Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/7da79d-60f4-47a8-813a-99957df4997e/1/F9OoqFi0y_GmOqfd2KThNGIcQRY.roa
File: F9OoqFi0y_GmOqfd2KThNGIcQRY.roa (raw, json)
Hash identifier: lknpUMMVcnd7NcsdFUBWrkK4Xx0BYlNeNsb3yAIL3yk=
Subject key identifier: 17:D3:A8:A8:58:B4:CB:F1:A6:3A:A7:DD:D8:A4:E1:34:62:1C:41:16
Certificate issuer: /CN=1e8c77336d66f7b0238e6c184c64fa4f24d09f01
Certificate serial: 0194388C2FD371378B5576199344724F1610
Authority key identifier: 1E:8C:77:33:6D:66:F7:B0:23:8E:6C:18:4C:64:FA:4F:24:D0:9F:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hox3M21m97AjjmwYTGT6TyTQnwE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/7da79d-60f4-47a8-813a-99957df4997e/1/F9OoqFi0y_GmOqfd2KThNGIcQRY.roa
Signing time: Sun 05 Jan 2025 22:18:18 +0000
ROA not before: Sun 05 Jan 2025 22:18:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212267
IP address blocks: 2001:678:24c::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:38:8c:2f:d3:71:37:8b:55:76:19:93:44:72:4f:16:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e8c77336d66f7b0238e6c184c64fa4f24d09f01
Validity
Not Before: Jan 5 22:18:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=17d3a8a858b4cbf1a63aa7ddd8a4e134621c4116
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:3f:3e:f0:83:2e:24:83:3a:95:48:b9:fa:60:
82:09:30:c8:05:c7:83:53:76:37:db:3d:4c:cb:38:
4c:06:0d:be:e9:31:75:12:c6:2a:52:37:a2:70:b8:
45:9c:59:70:fe:f9:a8:48:0d:8d:0d:98:92:0b:19:
bf:13:8c:31:94:7a:11:aa:06:8a:3e:b6:16:65:24:
25:65:35:f3:a5:42:04:82:cd:6e:25:20:84:10:d4:
21:66:5b:12:63:0d:8a:f0:9e:91:bb:1a:01:31:63:
14:2d:18:18:9b:7b:57:08:61:1f:27:93:d3:c6:eb:
f4:ba:a3:a4:dc:97:8d:96:d6:d7:af:36:88:3b:c0:
70:47:32:b9:2f:2a:90:eb:ec:f6:15:41:e6:d5:d8:
aa:7a:18:82:dd:cf:a2:c5:a3:7b:70:ba:3d:25:6c:
9e:e0:ad:1a:4c:fc:c0:b2:c8:98:6d:25:dc:a5:e6:
0a:87:69:8e:35:61:1e:aa:76:66:a9:4a:e0:52:dc:
67:e0:d4:91:c5:46:98:0f:d5:bb:55:1c:7a:41:36:
78:60:42:6b:ba:4d:24:7c:59:aa:09:cc:9d:24:0c:
c4:d0:ef:56:39:8b:9e:96:85:66:9e:f7:5d:a0:0c:
9d:de:e1:fe:8e:87:2d:60:96:8f:d5:25:42:32:0f:
56:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:D3:A8:A8:58:B4:CB:F1:A6:3A:A7:DD:D8:A4:E1:34:62:1C:41:16
X509v3 Authority Key Identifier:
keyid:1E:8C:77:33:6D:66:F7:B0:23:8E:6C:18:4C:64:FA:4F:24:D0:9F:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hox3M21m97AjjmwYTGT6TyTQnwE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/7da79d-60f4-47a8-813a-99957df4997e/1/F9OoqFi0y_GmOqfd2KThNGIcQRY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/7da79d-60f4-47a8-813a-99957df4997e/1/Hox3M21m97AjjmwYTGT6TyTQnwE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:24c::/48
Signature Algorithm: sha256WithRSAEncryption
af:46:d2:60:16:80:64:55:f1:78:eb:dc:85:0b:10:76:c1:17:
47:d5:71:23:1e:30:1f:ca:db:1d:2d:28:af:e7:bc:e3:4a:e3:
b4:3d:48:43:18:70:ac:9a:e7:db:93:61:ad:d5:76:30:49:6c:
c7:3c:d6:0d:99:ee:9a:b9:04:c3:c6:fc:bd:4c:aa:7b:f6:2d:
79:33:94:9e:9e:fe:d3:39:c3:25:e9:d5:88:f2:a4:b8:f7:23:
c9:19:ba:cc:30:eb:7e:18:e7:88:44:a7:5c:7b:00:93:ef:1b:
2f:e4:88:1a:ad:27:fc:2e:da:37:83:20:a0:14:4f:3c:01:03:
d8:1a:a1:83:6a:01:c5:0f:27:7d:3a:3c:a3:bd:cb:1c:aa:f0:
70:9b:7e:4b:15:f0:cc:57:e4:d1:c7:ba:7d:15:15:86:ad:94:
b6:c7:51:d5:27:71:38:66:f1:08:04:47:38:26:ae:71:0f:f5:
37:24:24:61:4c:9e:a5:40:d3:02:9c:47:5d:04:4f:a1:ec:c3:
03:53:6b:ff:dd:19:26:30:8d:4c:ff:4b:ad:3c:c6:5f:4c:d2:
fe:6b:10:14:8e:74:b3:93:82:4f:b6:43:b7:fd:9a:21:af:ac:
8b:27:ae:a7:ce:b1:8f:05:82:ef:48:21:26:27:e0:37:0d:92:
86:c2:d9:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:59 2025 by rpki-client on console.sobornost.net