Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/fccc7e-b511-451f-b982-dc85864aea89/1/z2a61Gj6rvrVvZkUxnDVYoDePIo.roa
File: z2a61Gj6rvrVvZkUxnDVYoDePIo.roa (raw, json)
Hash identifier: fvPf2Sq/vTgc0jy8x0X8WEqIuNGU5IX5ZX53TRDJUSs=
Subject key identifier: CF:66:BA:D4:68:FA:AE:FA:D5:BD:99:14:C6:70:D5:62:80:DE:3C:8A
Certificate issuer: /CN=81e3e697cdd6e225ac5b1161cdf704de9cfc2655
Certificate serial: 0194266BA66745FB687782F629EE8D02182D
Authority key identifier: 81:E3:E6:97:CD:D6:E2:25:AC:5B:11:61:CD:F7:04:DE:9C:FC:26:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gePml83W4iWsWxFhzfcE3pz8JlU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/fccc7e-b511-451f-b982-dc85864aea89/1/z2a61Gj6rvrVvZkUxnDVYoDePIo.roa
Signing time: Thu 02 Jan 2025 09:49:36 +0000
ROA not before: Thu 02 Jan 2025 09:49:36 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 205491
IP address blocks: 2001:67c:b7c::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:a6:67:45:fb:68:77:82:f6:29:ee:8d:02:18:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81e3e697cdd6e225ac5b1161cdf704de9cfc2655
Validity
Not Before: Jan 2 09:49:36 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=cf66bad468faaefad5bd9914c670d56280de3c8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:7d:70:5c:9f:32:15:6b:9f:4a:9e:59:4b:cc:
a6:2a:8f:17:68:99:28:ee:3b:05:2c:ff:8e:cd:c5:
02:5d:82:48:2a:18:ba:19:97:b9:2d:c1:fa:b2:b5:
63:6e:2e:af:69:a7:f2:81:39:f8:5c:bb:89:13:e1:
85:f5:06:0a:34:c3:a1:18:b9:88:11:48:05:f4:f6:
91:2b:4e:b7:7c:85:ab:6c:a4:40:06:ea:85:bf:ce:
ad:51:57:15:25:a9:a1:f5:74:97:5b:eb:7d:2b:16:
cf:bb:25:f0:d2:e0:1f:c3:32:07:a7:7d:81:31:ce:
8a:a1:2e:b3:84:33:47:66:a2:4f:44:d8:cf:68:e9:
8a:7a:50:e7:5c:2f:f5:4c:86:ba:1e:95:d6:68:9b:
a0:57:5c:7f:f9:41:6a:cd:98:96:da:2f:16:af:3b:
72:17:a0:76:26:34:f6:e2:4c:ef:a2:cf:b6:93:9c:
ab:3e:03:e4:3a:49:6d:d6:0a:db:44:18:90:03:5a:
10:62:d6:f2:af:23:d7:42:f4:dd:83:d1:22:e8:34:
6a:f8:47:ce:61:ee:27:20:92:0c:20:fd:ba:0e:04:
96:ed:c8:f7:31:96:69:94:42:58:30:4a:d3:7d:77:
f4:37:ef:27:94:de:20:46:3a:ba:d6:15:25:8d:34:
63:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:66:BA:D4:68:FA:AE:FA:D5:BD:99:14:C6:70:D5:62:80:DE:3C:8A
X509v3 Authority Key Identifier:
keyid:81:E3:E6:97:CD:D6:E2:25:AC:5B:11:61:CD:F7:04:DE:9C:FC:26:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gePml83W4iWsWxFhzfcE3pz8JlU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/fccc7e-b511-451f-b982-dc85864aea89/1/z2a61Gj6rvrVvZkUxnDVYoDePIo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/fccc7e-b511-451f-b982-dc85864aea89/1/gePml83W4iWsWxFhzfcE3pz8JlU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:b7c::/48
Signature Algorithm: sha256WithRSAEncryption
0a:ed:4d:39:b8:e1:f0:38:bf:b1:35:f8:15:1f:ae:f3:06:62:
87:1f:9d:bb:06:69:1d:05:f1:67:74:0e:64:44:6f:a1:fa:a5:
4c:34:35:05:7e:fd:3d:57:5f:88:58:f3:80:e1:7a:1f:c6:90:
63:b9:46:b3:84:89:d2:98:30:f3:7f:9d:66:c3:e9:7b:a4:48:
ac:ce:a2:6a:72:b9:a2:84:ea:a2:ea:5f:cf:fb:fc:ea:77:57:
59:15:f5:22:06:9e:c7:42:bf:c2:c9:b5:c9:b4:b2:b8:bf:7e:
4a:e7:9b:12:15:d5:47:63:b4:77:1f:1a:c7:fb:bb:43:ee:1d:
79:7e:13:a2:b0:75:bc:21:56:a0:32:4a:76:d4:b7:12:ab:5b:
55:7c:f1:8f:2e:b3:46:d6:70:ec:3f:5e:9e:31:7d:4b:50:5d:
36:25:c7:92:7a:0a:9e:17:65:08:7a:b5:86:6c:6c:90:ac:4a:
a3:3a:e5:f4:06:c6:85:10:e2:51:05:9a:14:2f:bc:d4:66:7d:
17:11:55:05:7a:7a:b4:8e:5f:06:7a:75:b7:2a:19:bc:ad:54:
91:7c:1d:09:a1:c6:99:3f:9b:64:55:a2:4a:5d:d1:c8:3d:36:
ae:11:cc:26:95:36:2b:8a:ae:4b:48:28:f8:ce:63:98:63:8b:
bc:6c:b4:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:40 2025 by rpki-client on console.sobornost.net