Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/e589c2-1acb-4d82-9b9a-52362b6b3334/1/inNKkDFxcUNq5FXZVVy7-DSSYCQ.roa
File: inNKkDFxcUNq5FXZVVy7-DSSYCQ.roa (raw, json)
Hash identifier: k4FJ7ff3nr4506kIqSUj3qTtLfz2+PJT75ZSUSvS0y8=
Subject key identifier: 8A:73:4A:90:31:71:71:43:6A:E4:55:D9:55:5C:BB:F8:34:92:60:24
Certificate issuer: /CN=05964b6d51902fdc1aa6841bb3d3c622a579825a
Certificate serial: 0194236A1C8FB1EE8A17E1A2B2F230BAB23A
Authority key identifier: 05:96:4B:6D:51:90:2F:DC:1A:A6:84:1B:B3:D3:C6:22:A5:79:82:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZZLbVGQL9wapoQbs9PGIqV5glo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/e589c2-1acb-4d82-9b9a-52362b6b3334/1/inNKkDFxcUNq5FXZVVy7-DSSYCQ.roa
Signing time: Wed 01 Jan 2025 19:49:04 +0000
ROA not before: Wed 01 Jan 2025 19:49:04 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 202520
IP address blocks: 2001:67c:b58::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:6a:1c:8f:b1:ee:8a:17:e1:a2:b2:f2:30:ba:b2:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05964b6d51902fdc1aa6841bb3d3c622a579825a
Validity
Not Before: Jan 1 19:49:04 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8a734a90317171436ae455d9555cbbf834926024
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:dc:f6:b3:29:e4:50:62:3d:03:a4:5a:2d:96:
4f:c0:e5:5d:79:d2:af:60:8f:e5:2b:42:91:b3:45:
ca:8c:31:bd:bf:5c:8c:e0:7b:9d:49:7d:e4:eb:04:
08:a6:46:b1:7f:08:1f:71:53:87:af:c7:59:97:86:
24:29:c6:9d:dc:59:02:0d:8e:ca:e2:2e:d3:0c:8e:
62:1b:31:54:50:9e:a0:09:45:45:4f:0d:9f:ef:07:
2d:f1:3f:30:b3:8d:c7:0a:ed:d3:61:71:7d:80:59:
e2:d9:31:bb:69:0c:cc:6b:c7:b3:a2:bf:33:65:f3:
d1:ec:26:36:a6:a0:88:07:1f:c3:45:5e:1b:c1:af:
b7:16:af:3e:92:1f:95:40:d4:17:08:4d:e9:16:e0:
c0:b0:60:41:e4:6c:54:d6:94:60:7c:48:33:29:22:
51:f1:75:12:98:d9:16:88:a4:e4:16:35:5d:32:c7:
92:7f:e9:a7:da:18:09:7a:b2:66:fa:4d:ab:0c:2a:
ed:7b:16:b7:14:50:f2:69:4d:96:13:09:e6:4a:62:
3f:b1:f9:93:1b:60:bf:f1:10:0a:00:e6:b2:e5:55:
95:35:5a:00:8d:a8:95:e7:12:99:81:99:1f:85:34:
62:fd:34:ea:85:3d:15:2d:a7:d6:80:c7:94:19:63:
35:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:73:4A:90:31:71:71:43:6A:E4:55:D9:55:5C:BB:F8:34:92:60:24
X509v3 Authority Key Identifier:
keyid:05:96:4B:6D:51:90:2F:DC:1A:A6:84:1B:B3:D3:C6:22:A5:79:82:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZZLbVGQL9wapoQbs9PGIqV5glo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e589c2-1acb-4d82-9b9a-52362b6b3334/1/inNKkDFxcUNq5FXZVVy7-DSSYCQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e589c2-1acb-4d82-9b9a-52362b6b3334/1/BZZLbVGQL9wapoQbs9PGIqV5glo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:b58::/48
Signature Algorithm: sha256WithRSAEncryption
0f:c1:75:d1:78:57:b9:83:31:74:9b:72:5a:8d:bc:fe:c8:62:
9e:16:ce:b4:09:c9:b7:ee:f7:ca:ea:2c:b3:4e:c8:67:fc:d0:
e5:a3:d2:98:69:eb:93:d6:d7:bc:86:f0:86:25:e3:9b:de:09:
01:08:e1:79:18:cd:eb:81:9a:3d:96:d5:c3:65:4d:09:0e:69:
fd:32:e0:dd:11:34:18:83:9e:7e:95:7f:c3:9c:16:4b:56:51:
21:b1:4a:a4:8e:61:1b:2c:48:a2:d0:c0:60:5d:5e:e8:69:b3:
fd:57:79:0c:5c:25:0e:b3:be:80:93:90:24:7e:77:72:3c:bb:
7e:b2:97:8d:bb:25:a9:66:e7:54:c4:2b:65:f0:39:bc:7f:be:
92:af:8e:56:41:69:12:6b:b5:cc:12:1e:9a:a4:c8:a1:de:e5:
29:d9:f3:e4:ff:63:52:9c:41:a2:dc:fe:a1:d8:d8:d0:03:ba:
22:52:0b:aa:4d:c8:a4:22:e6:7c:c3:d2:31:5c:d6:ce:c6:af:
7f:78:6e:23:89:8e:20:7b:6f:81:b3:8e:ab:df:e6:7b:46:a7:
66:ac:23:04:80:01:2b:4a:31:be:a4:20:4a:9e:e6:0b:61:e9:
14:3d:6c:59:bb:da:3e:a2:8a:fa:b3:3d:e8:15:74:23:4d:63:
48:a3:55:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:15 2025 by rpki-client on console.sobornost.net