Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/wIeSRAw34EsRmUA-LRcG5YPXVbY.roa
File: wIeSRAw34EsRmUA-LRcG5YPXVbY.roa (raw, json)
Hash identifier: VjcBo62PQSvDoTKKQreeGuDHp0CAXYkaVOqzZhzGpes=
Subject key identifier: C0:87:92:44:0C:37:E0:4B:11:99:40:3E:2D:17:06:E5:83:D7:55:B6
Certificate issuer: /CN=5a6f9295521df30a158f506ba7cb873ab9529dc3
Certificate serial: 019421B2227F568EC3F9676ADEC1540240BE
Authority key identifier: 5A:6F:92:95:52:1D:F3:0A:15:8F:50:6B:A7:CB:87:3A:B9:52:9D:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wm-SlVId8woVj1Brp8uHOrlSncM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/wIeSRAw34EsRmUA-LRcG5YPXVbY.roa
Signing time: Wed 01 Jan 2025 11:48:29 +0000
ROA not before: Wed 01 Jan 2025 11:48:29 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 8278
IP address blocks: 2001:648:2960::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b2:22:7f:56:8e:c3:f9:67:6a:de:c1:54:02:40:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a6f9295521df30a158f506ba7cb873ab9529dc3
Validity
Not Before: Jan 1 11:48:29 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c08792440c37e04b1199403e2d1706e583d755b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:d6:54:1d:45:73:a2:ad:1e:de:a6:67:01:9a:
57:3e:79:d7:f9:ed:1b:c9:88:2f:b8:d6:47:68:ce:
70:a1:ad:03:fe:65:96:f6:cf:22:52:6c:10:3f:2e:
8a:15:a3:f7:14:55:80:f6:8f:5c:32:68:9f:13:0c:
8a:a7:7a:77:07:d3:1b:94:e9:49:7e:ff:49:20:23:
9d:31:d1:d8:2e:96:1e:31:6f:2e:b3:76:d3:b8:4a:
04:ce:73:70:55:a7:66:c2:c4:7c:96:e3:82:ca:6a:
b5:7a:40:3b:31:c4:8f:6e:d5:f6:84:aa:22:9b:d8:
99:eb:b5:8f:54:2f:19:0d:a9:e7:06:46:71:e7:11:
f9:5b:ae:c3:33:91:d9:3f:4f:45:b4:d4:4f:71:fb:
1b:68:f6:29:c7:04:d8:8e:d9:e5:60:c7:d4:55:e2:
35:7c:01:84:d0:76:ce:d1:98:97:25:c0:a4:d9:68:
c6:08:34:c0:29:8d:00:a6:7f:80:af:9f:f2:b8:aa:
c0:de:04:5d:05:0f:a3:ba:2a:61:b0:d3:73:4e:18:
13:b8:a3:5c:5f:06:52:1b:2c:80:24:c1:32:6a:c6:
4c:c9:38:2d:6d:38:65:59:ae:2f:02:26:20:c4:cb:
eb:d6:fb:45:65:a9:96:6c:f2:74:a3:3a:8b:70:20:
37:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:87:92:44:0C:37:E0:4B:11:99:40:3E:2D:17:06:E5:83:D7:55:B6
X509v3 Authority Key Identifier:
keyid:5A:6F:92:95:52:1D:F3:0A:15:8F:50:6B:A7:CB:87:3A:B9:52:9D:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wm-SlVId8woVj1Brp8uHOrlSncM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/wIeSRAw34EsRmUA-LRcG5YPXVbY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/Wm-SlVId8woVj1Brp8uHOrlSncM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:648:2960::/48
Signature Algorithm: sha256WithRSAEncryption
69:18:bc:60:10:f1:67:9a:ca:eb:be:1e:8a:e4:fd:25:62:7f:
3d:31:c1:24:af:9c:84:ea:51:27:e1:03:d8:42:8a:54:ab:5d:
dd:cf:93:f0:2b:e2:81:50:10:bc:8c:02:4d:e0:8d:ef:1f:91:
81:94:49:29:95:71:30:aa:c0:84:46:e9:f7:9f:49:b2:65:ec:
1a:ef:f6:40:ca:7e:e3:b5:fe:7b:b4:9a:30:1d:d4:6e:45:d0:
fe:4e:3c:00:55:4c:ed:8a:ff:79:0c:d5:ab:a8:ae:c0:fb:42:
ad:ee:b6:0c:51:c4:29:4e:2c:d9:06:bd:d5:47:5e:e6:0a:2a:
e0:57:c1:f8:f3:1e:d0:76:91:56:69:67:62:d1:31:aa:3c:d6:
6f:8e:d5:a4:64:75:22:10:be:e2:3e:32:03:b4:bb:54:c5:02:
88:d9:6e:ac:22:c8:5c:31:20:82:02:7c:ed:05:62:68:60:cd:
c0:92:ba:2c:ac:9d:c5:dc:96:05:ce:d6:3f:fa:c7:c0:8d:b4:
ac:e9:55:83:f4:59:d7:bc:cb:ee:a2:77:a1:11:2a:21:0d:0a:
a6:eb:51:73:8c:f5:ca:90:84:1d:05:d6:67:65:2b:f6:18:5b:
34:4b:92:13:ea:5d:9f:b1:29:74:78:dc:f2:63:d8:06:91:61:
8a:ba:3a:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:02 2025 by rpki-client on console.sobornost.net