Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/96dff3-abe5-48fb-aa25-526e7f6d7f5b/1/aBUgXPt-AuoP5xgLF4UGTkPYOmI.roa
File: aBUgXPt-AuoP5xgLF4UGTkPYOmI.roa (raw, json)
Hash identifier: 1abPHA97s7oD1kkbcwUPa4QCZkFrwRi930sxcHARzWg=
Subject key identifier: 68:15:20:5C:FB:7E:02:EA:0F:E7:18:0B:17:85:06:4E:43:D8:3A:62
Certificate issuer: /CN=061474cecdf5f503adab60fc55ee7f78a0dba9f2
Certificate serial: 019422FAE66266AFB723EA633A1A19589F54
Authority key identifier: 06:14:74:CE:CD:F5:F5:03:AD:AB:60:FC:55:EE:7F:78:A0:DB:A9:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BhR0zs319QOtq2D8Ve5_eKDbqfI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/96dff3-abe5-48fb-aa25-526e7f6d7f5b/1/aBUgXPt-AuoP5xgLF4UGTkPYOmI.roa
Signing time: Wed 01 Jan 2025 17:47:35 +0000
ROA not before: Wed 01 Jan 2025 17:47:35 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 208925
IP address blocks: 2a12:d340::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fa:e6:62:66:af:b7:23:ea:63:3a:1a:19:58:9f:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=061474cecdf5f503adab60fc55ee7f78a0dba9f2
Validity
Not Before: Jan 1 17:47:35 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6815205cfb7e02ea0fe7180b1785064e43d83a62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:25:fd:5d:30:e7:b4:af:17:32:bd:60:26:34:
9e:79:be:26:3f:98:e4:35:1d:38:01:e1:74:14:f7:
9b:e5:db:0c:0c:6e:74:95:22:df:6a:e2:d6:41:2e:
0c:ce:dd:3b:76:dd:be:6c:e9:44:2c:14:ed:db:04:
25:b6:a6:ab:2f:1a:91:37:b1:a5:e1:b5:06:23:d6:
e4:86:0b:54:63:08:6a:4b:22:cc:01:b1:6f:48:4b:
bf:f4:8b:e4:62:92:1f:b0:1e:a0:ba:0f:1c:ae:c2:
e9:cf:89:58:45:75:88:4d:5f:9e:5c:ef:f8:6f:ad:
e9:fe:3e:cf:6e:d3:83:28:fa:d9:a5:65:de:e0:2c:
ef:5a:97:ce:a4:73:26:53:8c:e8:24:bc:13:8f:3c:
7a:f2:b3:0b:07:4c:e4:38:53:a6:dd:0e:62:14:ba:
29:f3:0b:d2:38:e0:36:25:c2:91:cb:3d:8a:4d:c2:
07:15:46:6b:82:ab:f5:13:6c:b7:b8:e3:b3:65:18:
4e:29:c2:3c:3c:88:8d:52:57:ab:8a:3a:97:03:7a:
3d:b2:5d:5a:44:cf:9c:5f:f6:6a:48:22:63:9e:e0:
a4:33:ae:26:e4:c1:18:7f:1a:4d:3c:48:a9:07:d6:
dd:b1:f8:de:ab:05:66:16:96:56:39:97:37:7f:a5:
be:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:15:20:5C:FB:7E:02:EA:0F:E7:18:0B:17:85:06:4E:43:D8:3A:62
X509v3 Authority Key Identifier:
keyid:06:14:74:CE:CD:F5:F5:03:AD:AB:60:FC:55:EE:7F:78:A0:DB:A9:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BhR0zs319QOtq2D8Ve5_eKDbqfI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/96dff3-abe5-48fb-aa25-526e7f6d7f5b/1/aBUgXPt-AuoP5xgLF4UGTkPYOmI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/96dff3-abe5-48fb-aa25-526e7f6d7f5b/1/BhR0zs319QOtq2D8Ve5_eKDbqfI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:d340::/29
Signature Algorithm: sha256WithRSAEncryption
a1:73:fe:e4:65:2a:25:25:c2:1d:75:94:47:25:e9:8f:54:df:
a5:a1:19:68:c3:01:b5:51:67:18:f9:ee:47:5f:c0:8a:3e:2d:
50:03:9d:e2:e6:8f:00:8c:31:30:79:85:a8:4d:6a:3a:6e:e9:
b0:e1:53:1b:03:ab:af:70:16:a5:d9:45:1a:1f:7f:6c:48:fc:
0e:7c:a1:b3:9e:a9:ee:07:4b:a8:96:1b:b2:c7:4d:e2:c9:cf:
2e:f1:02:80:eb:b8:ed:6d:ea:ad:50:4c:48:58:aa:a0:6e:e0:
df:e0:41:93:e8:aa:3e:0a:e6:dd:7d:6f:26:44:df:4c:d2:31:
e2:3d:af:c4:5f:a7:32:20:15:65:a8:d2:8c:15:fb:ae:c8:72:
e5:79:ca:11:b0:a0:7a:da:c4:c1:3b:00:26:5a:b4:14:75:c7:
60:80:ef:30:1b:a5:99:0c:74:ac:5b:11:9f:c7:b7:23:76:47:
bc:9e:f8:cc:f8:6a:a3:5a:50:10:c6:c8:1a:78:76:d8:16:c8:
33:58:00:91:fb:65:d9:91:2c:d3:70:15:03:dc:43:aa:d8:67:
5b:7b:10:aa:1e:7a:38:c0:6e:4f:2e:1b:47:ce:96:81:2f:8d:
f0:ac:d1:28:c2:79:ac:94:2f:a5:77:f8:4e:c1:58:17:0d:4f:
27:5c:5c:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:26 2025 by rpki-client on console.sobornost.net