Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/076d37-4ab4-4ec3-a4b0-524025e13202/1/hqdB3dvV_dcCWDsTMYzzBUkq1iQ.roa
File: hqdB3dvV_dcCWDsTMYzzBUkq1iQ.roa (raw, json)
Hash identifier: PqNxdXFESdm3E0fpRf9aF9eGcWyACVXLt/A8w8L4KSw=
Subject key identifier: 86:A7:41:DD:DB:D5:FD:D7:02:58:3B:13:31:8C:F3:05:49:2A:D6:24
Certificate issuer: /CN=f8a2b605c58e0746aadc5bf0d7cbc36c9307f74d
Certificate serial: 0194D51A215D175F000911E5A36CD56D045E
Authority key identifier: F8:A2:B6:05:C5:8E:07:46:AA:DC:5B:F0:D7:CB:C3:6C:93:07:F7:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-KK2BcWOB0aq3Fvw18vDbJMH900.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/076d37-4ab4-4ec3-a4b0-524025e13202/1/hqdB3dvV_dcCWDsTMYzzBUkq1iQ.roa
Signing time: Wed 05 Feb 2025 07:54:06 +0000
ROA not before: Wed 05 Feb 2025 07:54:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 202181
IP address blocks: 2a0b:a8c0:2::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:d5:1a:21:5d:17:5f:00:09:11:e5:a3:6c:d5:6d:04:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8a2b605c58e0746aadc5bf0d7cbc36c9307f74d
Validity
Not Before: Feb 5 07:54:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=86a741dddbd5fdd702583b13318cf305492ad624
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:5c:e9:40:f9:e1:89:e6:59:d4:4f:0f:2b:89:
11:10:db:48:7b:f1:61:d9:10:c1:fd:8c:c5:7b:90:
e6:78:30:20:eb:4a:7f:32:c5:00:9b:59:52:f7:43:
c4:54:f4:29:1a:78:3b:75:ab:ee:03:e9:de:00:56:
0f:54:ac:02:dd:6a:a2:fb:cf:70:33:38:63:d7:e6:
f1:98:60:2d:c1:42:f9:45:d2:92:c7:ef:83:2a:63:
41:8d:32:a1:d2:34:03:8e:f6:47:ec:5d:e2:c9:21:
49:33:e4:46:9a:3d:b7:46:f4:1d:ad:cb:f0:0f:46:
f1:1f:b3:e6:53:53:b9:8f:f1:2e:e7:0d:a5:60:ad:
77:fc:83:45:28:fa:dc:fe:11:76:ab:05:88:bb:e4:
1c:2b:82:9a:c6:7e:af:f0:d0:38:d5:7f:81:7a:83:
44:4c:04:52:7c:7d:0f:9e:3a:75:71:2e:41:74:99:
dd:8e:c5:1c:ac:bb:40:8c:cc:5e:0a:ec:0b:e7:35:
e4:86:c6:a2:d8:07:07:60:5b:58:b4:a3:73:95:07:
b2:82:35:98:f7:c7:98:5b:24:3f:98:ca:a2:13:ca:
73:a7:13:ed:b9:a6:98:11:de:0b:aa:d3:20:93:35:
42:52:ff:b0:e9:b8:65:c0:87:b7:de:de:ab:77:f2:
e8:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:A7:41:DD:DB:D5:FD:D7:02:58:3B:13:31:8C:F3:05:49:2A:D6:24
X509v3 Authority Key Identifier:
keyid:F8:A2:B6:05:C5:8E:07:46:AA:DC:5B:F0:D7:CB:C3:6C:93:07:F7:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-KK2BcWOB0aq3Fvw18vDbJMH900.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/076d37-4ab4-4ec3-a4b0-524025e13202/1/hqdB3dvV_dcCWDsTMYzzBUkq1iQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/076d37-4ab4-4ec3-a4b0-524025e13202/1/1-KK2BcWOB0aq3Fvw18vDbJMH900.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:a8c0:2::/48
Signature Algorithm: sha256WithRSAEncryption
50:94:fb:74:8c:40:62:8c:e9:11:d4:c2:03:54:99:32:e7:97:
ef:d5:15:60:5d:d3:fc:44:6d:f9:cc:53:d9:22:3e:e9:b0:db:
e5:af:cf:ab:dc:c9:c9:3c:9d:a9:14:12:99:82:94:f2:0a:98:
e0:5c:64:e7:5e:76:8e:06:ce:a5:fa:2c:b1:f7:f7:bb:ae:b1:
28:f2:36:ff:32:73:17:1b:74:33:fb:28:06:f8:8f:dc:be:c3:
2c:b2:d5:17:cc:24:cb:20:9f:0d:5c:eb:fc:01:f2:e5:2d:0b:
d1:33:d4:22:8d:ef:08:b2:e3:50:c3:d8:02:29:da:13:47:53:
2a:9d:56:47:65:00:08:f5:29:02:15:a9:f2:1b:3c:a9:6e:9a:
66:67:96:3c:f6:fe:cd:c6:7e:54:e8:4f:00:c5:39:68:cd:23:
31:e5:67:4a:22:48:c8:14:f3:b5:e6:44:c0:6a:b2:b3:ed:b5:
2d:7f:ad:33:6f:d1:56:8e:92:06:4c:db:0d:28:5b:7a:64:3e:
c4:1d:06:f5:74:c2:39:1c:ed:a2:03:a2:d9:a5:12:cd:81:00:
9c:27:46:e6:cf:24:51:36:df:ae:ec:b2:ab:b7:4d:dd:5d:42:
c8:aa:e2:50:52:17:ca:41:f2:47:aa:a5:9f:0b:57:74:5e:d9:
c7:ab:d4:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:41 2025 by rpki-client on console.sobornost.net