Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/fiXZjFVhkN8HnCYHCQ4y4EM5tTw.roa
File: fiXZjFVhkN8HnCYHCQ4y4EM5tTw.roa (raw, json)
Hash identifier: WGUlo6TBZJCZDArB+udlJuMvOeQwlu964bRVTQeiYz0=
Subject key identifier: 7E:25:D9:8C:55:61:90:DF:07:9C:26:07:09:0E:32:E0:43:39:B5:3C
Certificate issuer: /CN=9a1e69368abd34538fe77ddaabcdc835af595eba
Certificate serial: 01941F8C4B81AC10EB231EC4BBD216A99F40
Authority key identifier: 9A:1E:69:36:8A:BD:34:53:8F:E7:7D:DA:AB:CD:C8:35:AF:59:5E:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mh5pNoq9NFOP533aq83INa9ZXro.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/fiXZjFVhkN8HnCYHCQ4y4EM5tTw.roa
Signing time: Wed 01 Jan 2025 01:47:55 +0000
ROA not before: Wed 01 Jan 2025 01:47:55 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 57755
IP address blocks: 2a0a:4e00::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:4b:81:ac:10:eb:23:1e:c4:bb:d2:16:a9:9f:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a1e69368abd34538fe77ddaabcdc835af595eba
Validity
Not Before: Jan 1 01:47:55 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7e25d98c556190df079c2607090e32e04339b53c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:4e:5f:80:8c:d7:91:8d:d1:09:e6:a5:ad:c4:
6a:7c:7e:d0:1d:a6:fc:6e:29:8f:d8:46:b6:80:21:
a0:97:d9:6c:c3:34:2c:20:8f:e1:16:b0:4d:3a:7a:
7a:59:96:0f:b4:da:84:fd:a9:70:8c:5e:a9:9e:9e:
81:8f:e7:e7:25:c5:2f:c3:d9:2a:bf:15:4d:20:bd:
26:7d:4c:15:62:a7:3e:e5:3c:d1:31:0e:29:e3:6b:
f3:ef:25:51:f3:4f:17:fd:58:37:91:69:a3:17:79:
e8:5d:41:49:6b:db:1b:aa:19:77:6c:d1:a8:a3:b1:
6c:0a:b6:01:5e:da:2c:ab:60:99:d5:bc:34:88:d9:
88:ad:5a:ce:59:22:58:f8:99:88:13:e3:d9:d6:21:
52:4f:41:5e:45:52:41:ff:82:7c:c2:04:2f:72:0b:
03:c7:93:9c:06:f9:57:13:f3:b2:22:97:b9:89:ba:
2a:38:ae:a8:b3:26:b3:21:e7:34:06:66:6c:36:aa:
a9:58:d6:db:7d:1f:e0:6b:42:57:c9:ac:5f:fa:b5:
0b:07:2b:88:d6:00:e6:a0:60:b8:ce:fe:4e:d9:02:
1b:1e:c3:43:7f:54:5a:e6:2e:54:b4:98:aa:20:55:
e6:51:84:9d:f2:a7:02:5d:f5:84:bf:e4:6e:37:eb:
4e:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:25:D9:8C:55:61:90:DF:07:9C:26:07:09:0E:32:E0:43:39:B5:3C
X509v3 Authority Key Identifier:
keyid:9A:1E:69:36:8A:BD:34:53:8F:E7:7D:DA:AB:CD:C8:35:AF:59:5E:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mh5pNoq9NFOP533aq83INa9ZXro.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/fiXZjFVhkN8HnCYHCQ4y4EM5tTw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/mh5pNoq9NFOP533aq83INa9ZXro.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:4e00::/29
Signature Algorithm: sha256WithRSAEncryption
44:68:45:d2:f0:1a:fa:ae:93:a2:54:d6:9e:52:27:b9:af:98:
66:12:ce:e0:b9:4f:be:03:7f:14:fe:66:1d:0a:35:e8:98:1a:
60:ed:da:d7:be:81:2c:06:2e:2c:85:71:60:ba:8f:62:18:31:
94:de:c5:c4:24:ad:14:0c:16:af:b6:77:48:87:e3:2d:b8:b6:
78:ff:72:11:5c:e6:d8:d0:c5:03:b6:7e:0a:2f:ec:75:8a:93:
df:d0:e8:34:4b:d4:aa:cf:b7:11:4b:e7:9e:50:64:b6:78:64:
47:4a:59:7d:9b:61:4a:14:f1:7d:ac:ad:9f:6a:44:32:d9:ab:
62:bd:51:49:05:86:c5:18:02:68:4c:2c:1e:23:86:9d:e0:61:
54:4f:e3:cf:52:bf:2a:db:5c:26:d0:b7:36:26:f9:23:57:6f:
42:03:62:63:e1:c8:01:96:8f:6f:66:f9:5f:30:6c:35:36:45:
19:f4:36:51:f7:d3:61:9c:45:29:1a:1f:d8:cc:2b:71:47:9a:
82:8a:5c:a8:0a:5f:0b:2f:c6:66:b4:b1:fb:00:45:3b:c8:d9:
21:40:53:af:98:7d:0e:3d:09:72:8d:3e:95:3c:4e:16:4f:0e:
f0:84:94:da:f8:ff:95:e7:00:dc:ed:92:0a:eb:d2:91:16:a9:
17:e0:4d:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:25 2025 by rpki-client on console.sobornost.net