Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/9646d7-5b04-4544-8edc-659cb427dcf7/1/wVdARfy8kyS2yygCe6VeSrxjsrI.roa
File: wVdARfy8kyS2yygCe6VeSrxjsrI.roa (raw, json)
Hash identifier: hDzrF6MC+t3cfKHXPCsVlZtlykkOSNtAuETj7zQp0RA=
Subject key identifier: C1:57:40:45:FC:BC:93:24:B6:CB:28:02:7B:A5:5E:4A:BC:63:B2:B2
Certificate issuer: /CN=7c44ad532540d2d2daeba95e13d614b7855ad622
Certificate serial: 0194221F951A60CFDD72B009CAD89BD9C181
Authority key identifier: 7C:44:AD:53:25:40:D2:D2:DA:EB:A9:5E:13:D6:14:B7:85:5A:D6:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fEStUyVA0tLa66leE9YUt4Va1iI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/9646d7-5b04-4544-8edc-659cb427dcf7/1/wVdARfy8kyS2yygCe6VeSrxjsrI.roa
Signing time: Wed 01 Jan 2025 13:48:02 +0000
ROA not before: Wed 01 Jan 2025 13:48:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 52212
IP address blocks: 2a07:f880::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:95:1a:60:cf:dd:72:b0:09:ca:d8:9b:d9:c1:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c44ad532540d2d2daeba95e13d614b7855ad622
Validity
Not Before: Jan 1 13:48:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c1574045fcbc9324b6cb28027ba55e4abc63b2b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:42:1b:33:cc:10:cc:af:d6:3a:5c:3a:cd:7a:
e0:79:46:bb:01:9d:32:ff:50:db:73:37:4f:56:1a:
65:41:a7:3d:ab:8b:5e:1b:2f:f9:b4:09:05:32:0a:
a1:67:3d:b9:e6:aa:f7:95:c4:b0:7c:e7:a2:a9:1f:
41:f7:ba:6f:29:e1:0f:d6:5f:b6:e9:20:1a:41:8e:
ec:44:0f:47:47:72:16:19:19:9a:d1:48:3d:73:ff:
dd:36:6e:14:b5:4e:09:5c:12:73:fe:2a:82:c0:95:
a2:43:b4:3e:b6:a6:5a:54:eb:5c:31:bc:f4:92:5e:
f4:ab:a5:ba:32:99:90:56:0a:95:ff:20:e0:27:31:
e5:e1:41:72:fe:f3:1a:36:97:e9:82:0e:b8:1d:fb:
25:50:f6:66:4e:61:97:d8:21:d6:af:07:a1:e0:83:
af:fd:b2:f2:86:2c:64:e5:d4:ae:ea:54:ad:80:54:
f1:b2:64:29:6a:6f:18:ef:be:26:64:01:60:66:7e:
37:0f:56:9e:62:e4:b3:40:da:d1:a0:36:3e:17:1f:
e0:88:6f:33:2d:2e:66:2b:09:b5:e6:01:ab:a6:82:
86:fc:2f:38:35:28:0a:40:76:6d:05:cc:dc:62:42:
32:10:85:f8:ee:4e:de:32:75:b7:9c:7e:77:56:ae:
40:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:57:40:45:FC:BC:93:24:B6:CB:28:02:7B:A5:5E:4A:BC:63:B2:B2
X509v3 Authority Key Identifier:
keyid:7C:44:AD:53:25:40:D2:D2:DA:EB:A9:5E:13:D6:14:B7:85:5A:D6:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fEStUyVA0tLa66leE9YUt4Va1iI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/9646d7-5b04-4544-8edc-659cb427dcf7/1/wVdARfy8kyS2yygCe6VeSrxjsrI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/9646d7-5b04-4544-8edc-659cb427dcf7/1/fEStUyVA0tLa66leE9YUt4Va1iI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:f880::/29
Signature Algorithm: sha256WithRSAEncryption
7e:7b:81:be:a3:bc:9a:e5:0d:af:48:b0:e6:88:a4:24:cb:68:
41:02:79:1b:1e:30:77:40:d6:5d:2e:d1:c2:ea:ed:5c:e4:ed:
8f:15:e7:8e:13:98:fc:b2:a3:ff:49:20:18:0d:dd:31:39:bb:
c1:45:7a:96:5f:d4:f9:52:16:f1:2b:af:26:99:aa:6b:7d:4b:
de:65:ae:aa:0c:49:ce:e7:e3:a1:80:91:6a:7c:4e:4f:44:12:
32:4b:e8:68:3f:96:09:33:d9:ca:f6:ee:1f:9a:73:e2:d9:2e:
37:4a:a6:46:b2:45:8d:ff:cf:eb:16:f7:81:34:36:d8:24:9d:
3e:db:54:8f:3e:ca:4e:0e:d9:e9:ce:01:63:3f:69:ac:df:9b:
fb:46:12:36:e0:34:2d:ae:bf:44:65:37:7e:ad:86:54:53:46:
84:3c:73:4c:20:51:3e:dc:3b:98:ad:9d:22:f0:59:af:a4:15:
42:a9:65:b4:80:b3:46:42:03:b4:4f:ab:71:d2:de:0b:8d:da:
34:a0:68:97:64:12:85:e3:76:91:c8:c3:ef:55:b4:f3:4a:aa:
e5:1f:f5:b0:50:fa:07:9d:2a:cb:1b:76:ea:21:27:48:73:c6:
a4:c8:42:f0:6c:68:6e:d0:e5:d2:e2:b7:38:53:17:24:9d:2e:
7a:a1:d5:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:57 2025 by rpki-client on console.sobornost.net