Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/431105-67a2-49cb-b7e0-83ffc80073b2/1/keUTzloof1e5LCPNjCM6qrztCW0.roa
File: keUTzloof1e5LCPNjCM6qrztCW0.roa (raw, json)
Hash identifier: 96VfjYTiDayJ8zEZcHUdOWEaY+iQmK9P7tnTsjIikmA=
Subject key identifier: 91:E5:13:CE:5A:28:7F:57:B9:2C:23:CD:8C:23:3A:AA:BC:ED:09:6D
Certificate issuer: /CN=ecbbf2ba5b32e42e8b6c03b836d764f975b5898f
Certificate serial: 019420687664748F4E3D8E67748769D05450
Authority key identifier: EC:BB:F2:BA:5B:32:E4:2E:8B:6C:03:B8:36:D7:64:F9:75:B5:89:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7Lvyulsy5C6LbAO4Ntdk-XW1iY8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/431105-67a2-49cb-b7e0-83ffc80073b2/1/keUTzloof1e5LCPNjCM6qrztCW0.roa
Signing time: Wed 01 Jan 2025 05:48:24 +0000
ROA not before: Wed 01 Jan 2025 05:48:24 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212874
IP address blocks: 2a0c:fb00::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:68:76:64:74:8f:4e:3d:8e:67:74:87:69:d0:54:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ecbbf2ba5b32e42e8b6c03b836d764f975b5898f
Validity
Not Before: Jan 1 05:48:24 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=91e513ce5a287f57b92c23cd8c233aaabced096d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:93:34:f9:9b:7c:df:42:92:51:bf:18:5d:d0:
5b:b1:05:88:32:d4:3e:7c:8a:05:47:86:3e:83:d0:
11:87:15:5d:e0:45:08:1e:b7:2d:0b:ab:57:88:79:
81:ab:c6:d9:9a:01:8a:de:83:bd:a4:3a:cc:02:46:
3a:98:a3:d2:bc:88:c8:b3:57:07:cf:2c:c9:12:50:
e0:0b:54:cf:a1:82:92:3a:b8:dd:44:e1:1a:14:1e:
da:ce:c6:8b:96:a8:9f:0f:e8:58:01:00:cc:3c:20:
a6:9e:00:ee:68:ec:cb:e6:f7:5c:b8:93:4b:6d:36:
f6:8a:9b:4d:52:bf:49:0a:7f:c6:97:6e:27:41:7c:
62:91:3b:e6:d7:fa:8b:77:3c:72:06:58:75:5a:49:
37:c9:36:07:4d:89:66:3e:56:cc:80:2c:74:9e:93:
34:42:e3:23:36:e1:71:9b:74:9d:a1:0a:9a:f0:58:
b8:56:0c:3e:87:99:17:7d:98:93:3d:a6:0e:ff:54:
26:1a:67:e5:51:fc:f0:4c:34:e0:94:c7:61:1c:44:
54:d5:3d:cf:07:80:69:4b:b6:f1:10:67:38:24:34:
a5:3c:6c:29:7e:e0:da:68:84:ae:08:0c:9f:31:24:
54:0a:d4:bd:fb:27:c8:8a:28:50:40:6e:70:c4:87:
e7:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:E5:13:CE:5A:28:7F:57:B9:2C:23:CD:8C:23:3A:AA:BC:ED:09:6D
X509v3 Authority Key Identifier:
keyid:EC:BB:F2:BA:5B:32:E4:2E:8B:6C:03:B8:36:D7:64:F9:75:B5:89:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7Lvyulsy5C6LbAO4Ntdk-XW1iY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/431105-67a2-49cb-b7e0-83ffc80073b2/1/keUTzloof1e5LCPNjCM6qrztCW0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/431105-67a2-49cb-b7e0-83ffc80073b2/1/7Lvyulsy5C6LbAO4Ntdk-XW1iY8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:fb00::/29
Signature Algorithm: sha256WithRSAEncryption
12:6f:a6:55:1a:a7:d5:3d:bc:f8:43:4b:e4:54:66:61:07:03:
26:fc:5e:75:56:3b:18:f5:81:44:c4:5f:1f:83:80:ce:85:80:
75:02:78:b4:af:18:12:50:41:02:8e:88:ef:f1:73:52:3d:d0:
ac:7b:0b:9f:be:86:57:21:49:61:25:2e:c2:46:28:0e:ce:c1:
39:39:75:b4:7d:d9:99:1e:61:a1:58:05:90:4e:44:cb:03:ee:
aa:05:97:ea:4a:e7:dd:75:8b:87:bb:52:27:38:25:cb:df:fd:
bb:48:ba:b1:47:c8:0e:95:97:69:f2:3b:d3:2b:5d:cb:3e:dd:
27:43:d4:a4:c9:8b:a3:db:34:87:da:b3:d6:73:4d:af:d2:0c:
06:ef:fb:37:7e:14:64:d9:e4:e7:fd:79:42:53:40:84:bb:4d:
61:f6:9d:a6:db:29:e1:5a:14:1f:e7:97:4d:28:57:9f:59:55:
99:d8:71:2e:26:ec:1e:69:77:52:ca:0f:4b:b8:20:68:d5:b4:
a6:25:e2:9d:d2:6c:dc:63:d1:91:19:7a:da:a3:c4:59:be:1d:
3d:a7:17:c8:48:3a:1c:6a:33:8e:82:d6:06:6f:6b:0c:c8:1b:
c6:e5:b2:42:c8:0a:78:87:3c:cf:f4:05:0b:2f:fd:4d:16:a6:
82:ae:af:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:15 2025 by rpki-client on console.sobornost.net