Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/nMNUMFD0D6QsYK_jnD6pqYmeXsk.roa
File: nMNUMFD0D6QsYK_jnD6pqYmeXsk.roa (raw, json)
Hash identifier: cEJMwKIA2yxBnNxWn1mu5jHlICkXHOt6q6vHqbiLucg=
Subject key identifier: 9C:C3:54:30:50:F4:0F:A4:2C:60:AF:E3:9C:3E:A9:A9:89:9E:5E:C9
Certificate issuer: /CN=58ad60da52671e9083cf39864eca2aa23241be9e
Certificate serial: 01942826496ABE6BF3A0923B820D92DBA1FB
Authority key identifier: 58:AD:60:DA:52:67:1E:90:83:CF:39:86:4E:CA:2A:A2:32:41:BE:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WK1g2lJnHpCDzzmGTsoqojJBvp4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/nMNUMFD0D6QsYK_jnD6pqYmeXsk.roa
Signing time: Thu 02 Jan 2025 17:53:05 +0000
ROA not before: Thu 02 Jan 2025 17:53:05 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215568
IP address blocks: 2a13:bf40::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:26:49:6a:be:6b:f3:a0:92:3b:82:0d:92:db:a1:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58ad60da52671e9083cf39864eca2aa23241be9e
Validity
Not Before: Jan 2 17:53:05 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9cc3543050f40fa42c60afe39c3ea9a9899e5ec9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:f9:bc:41:64:2f:cb:31:7f:be:58:da:92:ec:
21:5d:46:5b:65:54:06:29:05:59:cf:24:79:e2:80:
b2:e1:c4:bf:13:f4:d5:c4:7f:b1:9c:11:83:49:ae:
08:b5:d4:0c:58:2c:45:c4:be:49:51:6b:51:9a:c6:
0a:a5:c3:2f:6c:15:cf:6f:51:f2:a6:77:86:07:52:
0d:52:d5:61:6c:3c:8c:48:0f:ae:af:0d:0c:9d:f1:
d8:2a:24:89:87:0e:ce:95:6b:5e:0d:1a:68:b1:27:
f9:b5:b8:8d:cc:ea:69:85:8d:ce:a0:f3:01:7d:e1:
e8:d7:32:83:fd:8f:6b:42:36:cf:dd:07:56:07:8d:
9f:bd:f3:2f:0a:be:3e:63:4a:b4:8f:7e:6e:d0:91:
fb:9b:ee:50:39:fa:08:22:0b:9f:45:76:e4:d3:96:
12:4d:2a:71:cd:93:c1:d8:c9:a7:32:b7:cb:61:e4:
39:27:25:9d:86:a3:df:80:4f:17:d9:d7:bd:82:c8:
4c:8b:a8:9a:3f:b6:a7:9d:97:66:0b:ac:53:7a:fa:
c1:e2:3b:1b:56:af:87:88:4f:d6:5d:e7:7b:c7:75:
fc:2c:fd:b5:ae:7b:3a:08:b3:43:b0:68:dd:ad:6c:
ba:07:06:5b:93:fc:29:cc:0c:45:48:95:99:e9:3b:
b6:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:C3:54:30:50:F4:0F:A4:2C:60:AF:E3:9C:3E:A9:A9:89:9E:5E:C9
X509v3 Authority Key Identifier:
keyid:58:AD:60:DA:52:67:1E:90:83:CF:39:86:4E:CA:2A:A2:32:41:BE:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WK1g2lJnHpCDzzmGTsoqojJBvp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/nMNUMFD0D6QsYK_jnD6pqYmeXsk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/WK1g2lJnHpCDzzmGTsoqojJBvp4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:bf40::/29
Signature Algorithm: sha256WithRSAEncryption
cf:cc:ec:47:d5:68:28:00:d5:d2:c8:2c:58:9e:61:ff:d9:8c:
76:7a:2e:50:8b:b8:ec:51:c9:3a:ed:1b:6a:56:70:dc:42:85:
ed:1f:2c:bd:7f:d6:c7:09:91:99:58:25:c0:91:a7:4f:b7:9b:
f5:11:ff:c5:79:a9:27:f5:23:b8:45:e0:4f:6e:36:19:62:bc:
02:97:00:96:1f:9c:67:bd:f6:66:2d:2e:b7:83:48:92:8e:e4:
10:60:a4:a6:42:33:0e:83:83:b5:61:d0:1e:18:11:48:92:c1:
2f:44:72:6f:4e:98:77:aa:50:e1:41:1a:f7:1e:22:fc:2a:e4:
a7:21:44:31:ed:29:61:3e:b7:18:4a:74:1d:7b:69:72:d2:6f:
fa:76:6a:b4:8f:f2:a9:ac:16:1d:b5:33:c8:a0:ac:28:2e:b3:
96:97:1e:7f:cf:a0:0a:ed:7b:c0:da:cc:65:96:f0:e9:a0:f0:
2d:ec:b3:10:62:9d:56:3c:e8:0d:23:17:2c:55:93:64:cc:01:
4f:14:ed:ff:38:a6:35:08:af:8e:40:e6:8a:cd:c1:6c:66:1e:
95:a1:39:5c:9d:5e:6c:af:29:3f:87:5e:62:e9:9e:f8:11:09:
f9:67:7c:a3:3d:c6:62:03:aa:4b:2f:22:21:83:d7:1f:16:c5:
fe:60:27:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:48 2025 by rpki-client on console.sobornost.net