Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/195f3d-a851-455a-9b0f-d70cd97f4857/1/r6uPDA9vlEWT9sYoVFzM7GHgFa8.roa
File: r6uPDA9vlEWT9sYoVFzM7GHgFa8.roa (raw, json)
Hash identifier: t27IhHRMBSQR6oORXFY/8Mn45oNpwsdletkYrs42U2g=
Subject key identifier: AF:AB:8F:0C:0F:6F:94:45:93:F6:C6:28:54:5C:CC:EC:61:E0:15:AF
Certificate issuer: /CN=65bdcff77bf060d5da12de45e2072e1cff4560a7
Certificate serial: 019422FB16B461D7567B3A3FE93EA0CE4072
Authority key identifier: 65:BD:CF:F7:7B:F0:60:D5:DA:12:DE:45:E2:07:2E:1C:FF:45:60:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zb3P93vwYNXaEt5F4gcuHP9FYKc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/195f3d-a851-455a-9b0f-d70cd97f4857/1/r6uPDA9vlEWT9sYoVFzM7GHgFa8.roa
Signing time: Wed 01 Jan 2025 17:47:48 +0000
ROA not before: Wed 01 Jan 2025 17:47:48 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 197595
IP address blocks: 2a02:20c8:4750::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fb:16:b4:61:d7:56:7b:3a:3f:e9:3e:a0:ce:40:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65bdcff77bf060d5da12de45e2072e1cff4560a7
Validity
Not Before: Jan 1 17:47:48 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=afab8f0c0f6f944593f6c628545cccec61e015af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:93:f6:73:6d:c1:70:52:4b:e9:3c:7f:65:20:
36:21:9c:24:49:65:ad:cd:5d:5f:a5:85:e2:f6:f0:
eb:9f:f1:67:ed:ce:e0:45:6c:34:96:7d:21:e7:b6:
03:ea:b9:08:e1:0a:77:01:57:b8:04:4f:07:d6:0a:
12:bd:c5:6b:da:b3:f9:a3:41:4a:15:d3:6f:d0:6f:
d1:b0:fc:d1:1d:a6:1c:17:ff:30:d8:ac:1a:fe:50:
7e:b7:fb:a0:34:8b:0a:1d:05:b1:2d:8a:b7:0b:8b:
6a:15:2f:25:0d:c4:d9:63:fd:78:5a:43:30:ea:a5:
9c:3f:94:0d:21:1a:0d:3e:e5:76:ae:37:ba:99:43:
66:53:7d:a6:cd:7c:01:14:8e:66:0d:e5:43:1e:29:
4a:f4:5b:78:b4:a1:cd:91:64:e3:2d:56:aa:93:7d:
5f:3d:40:73:4e:20:00:41:17:4f:dc:6c:97:bb:ee:
82:4c:a7:14:f9:0e:e0:c4:12:5d:85:36:ae:f3:89:
6b:83:10:61:45:78:e3:e7:e3:a1:e1:f2:2a:2c:eb:
58:3f:60:fb:03:5c:b8:02:73:07:a4:8c:8e:31:c7:
30:2a:de:f2:e4:21:d0:9f:2e:b4:e3:73:76:51:b9:
11:30:93:e6:52:07:8e:4c:1a:cc:6d:f0:be:69:d2:
69:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:AB:8F:0C:0F:6F:94:45:93:F6:C6:28:54:5C:CC:EC:61:E0:15:AF
X509v3 Authority Key Identifier:
keyid:65:BD:CF:F7:7B:F0:60:D5:DA:12:DE:45:E2:07:2E:1C:FF:45:60:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zb3P93vwYNXaEt5F4gcuHP9FYKc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/195f3d-a851-455a-9b0f-d70cd97f4857/1/r6uPDA9vlEWT9sYoVFzM7GHgFa8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/195f3d-a851-455a-9b0f-d70cd97f4857/1/Zb3P93vwYNXaEt5F4gcuHP9FYKc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:20c8:4750::/48
Signature Algorithm: sha256WithRSAEncryption
6f:d4:9b:2c:a1:95:d9:d1:52:05:29:1d:6f:c3:d6:0b:36:dc:
dd:39:8f:28:be:3d:37:7a:75:b8:e2:90:2b:ba:16:1d:47:4c:
83:17:65:8d:04:f6:84:35:96:98:2a:ce:67:00:31:3f:1d:bb:
db:95:1b:2a:3c:c8:02:38:f0:45:ad:de:7c:d9:0d:3d:a1:c9:
d5:49:68:1e:10:e0:34:9a:cc:fd:41:47:47:f0:bf:a3:42:6f:
5f:7e:96:c3:20:9e:9f:a3:a2:18:3c:41:ee:19:8f:a3:db:03:
38:aa:d3:24:07:94:f6:b5:dc:6a:00:d0:8a:e5:39:e9:53:48:
18:17:9a:b3:2b:ca:00:a2:9e:e5:e4:bd:24:27:39:6a:d2:5b:
78:68:5a:36:13:95:43:c5:a7:24:c8:8d:33:a0:28:e9:b4:3e:
3a:0a:34:d0:9d:a5:9b:c0:cb:1b:44:2e:02:1c:24:ef:96:54:
ab:65:81:f1:60:70:f0:ec:b7:a3:d9:7f:09:05:63:7f:0b:86:
23:46:d7:e9:f7:39:d0:d1:19:6c:cf:20:a6:75:50:b0:2e:32:
00:a4:bc:46:ca:62:c6:21:01:c5:df:5e:d3:02:bb:b9:8c:58:
bb:97:74:b4:7b:a4:b1:d7:67:7b:b8:d0:77:29:b8:12:06:3a:
19:f7:91:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:56 2025 by rpki-client on console.sobornost.net