Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/337e3d-536c-4d50-8657-2b11ad693815/1/IRnn9ORtzivUx2TGUOWiZn2YmA8.roa
File: IRnn9ORtzivUx2TGUOWiZn2YmA8.roa (raw, json)
Hash identifier: Xk0n7E/wui7qwpm2gqzzeQ3XkyXcylQYY0mSQoyL7gs=
Subject key identifier: 21:19:E7:F4:E4:6D:CE:2B:D4:C7:64:C6:50:E5:A2:66:7D:98:98:0F
Certificate issuer: /CN=772fb94a459d3b75ce8bfb8f12b4cf71982c6343
Certificate serial: 0195721B5EBD22071CB862A61F24C5546BF9
Authority key identifier: 77:2F:B9:4A:45:9D:3B:75:CE:8B:FB:8F:12:B4:CF:71:98:2C:63:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dy-5SkWdO3XOi_uPErTPcZgsY0M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/337e3d-536c-4d50-8657-2b11ad693815/1/IRnn9ORtzivUx2TGUOWiZn2YmA8.roa
Signing time: Fri 07 Mar 2025 19:35:51 +0000
ROA not before: Fri 07 Mar 2025 19:35:51 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212084
IP address blocks: 2001:678:28c::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:72:1b:5e:bd:22:07:1c:b8:62:a6:1f:24:c5:54:6b:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=772fb94a459d3b75ce8bfb8f12b4cf71982c6343
Validity
Not Before: Mar 7 19:35:51 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2119e7f4e46dce2bd4c764c650e5a2667d98980f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:de:30:ff:d7:d9:c5:1c:74:23:72:b6:f9:4f:
a5:41:b4:15:e0:ea:09:4c:ef:5b:bd:32:da:6c:6e:
93:4a:71:c3:40:f3:49:d9:d5:12:dc:55:d4:2d:69:
d5:bb:03:92:12:78:04:b3:1f:c3:19:ec:a6:78:a0:
6b:d7:dd:e9:cd:58:72:f1:10:5c:72:92:73:6a:61:
1a:20:a9:c0:d8:7a:3f:1f:b0:5f:0c:7a:9b:31:d3:
bf:af:b9:09:62:f6:9f:fd:90:b5:42:33:22:92:b1:
a6:4a:b3:ab:b5:57:48:d4:f3:2f:44:ae:10:e3:83:
5f:17:df:13:d6:82:b6:20:da:96:ba:1d:59:e0:f9:
8f:30:a6:09:61:f9:92:a0:e6:25:0d:75:95:48:38:
9c:dc:9c:0e:f8:bb:11:a5:0c:7c:6a:92:cd:fc:9a:
ac:04:27:ff:8a:b8:46:de:e6:ed:1b:a3:46:17:3c:
f6:03:a2:c1:c2:e1:8c:3e:e3:f1:11:d7:ff:bc:7d:
d9:e4:04:5b:65:aa:c9:53:f8:b1:fa:6d:21:fe:d0:
bd:52:64:64:c3:1a:11:64:49:59:3f:83:87:12:52:
f4:ec:ed:37:88:fa:05:00:83:ba:ca:19:21:4e:9e:
96:96:66:2a:cc:31:f8:9e:60:61:0d:28:59:da:48:
c4:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:19:E7:F4:E4:6D:CE:2B:D4:C7:64:C6:50:E5:A2:66:7D:98:98:0F
X509v3 Authority Key Identifier:
keyid:77:2F:B9:4A:45:9D:3B:75:CE:8B:FB:8F:12:B4:CF:71:98:2C:63:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dy-5SkWdO3XOi_uPErTPcZgsY0M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/337e3d-536c-4d50-8657-2b11ad693815/1/IRnn9ORtzivUx2TGUOWiZn2YmA8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/337e3d-536c-4d50-8657-2b11ad693815/1/dy-5SkWdO3XOi_uPErTPcZgsY0M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:28c::/48
Signature Algorithm: sha256WithRSAEncryption
34:03:22:78:3a:39:b8:f7:00:05:10:7f:5d:4a:0a:f6:ae:cc:
ca:e7:22:b0:25:a5:bd:4f:2b:6c:74:20:0d:3b:87:8d:9c:18:
de:a5:69:25:87:7d:03:e3:cc:3e:ee:08:f5:9d:c6:4c:7c:0f:
91:ec:5c:d9:bb:c6:f4:5a:ff:7d:3e:b2:35:4b:a1:eb:bc:2d:
5f:63:ae:9a:86:b6:e5:c2:93:0d:a7:3a:06:0d:56:51:3c:87:
a0:e5:73:a5:b2:fe:60:4e:0d:f0:fc:64:2c:aa:45:05:48:ea:
1f:b8:e6:34:3c:e9:60:ac:dd:67:f8:8d:36:9e:c2:71:da:b5:
03:c4:98:b0:8f:bd:fe:94:da:64:c1:cd:c1:4c:1c:69:c3:ee:
91:14:2d:c2:f8:7f:4a:31:22:02:84:2c:42:22:f4:2d:7e:7a:
97:ab:1b:70:00:71:b4:7a:f6:10:02:85:41:43:91:f6:80:e4:
0b:38:23:b8:87:c7:95:ac:54:43:c9:ed:e9:25:39:a3:09:de:
2e:a9:5f:a9:0b:7c:00:4c:ee:ec:1a:c2:4b:0e:2f:2a:5b:3c:
38:dc:1e:b0:9e:7f:7b:a1:5c:f6:d2:45:d0:2b:23:80:9c:9e:
9f:71:7b:87:a3:66:26:16:1e:fc:80:d3:64:ba:06:9c:e4:77:
c9:73:ac:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:04 2025 by rpki-client on console.sobornost.net