Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/dbb22b-2a1a-4762-a0f7-32f5a9507731/1/zQfM-JDEyYtnlHUMMTArONbOmM8.roa
File: zQfM-JDEyYtnlHUMMTArONbOmM8.roa (raw, json)
Hash identifier: BsV8fCwOGo+p3hz5+JexWR4GrgumAGIe4ztslYYq+fQ=
Subject key identifier: CD:07:CC:F8:90:C4:C9:8B:67:94:75:0C:31:30:2B:38:D6:CE:98:CF
Certificate issuer: /CN=7d965ea6b39c22aec2ad2d4d4c0a3a313df1defa
Certificate serial: 01942143C028DC35A0080116B1811E4CFB5D
Authority key identifier: 7D:96:5E:A6:B3:9C:22:AE:C2:AD:2D:4D:4C:0A:3A:31:3D:F1:DE:FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fZZeprOcIq7CrS1NTAo6MT3x3vo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/dbb22b-2a1a-4762-a0f7-32f5a9507731/1/zQfM-JDEyYtnlHUMMTArONbOmM8.roa
Signing time: Wed 01 Jan 2025 09:47:55 +0000
ROA not before: Wed 01 Jan 2025 09:47:55 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 207175
IP address blocks: 2a13:79c0:ff00::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:43:c0:28:dc:35:a0:08:01:16:b1:81:1e:4c:fb:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d965ea6b39c22aec2ad2d4d4c0a3a313df1defa
Validity
Not Before: Jan 1 09:47:55 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=cd07ccf890c4c98b6794750c31302b38d6ce98cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:96:f3:f3:5a:b9:46:cf:a1:a6:a7:10:89:02:
81:02:91:d3:7c:fd:f0:46:f6:23:01:7b:a3:82:fa:
45:e6:a9:dd:ea:9f:a2:f7:e6:8b:35:0b:97:4b:b1:
47:19:52:00:49:96:88:21:a3:2d:f2:51:6e:41:a5:
62:0d:91:01:16:b2:10:70:33:24:b1:05:e4:34:27:
a6:a9:78:65:47:81:5b:8e:46:e7:9d:14:a2:95:fc:
ab:93:e8:4f:97:a9:f4:d6:25:6d:e6:5d:3e:3d:29:
95:22:d8:a1:58:ca:dc:ab:1d:55:fa:59:ef:ca:84:
7b:47:bc:a7:4d:84:b8:61:9e:4c:08:c7:ba:8f:f7:
d8:27:b4:5b:60:63:26:7e:2a:e4:f9:08:11:09:cb:
f4:3e:c8:a5:81:f7:a6:52:d1:65:43:53:b4:34:3a:
18:ab:92:74:f8:fb:82:c3:fa:f8:a0:77:a6:df:bf:
65:ce:92:30:30:88:e2:0d:f2:80:13:a2:72:40:97:
d6:ec:c5:f1:ae:ef:0c:f1:35:f7:86:b7:c5:83:56:
93:d7:c6:1f:e9:ae:70:1f:5b:86:7e:b4:9b:53:31:
2d:6a:0a:90:77:92:a7:2a:99:a4:9d:9c:82:b5:c6:
7f:65:40:4f:08:19:02:45:27:0f:c4:7d:57:db:aa:
14:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:07:CC:F8:90:C4:C9:8B:67:94:75:0C:31:30:2B:38:D6:CE:98:CF
X509v3 Authority Key Identifier:
keyid:7D:96:5E:A6:B3:9C:22:AE:C2:AD:2D:4D:4C:0A:3A:31:3D:F1:DE:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fZZeprOcIq7CrS1NTAo6MT3x3vo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/dbb22b-2a1a-4762-a0f7-32f5a9507731/1/zQfM-JDEyYtnlHUMMTArONbOmM8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/dbb22b-2a1a-4762-a0f7-32f5a9507731/1/fZZeprOcIq7CrS1NTAo6MT3x3vo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:79c0:ff00::/40
Signature Algorithm: sha256WithRSAEncryption
c4:ec:44:1a:ce:b8:78:17:52:77:86:96:e7:ee:79:82:ed:0d:
92:fb:8a:be:9c:21:8e:57:c7:1b:05:b1:1e:4f:35:04:f4:1e:
1c:f3:fc:0a:51:9b:44:7b:45:e4:48:bf:68:99:f8:96:0d:fa:
da:25:31:e9:53:8b:ca:ee:0e:1a:5f:be:fb:3d:3b:c2:35:06:
dc:52:b9:6a:90:28:78:79:78:cb:4c:42:5c:d7:9a:b0:4e:aa:
90:82:9a:ae:aa:a7:db:e3:26:e3:03:75:e6:c1:98:ae:f4:1b:
b1:68:2d:a3:93:ea:5b:9c:8b:f4:ac:4e:d5:f5:9a:85:c0:c8:
9d:be:f9:25:f7:9d:13:3a:b7:6a:2f:8f:26:31:88:11:40:58:
60:8a:5b:a1:d9:20:a9:16:b1:c0:77:c1:9f:f3:aa:b7:e0:3f:
aa:0a:9b:21:5f:8d:87:9d:eb:e9:2e:00:5d:7b:e4:a5:73:b8:
2a:3f:1b:ec:4e:a6:49:b9:79:cb:1e:77:05:af:ea:3b:a5:8a:
c9:4a:e7:66:c9:94:16:55:95:5f:48:28:2d:4f:13:8d:f2:ad:
3f:1f:af:0b:fb:aa:fe:4d:74:a9:e8:29:2d:0f:94:bd:df:f0:
5e:1b:4e:4c:4c:2a:9b:0e:13:1c:1d:22:07:4d:a9:50:23:95:
d0:01:cf:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:32 2025 by rpki-client on console.sobornost.net