CF:39:86:4E:CA:2A:A2:32:41:BE:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WK1g2lJnHpCDzzmGTsoqojJBvp4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/ImDmS3Dd5Y1fhRszq0VuZL9kZLk.roa
Signing time: Sat 15 Feb 2025 21:45:02 +0000
ROA not before: Sat 15 Feb 2025 21:45:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215420
IP address blocks: 2a0f:e3c0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:0b:92:76:42:f2:44:4a:3d:16:70:aa:8e:e3:60:3f:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58ad60da52671e9083cf39864eca2aa23241be9e
Validity
Not Before: Feb 15 21:45:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2260e64b70dde58d5f851b33ab456e64bf6464b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:f3:42:fa:94:46:02:48:4b:c4:74:ed:84:f1:
31:ba:65:17:58:de:79:6c:ce:2b:f2:aa:82:52:8d:
63:a7:01:3e:21:fb:e1:d2:2c:a8:b0:5e:1e:57:65:
8f:82:c7:21:e5:28:e9:5c:a2:f9:0b:24:ba:4e:da:
ba:41:c6:26:bb:7e:17:10:a1:67:b1:8b:6e:1c:40:
35:37:a8:8b:ef:15:cc:53:de:54:9d:c0:9d:05:b3:
1a:5c:29:2a:65:c6:7f:73:39:df:53:8f:46:00:ab:
4d:57:90:06:60:de:f4:2d:76:00:42:13:eb:c0:c4:
b4:a4:49:77:a2:18:d5:b2:22:6b:6b:db:c3:a6:d3:
f1:73:7f:84:2d:d5:a7:95:7f:55:d4:3e:d2:16:0b:
02:f8:a3:8d:d7:de:40:cd:88:bc:80:93:c1:b0:7e:
31:d3:ae:8b:b1:0f:7b:61:69:e2:11:e3:b1:f6:f7:
c8:9d:aa:3f:17:1c:a8:03:5d:8a:da:42:a1:c5:54:
d7:87:45:1a:46:e6:18:70:f0:6d:3b:c8:93:ef:e0:
89:51:ed:11:b9:3b:28:da:49:65:d8:ec:22:ee:1c:
55:a4:34:d1:d9:b5:73:02:71:0e:0c:9f:70:ae:13:
46:94:af:dc:36:bd:06:52:da:ff:0a:82:ce:55:9f:
0e:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:60:E6:4B:70:DD:E5:8D:5F:85:1B:33:AB:45:6E:64:BF:64:64:B9
X509v3 Authority Key Identifier:
keyid:58:AD:60:DA:52:67:1E:90:83:CF:39:86:4E:CA:2A:A2:32:41:BE:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WK1g2lJnHpCDzzmGTsoqojJBvp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/ImDmS3Dd5Y1fhRszq0VuZL9kZLk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/WK1g2lJnHpCDzzmGTsoqojJBvp4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:e3c0::/29
Signature Algorithm: sha256WithRSAEncryption
4a:83:ed:4c:c5:5e:1c:c0:40:1d:55:28:ac:93:cd:ae:a5:0d:
26:e1:55:6f:bb:19:b9:75:d6:9c:02:fe:39:45:a2:1c:1a:da:
f4:d5:26:34:67:ab:1b:da:eb:95:60:8b:d8:49:27:99:fd:ef:
a2:fa:36:01:51:1e:db:64:ff:ce:e3:fc:99:79:2b:8b:6f:a5:
b8:75:ce:1b:45:d5:f7:dd:6f:f5:3e:07:e1:44:d2:5a:e6:f7:
0e:6c:e4:9b:eb:eb:0d:f6:7a:e5:21:3b:bd:fc:a3:6c:a8:09:
5a:db:98:a6:0a:af:ae:99:65:02:46:2a:c3:e6:e9:a2:c4:eb:
43:03:28:97:50:b3:d5:c9:cb:56:c4:80:91:5e:d8:22:b5:c8:
cb:e5:57:ee:64:59:53:7a:62:ce:91:95:c7:d5:5f:6e:b2:1f:
06:e6:12:d4:1d:b1:76:ea:96:37:9a:11:90:61:b5:71:c3:bf:
35:37:ef:9e:1f:4c:52:31:20:0c:96:f8:37:37:81:43:79:1c:
ae:fd:1e:33:eb:52:b3:22:f4:bf:90:d7:c6:b5:8f:05:f5:45:
39:c8:0f:b5:f4:1b:28:a4:ab:15:7e:21:26:01:f0:21:09:71:
7c:ee:4f:78:5a:06:4b:dc:cd:e3:d6:94:64:ea:57:9f:b4:5e:
36:69:f6:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 8 04:54:38 2025 by rpki-client on console.sobornost.net