Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/14f2c5-46fe-4670-9dd6-21c58470b8d2/1/Zqne7w4Tvp4dVwqTAIVn_ejmVzM.roa
File: Zqne7w4Tvp4dVwqTAIVn_ejmVzM.roa (raw, json)
Hash identifier: 0xC/Fcc0rzUx3NsMcFdemExDKk2Y+Hc3aVGnwBXOWlA=
Subject key identifier: 66:A9:DE:EF:0E:13:BE:9E:1D:57:0A:93:00:85:67:FD:E8:E6:57:33
Certificate issuer: /CN=e1e8b7cab521e88e8022a36424544185538a7b33
Certificate serial: 019423D742FD504189D2A67CAAAF807E8D84
Authority key identifier: E1:E8:B7:CA:B5:21:E8:8E:80:22:A3:64:24:54:41:85:53:8A:7B:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4ei3yrUh6I6AIqNkJFRBhVOKezM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/14f2c5-46fe-4670-9dd6-21c58470b8d2/1/Zqne7w4Tvp4dVwqTAIVn_ejmVzM.roa
Signing time: Wed 01 Jan 2025 21:48:17 +0000
ROA not before: Wed 01 Jan 2025 21:48:17 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48214
IP address blocks: 2a13:1640::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:42:fd:50:41:89:d2:a6:7c:aa:af:80:7e:8d:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1e8b7cab521e88e8022a36424544185538a7b33
Validity
Not Before: Jan 1 21:48:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=66a9deef0e13be9e1d570a93008567fde8e65733
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:68:3a:9c:d3:73:fd:61:0b:c2:ad:89:a9:c0:
2d:76:9f:f4:94:73:23:3a:01:cc:92:5d:76:87:47:
e7:d3:36:f8:ec:e8:79:44:0a:d6:2b:07:72:8f:df:
e2:32:cb:b8:44:50:cf:a2:a1:d2:9d:83:89:8b:77:
3a:7d:07:e4:a0:1b:ac:71:ec:b8:08:e1:b3:30:8b:
b0:dc:9a:5a:36:69:36:1a:e9:cc:06:e4:1e:eb:aa:
99:64:27:6c:4e:42:59:82:aa:e3:8e:3d:94:46:e0:
86:90:86:fd:56:2b:4b:79:c8:be:fd:66:7b:0e:22:
88:cd:79:90:2a:10:04:85:a1:76:26:bd:e7:3c:d2:
56:3a:ec:a9:6c:91:63:3d:08:51:e9:dd:20:d4:a1:
03:8e:8b:bd:3a:0b:74:32:74:4f:11:38:02:e3:6a:
c7:b0:fb:1d:a5:21:c1:5e:5f:5a:05:ae:32:ca:6d:
cc:91:9e:44:5c:1e:80:b5:e9:4e:b3:81:0e:f6:d5:
70:fe:4d:de:b5:db:a2:14:85:ae:23:a0:3d:41:ac:
b6:b4:59:ba:82:45:9b:58:e2:e3:ee:59:ff:6d:2f:
de:c0:f4:c9:c9:7c:6a:58:c1:7f:c1:38:62:1b:e3:
61:4d:ef:20:30:e7:dd:82:00:9e:9f:e1:b6:4d:62:
5c:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:A9:DE:EF:0E:13:BE:9E:1D:57:0A:93:00:85:67:FD:E8:E6:57:33
X509v3 Authority Key Identifier:
keyid:E1:E8:B7:CA:B5:21:E8:8E:80:22:A3:64:24:54:41:85:53:8A:7B:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4ei3yrUh6I6AIqNkJFRBhVOKezM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/14f2c5-46fe-4670-9dd6-21c58470b8d2/1/Zqne7w4Tvp4dVwqTAIVn_ejmVzM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/14f2c5-46fe-4670-9dd6-21c58470b8d2/1/4ei3yrUh6I6AIqNkJFRBhVOKezM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:1640::/29
Signature Algorithm: sha256WithRSAEncryption
86:01:a5:df:26:72:78:41:ff:6d:cc:15:ab:91:4c:3b:cd:b6:
a3:03:bf:7d:37:9b:eb:56:e8:00:84:c6:90:eb:32:37:75:42:
27:aa:fb:4e:3a:b6:38:b8:32:17:f7:83:11:66:ed:12:23:3e:
a8:c2:4a:46:06:c9:fa:ff:14:35:f6:a5:cd:65:2b:f2:f8:fc:
85:8e:e0:82:84:ac:3d:85:83:4f:83:10:61:e0:8c:a9:5c:21:
da:a5:c8:68:8f:dd:3d:77:11:5d:2b:09:ba:61:43:93:30:1e:
fc:54:a8:f5:16:b6:4b:e8:80:54:81:b2:dc:b6:32:66:46:d8:
71:96:3f:d9:e4:9d:ca:26:6a:ba:d8:d8:98:58:29:af:66:d4:
1f:49:60:21:22:ae:a8:08:09:7f:c9:e2:68:81:6a:18:ec:f9:
6a:3e:d8:69:de:06:ac:2d:00:37:fd:24:17:4f:bd:15:55:3b:
10:99:36:aa:4d:b3:aa:48:16:b6:ca:db:32:f1:44:97:f7:45:
81:82:04:34:9a:2b:36:e9:73:78:74:c9:cf:91:ce:b9:65:91:
e4:4c:07:7b:78:b4:51:74:99:eb:ef:62:0c:d3:71:16:08:01:
6e:f4:39:47:72:15:6c:25:86:af:1a:49:06:e5:5c:7e:31:fd:
f1:23:a7:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:17 2025 by rpki-client on console.sobornost.net