Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/bc57ff-ab1b-4651-95b4-ddd7bf93d356/1/pOwukpz6uQtAZQ26wgZyWA0w-Pc.roa
File: pOwukpz6uQtAZQ26wgZyWA0w-Pc.roa (raw, json)
Hash identifier: 0LNaJ+BbQgNK+Ci6/J4w+3/assiqy/xOnI28WaXKzkw=
Subject key identifier: A4:EC:2E:92:9C:FA:B9:0B:40:65:0D:BA:C2:06:72:58:0D:30:F8:F7
Certificate issuer: /CN=e73df155c87a590ac1e538544cf3356e4fc81748
Certificate serial: 0194221F71576D9A595C1D9021C214BAB4F3
Authority key identifier: E7:3D:F1:55:C8:7A:59:0A:C1:E5:38:54:4C:F3:35:6E:4F:C8:17:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5z3xVch6WQrB5ThUTPM1bk_IF0g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/bc57ff-ab1b-4651-95b4-ddd7bf93d356/1/pOwukpz6uQtAZQ26wgZyWA0w-Pc.roa
Signing time: Wed 01 Jan 2025 13:47:53 +0000
ROA not before: Wed 01 Jan 2025 13:47:53 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206384
IP address blocks: 2001:678:ce0::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:71:57:6d:9a:59:5c:1d:90:21:c2:14:ba:b4:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e73df155c87a590ac1e538544cf3356e4fc81748
Validity
Not Before: Jan 1 13:47:53 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a4ec2e929cfab90b40650dbac20672580d30f8f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:f6:76:39:31:2c:66:95:d2:6d:b8:00:e5:92:
46:f0:e7:ac:4e:4b:9f:1c:7f:07:a9:73:68:91:b0:
29:33:66:7a:dd:3f:aa:37:79:97:61:0a:ab:3c:e6:
8f:0a:1b:c8:af:fe:99:36:83:01:dc:f4:f6:9b:1c:
9e:24:05:33:cb:92:d6:ff:9a:f8:fd:d2:2e:f8:6f:
31:25:37:4c:90:55:16:32:96:6e:31:59:64:2f:ea:
67:8f:ec:87:ac:21:ad:eb:55:70:c4:0f:6c:76:15:
4f:ae:16:f7:30:ac:e2:ae:6d:9e:b0:62:fe:a0:30:
b0:ee:19:90:a7:e9:7b:61:25:dc:57:33:91:43:cf:
0e:2f:62:29:5a:69:4c:e3:55:11:f4:7b:0f:72:23:
14:bc:5f:f8:4d:4d:0d:de:98:4a:b9:ec:74:64:ec:
77:d1:33:1d:ba:de:ee:eb:f7:de:c0:e6:af:cb:c4:
01:69:ee:6d:ec:b0:68:f2:c4:84:6d:ec:81:2d:07:
30:be:a6:97:16:6e:72:8f:83:dc:c6:d1:f4:a7:25:
0b:e4:2a:dd:4f:45:31:c2:7c:46:bf:20:8c:16:70:
4c:d1:9d:45:af:cc:cd:32:16:d6:08:3e:f4:4c:f0:
7a:eb:29:4a:e9:84:0c:20:98:41:5f:d4:8b:8a:09:
94:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:EC:2E:92:9C:FA:B9:0B:40:65:0D:BA:C2:06:72:58:0D:30:F8:F7
X509v3 Authority Key Identifier:
keyid:E7:3D:F1:55:C8:7A:59:0A:C1:E5:38:54:4C:F3:35:6E:4F:C8:17:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5z3xVch6WQrB5ThUTPM1bk_IF0g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/bc57ff-ab1b-4651-95b4-ddd7bf93d356/1/pOwukpz6uQtAZQ26wgZyWA0w-Pc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/bc57ff-ab1b-4651-95b4-ddd7bf93d356/1/5z3xVch6WQrB5ThUTPM1bk_IF0g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:ce0::/48
Signature Algorithm: sha256WithRSAEncryption
a5:c1:44:5f:45:58:2c:fa:82:4b:8c:6b:3b:eb:53:e3:b6:5c:
53:f1:cc:11:21:9a:df:2b:ff:a9:ba:9b:09:15:bc:90:e9:fd:
30:37:d1:94:8d:60:a6:41:73:3d:f5:1c:25:fc:b8:93:6b:25:
f9:97:fa:6b:a2:49:21:66:d8:26:6e:32:ee:74:0a:a7:48:04:
a3:60:66:d5:dd:59:93:18:a6:75:d4:a7:1d:8f:de:ff:86:c2:
35:95:96:b8:4c:a8:c5:23:33:70:62:b8:4a:0b:65:ae:1b:e7:
17:d0:26:d6:b0:65:c8:73:19:c4:51:8a:15:fa:17:d4:05:7c:
1e:68:23:0d:b6:92:75:5c:35:4f:71:a7:3b:0c:90:e6:74:b8:
9e:ab:49:40:02:98:2f:bd:27:d5:47:bc:e6:09:bd:51:77:04:
41:95:dd:f2:18:9e:94:52:97:6b:83:d6:b8:72:2a:7a:93:d8:
8d:ed:3b:aa:c7:ce:28:e9:87:d2:1e:ca:08:d0:c1:9f:cc:a4:
9c:18:00:d3:af:17:c3:73:08:1c:2c:b1:f9:27:ad:39:08:64:
9d:27:1b:74:29:5a:ae:24:8f:87:3f:a2:fc:75:5e:d2:15:c3:
e5:f0:01:71:6c:7b:c2:2f:65:32:c5:60:51:7c:20:b5:f0:85:
68:6a:5a:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:31 2025 by rpki-client on console.sobornost.net