Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/0a8fc1-986e-4209-930c-1c77431b05f7/1/eB8JcdNMitcIB4IK3YDPeoxd_sE.roa
File: eB8JcdNMitcIB4IK3YDPeoxd_sE.roa (raw, json)
Hash identifier: uAuMd6C1FXSh+wtAiy0MbK5wWWHEYjRTVBUBNDQkdQU=
Subject key identifier: 78:1F:09:71:D3:4C:8A:D7:08:07:82:0A:DD:80:CF:7A:8C:5D:FE:C1
Certificate issuer: /CN=0e6b385c7b8778bf78af2421c99f5d38bd556914
Certificate serial: 019421B1A661A72B554D88BD9B71448303D8
Authority key identifier: 0E:6B:38:5C:7B:87:78:BF:78:AF:24:21:C9:9F:5D:38:BD:55:69:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dms4XHuHeL94ryQhyZ9dOL1VaRQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/0a8fc1-986e-4209-930c-1c77431b05f7/1/eB8JcdNMitcIB4IK3YDPeoxd_sE.roa
Signing time: Wed 01 Jan 2025 11:47:57 +0000
ROA not before: Wed 01 Jan 2025 11:47:57 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48136
IP address blocks: 2001:67c:c::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b1:a6:61:a7:2b:55:4d:88:bd:9b:71:44:83:03:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e6b385c7b8778bf78af2421c99f5d38bd556914
Validity
Not Before: Jan 1 11:47:57 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=781f0971d34c8ad70807820add80cf7a8c5dfec1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:c0:a7:f0:d2:b4:97:4a:f5:79:9a:80:f1:3a:
18:a1:8e:7d:63:60:b4:83:c9:cc:86:04:6a:9e:54:
0b:f2:49:a6:40:15:ef:63:bb:93:0d:2b:3b:a3:c0:
b2:43:34:1f:7a:ff:ed:df:d3:d2:69:63:85:db:ae:
62:e0:0f:1a:e9:12:48:59:89:46:c5:3b:07:d2:ea:
f6:53:f8:13:00:6a:98:57:69:74:06:83:9e:64:c9:
a2:bb:c4:e8:74:84:a4:16:22:0c:30:64:c0:f8:34:
0a:6a:9f:bf:83:ee:ed:d7:45:5a:b5:d4:5c:ae:c7:
99:76:e1:2a:c3:20:aa:7c:21:e2:b8:8d:c4:50:26:
d1:83:70:d7:6e:26:f4:0c:f7:d6:d1:2f:43:22:a9:
c9:af:9e:51:02:c9:9d:e9:3e:42:56:e9:94:8b:16:
eb:80:d0:17:85:79:f4:77:db:44:da:9b:c9:76:4d:
ca:a0:55:78:ba:7c:c2:7c:ab:1d:0b:7f:38:4e:f8:
7d:a0:79:c6:16:19:02:6b:db:b6:35:d0:e6:b6:6e:
7a:2f:19:b4:b3:c9:17:b5:a4:86:dc:56:44:31:cb:
fe:18:e1:2a:84:92:a9:26:9b:e2:84:aa:be:68:52:
31:7b:be:f5:eb:05:ea:c5:7f:4d:30:80:a4:09:77:
ca:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:1F:09:71:D3:4C:8A:D7:08:07:82:0A:DD:80:CF:7A:8C:5D:FE:C1
X509v3 Authority Key Identifier:
keyid:0E:6B:38:5C:7B:87:78:BF:78:AF:24:21:C9:9F:5D:38:BD:55:69:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dms4XHuHeL94ryQhyZ9dOL1VaRQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/0a8fc1-986e-4209-930c-1c77431b05f7/1/eB8JcdNMitcIB4IK3YDPeoxd_sE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/0a8fc1-986e-4209-930c-1c77431b05f7/1/Dms4XHuHeL94ryQhyZ9dOL1VaRQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:c::/48
Signature Algorithm: sha256WithRSAEncryption
07:b1:cc:46:4e:86:d4:13:52:2e:a8:3d:5c:17:8c:ca:34:b9:
37:99:66:ce:36:61:cf:be:51:3c:f9:a0:62:3a:21:e5:7f:0b:
cf:44:19:00:36:c7:ae:59:37:ae:f1:fb:c2:1f:e3:fa:2c:d7:
81:5f:90:31:a4:77:94:c0:35:16:98:4c:f4:94:e8:b7:fa:7a:
80:be:88:ff:f8:36:30:26:3a:0e:89:0c:8d:21:a2:0d:f4:c4:
c8:d7:20:97:9b:f6:52:58:d8:a7:1b:d5:cf:b8:4c:c5:c2:a5:
13:2d:1d:98:49:2b:71:f7:65:38:f2:6e:2f:6c:ce:be:5f:e4:
0a:d6:02:e0:87:af:c3:e5:cd:a8:ed:a3:32:87:4d:ff:eb:1b:
6b:ad:76:4d:62:92:92:68:b0:99:2d:f5:89:a1:26:f7:c0:10:
6d:5e:34:05:b8:d3:fa:cf:cd:88:1a:90:9c:34:9c:28:04:cd:
da:a8:5c:ed:a3:d6:29:a7:e8:9c:97:ff:39:e9:2f:b8:dd:68:
ce:c9:e7:bf:9d:4f:9a:6b:41:ec:f7:35:33:c5:11:60:f2:68:
3f:0f:10:ad:69:3a:30:df:67:49:1a:e6:ab:a6:d7:5e:42:d2:
8c:68:9a:b7:e2:2e:b3:33:39:3a:df:a6:34:a0:0b:2b:d0:92:
b6:3d:bb:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:43 2025 by rpki-client on console.sobornost.net