Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/5b21e3-3944-4ce6-aaf5-c0ba2f3fc72a/1/ZrwqrohL9iM53Sm0L32LtVEZ960.roa
File: ZrwqrohL9iM53Sm0L32LtVEZ960.roa (raw, json)
Hash identifier: 7oEynZg573qxaJLTtHy8ld55GTPVxhY3d4qewpnFsjs=
Subject key identifier: 66:BC:2A:AE:88:4B:F6:23:39:DD:29:B4:2F:7D:8B:B5:51:19:F7:AD
Certificate issuer: /CN=5776d9a0b55bd495a1be3c5c03fa251d3de8b8c5
Certificate serial: 019427B54A6D9220E99B9A8A773DBAF9DF89
Authority key identifier: 57:76:D9:A0:B5:5B:D4:95:A1:BE:3C:5C:03:FA:25:1D:3D:E8:B8:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V3bZoLVb1JWhvjxcA_olHT3ouMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/5b21e3-3944-4ce6-aaf5-c0ba2f3fc72a/1/ZrwqrohL9iM53Sm0L32LtVEZ960.roa
Signing time: Thu 02 Jan 2025 15:49:39 +0000
ROA not before: Thu 02 Jan 2025 15:49:39 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 216352
IP address blocks: 2a10:a642:100::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b5:4a:6d:92:20:e9:9b:9a:8a:77:3d:ba:f9:df:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5776d9a0b55bd495a1be3c5c03fa251d3de8b8c5
Validity
Not Before: Jan 2 15:49:39 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=66bc2aae884bf62339dd29b42f7d8bb55119f7ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:c8:2d:8d:55:33:b5:31:17:56:aa:2a:d7:fb:
94:d3:75:1a:e2:8c:41:e5:5e:3b:98:b1:d7:5c:de:
a8:7e:0e:f6:c6:99:ca:96:cd:ea:8d:9f:14:4e:7f:
8f:ec:1c:91:7b:55:9f:9d:5d:00:a0:18:dd:32:fe:
95:4b:9a:f6:b5:50:c8:1b:6a:d5:8f:9e:ee:1c:80:
38:ae:2e:1e:ae:33:40:73:66:71:10:a1:3d:45:8e:
e1:a0:9e:6d:1f:49:14:95:3b:36:d3:2b:df:ec:79:
74:5a:1e:57:75:73:fa:36:db:56:da:1d:70:32:06:
40:33:eb:5e:e3:b5:2b:14:99:ed:f3:f7:6d:af:30:
7a:30:1b:26:bd:01:ac:e5:dd:29:78:be:21:20:d3:
f9:5e:ad:d5:89:9f:56:a4:e8:8e:4c:ea:02:4a:f1:
be:b9:cb:e7:6c:95:f7:b4:19:54:7b:46:06:df:9e:
74:af:41:4a:ff:5a:1a:3a:3d:a2:54:a6:d2:2d:90:
f2:84:fe:1e:01:2a:30:a9:aa:5d:f9:b2:51:66:34:
02:d9:73:f1:0f:69:24:5f:09:0a:f9:21:8e:7d:dd:
5f:4f:9e:b6:6d:cb:b9:ba:07:f0:c9:54:13:be:94:
ba:70:6c:27:12:c6:36:19:5f:76:69:8c:a9:46:36:
40:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:BC:2A:AE:88:4B:F6:23:39:DD:29:B4:2F:7D:8B:B5:51:19:F7:AD
X509v3 Authority Key Identifier:
keyid:57:76:D9:A0:B5:5B:D4:95:A1:BE:3C:5C:03:FA:25:1D:3D:E8:B8:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V3bZoLVb1JWhvjxcA_olHT3ouMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/5b21e3-3944-4ce6-aaf5-c0ba2f3fc72a/1/ZrwqrohL9iM53Sm0L32LtVEZ960.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/5b21e3-3944-4ce6-aaf5-c0ba2f3fc72a/1/V3bZoLVb1JWhvjxcA_olHT3ouMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:a642:100::/40
Signature Algorithm: sha256WithRSAEncryption
0e:c0:d0:b1:00:2e:86:97:4c:26:e0:af:8c:b7:4d:96:f8:53:
b5:45:b8:db:25:44:f3:81:61:42:41:3b:92:c9:b7:6c:ac:48:
5e:cf:fe:69:b6:59:6c:f4:0d:a1:58:6a:7d:3f:be:3a:a4:76:
2c:2b:74:22:61:fe:01:fd:66:79:7f:00:bb:c6:f9:ab:df:5d:
3d:cd:39:39:03:51:5d:a8:d4:19:0c:06:a2:c3:20:e8:e8:f2:
da:1a:d4:ea:ec:9b:96:42:b3:0d:9f:63:41:2b:d6:fe:89:05:
eb:60:ed:bb:c5:3a:50:e9:3e:c5:1a:42:71:e5:45:25:88:e3:
84:76:6f:4d:dc:93:f7:55:97:07:39:40:5f:a0:f8:c2:29:33:
d8:a8:1e:40:bf:cd:98:ee:2a:91:24:53:61:71:01:83:1c:f5:
4d:0c:c3:bd:b8:b5:fc:65:e8:c1:26:9d:7c:58:56:bb:19:28:
28:ba:17:4c:92:f8:64:b1:2a:12:97:80:a6:dc:35:7e:16:34:
ab:45:d1:37:ad:54:23:b4:0d:81:2b:fb:e6:b6:e4:e8:84:cd:
e4:09:f4:0c:56:db:2c:80:13:14:48:68:1e:9e:03:b5:fa:99:
07:cd:49:7e:7c:24:74:27:77:30:b8:23:39:fd:aa:ff:a4:7f:
86:0b:42:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:10 2025 by rpki-client on console.sobornost.net