Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/KZJaSJuKG1aca7PnWGS7Y8cN4O8.roa
File: KZJaSJuKG1aca7PnWGS7Y8cN4O8.roa (raw, json)
Hash identifier: Mrpw2zrBnc6NWdkrM0RaFO22/f3tmZVVNt6DDtddWIM=
Subject key identifier: 29:92:5A:48:9B:8A:1B:56:9C:6B:B3:E7:58:64:BB:63:C7:0D:E0:EF
Certificate issuer: /CN=58ad60da52671e9083cf39864eca2aa23241be9e
Certificate serial: 0195D4285E4A6739DC48E7E2B461052CD616
Authority key identifier: 58:AD:60:DA:52:67:1E:90:83:CF:39:86:4E:CA:2A:A2:32:41:BE:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WK1g2lJnHpCDzzmGTsoqojJBvp4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/KZJaSJuKG1aca7PnWGS7Y8cN4O8.roa
Signing time: Wed 26 Mar 2025 20:32:50 +0000
ROA not before: Wed 26 Mar 2025 20:32:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44589
IP address blocks: 2a13:be41::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:d4:28:5e:4a:67:39:dc:48:e7:e2:b4:61:05:2c:d6:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58ad60da52671e9083cf39864eca2aa23241be9e
Validity
Not Before: Mar 26 20:32:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=29925a489b8a1b569c6bb3e75864bb63c70de0ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:ae:ce:1c:d2:e3:7a:d2:f2:b4:7d:3e:29:73:
84:77:1e:9d:fb:40:44:8c:77:d4:3e:5c:43:2d:4a:
d7:64:41:29:21:5c:b3:a9:ba:1c:32:fb:97:a5:e2:
07:60:7e:28:93:a7:d3:3e:e3:ff:ca:7f:0c:54:ec:
52:bb:44:aa:c4:bb:a1:d1:38:9a:0a:d7:11:a9:d3:
00:26:9e:d2:89:41:4f:9f:ab:66:64:b9:8b:db:71:
6f:7f:72:69:d0:ab:1c:55:2a:08:51:fc:0c:6e:15:
f0:a3:c8:3e:f9:f8:1e:13:73:3c:79:7e:8a:ef:8b:
2b:51:5f:ab:c4:10:7d:b9:6d:35:d5:fc:0e:75:70:
eb:6f:1e:d2:3f:52:0f:20:23:17:d2:7d:56:46:70:
b9:d5:f4:2e:d0:0f:69:e2:7b:17:be:28:3e:67:76:
78:d3:d9:08:00:75:2e:cf:5f:d0:d6:e6:91:64:5f:
14:c5:8c:75:48:2f:b4:f8:4c:1a:2e:55:a0:81:51:
72:3c:c6:a0:ee:35:77:0b:b3:1b:a1:53:16:9f:8a:
65:c3:cb:0f:73:58:40:d9:e0:0e:19:35:8b:0b:b8:
de:c3:55:6d:b7:80:e7:d9:a9:99:52:2e:ab:61:b0:
c7:37:5f:f2:05:d5:68:72:f0:09:09:13:53:d1:42:
0e:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:92:5A:48:9B:8A:1B:56:9C:6B:B3:E7:58:64:BB:63:C7:0D:E0:EF
X509v3 Authority Key Identifier:
keyid:58:AD:60:DA:52:67:1E:90:83:CF:39:86:4E:CA:2A:A2:32:41:BE:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WK1g2lJnHpCDzzmGTsoqojJBvp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/KZJaSJuKG1aca7PnWGS7Y8cN4O8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/WK1g2lJnHpCDzzmGTsoqojJBvp4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:be41::/32
Signature Algorithm: sha256WithRSAEncryption
93:da:1c:8a:8d:40:c1:e8:f7:06:0e:2d:49:c8:e3:1b:3b:57:
67:19:88:37:bf:4f:cc:2a:ed:ee:4e:0e:74:85:0e:67:51:0e:
58:74:4a:68:99:25:ee:04:cc:5a:81:b7:e0:02:cd:eb:00:ca:
4b:45:52:85:61:3a:9a:2f:aa:f3:eb:6e:e3:1a:36:95:b0:47:
ae:69:5d:89:57:fd:f3:d5:38:29:8a:61:7a:e6:45:ff:53:4c:
d6:09:25:9e:21:36:a3:d9:eb:e2:5d:18:56:e8:1f:05:2a:f1:
51:1e:c5:4e:6b:de:4f:09:7a:df:34:d0:ad:8b:03:3c:bb:b6:
4b:e3:cb:04:6e:f0:cb:bd:36:49:4b:ba:55:2f:fb:2c:bf:6e:
c9:7c:ae:cf:5b:66:17:10:18:5c:2c:0d:ac:bb:e8:9a:5f:9d:
e0:4a:1c:b5:21:0e:c7:75:ba:6c:64:23:bb:69:66:61:be:9f:
e7:a4:f5:9f:64:9f:ef:65:f5:ae:20:09:3e:ae:38:5b:c3:96:
2f:c3:ba:2f:1a:25:51:22:00:f5:e9:35:9d:09:4a:a3:84:25:
c4:54:b3:18:fc:e8:95:83:8f:45:92:40:50:21:c8:c8:c7:71:
19:22:f1:55:f9:a7:e1:19:f1:77:d7:45:19:65:43:ec:9e:96:
ee:02:77:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:48 2025 by rpki-client on console.sobornost.net