Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/4a757c-adde-485c-9171-f603538412c8/1/beEuyHtj6-YxYYEBP6CwFITtXCo.roa
File: beEuyHtj6-YxYYEBP6CwFITtXCo.roa (raw, json)
Hash identifier: 15tHsK0ns4vomu3PpRO0w+CWAE5FrW5s/l3utsU9ZCI=
Subject key identifier: 6D:E1:2E:C8:7B:63:EB:E6:31:61:81:01:3F:A0:B0:14:84:ED:5C:2A
Certificate issuer: /CN=cd1242e6c7ebd82a23fa1a08f396ebe5ab34cf6b
Certificate serial: 019424B3EA0A6785ED95041A202E1DF7C401
Authority key identifier: CD:12:42:E6:C7:EB:D8:2A:23:FA:1A:08:F3:96:EB:E5:AB:34:CF:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zRJC5sfr2Coj-hoI85br5as0z2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/4a757c-adde-485c-9171-f603538412c8/1/beEuyHtj6-YxYYEBP6CwFITtXCo.roa
Signing time: Thu 02 Jan 2025 01:49:18 +0000
ROA not before: Thu 02 Jan 2025 01:49:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48882
IP address blocks: 2a0e:2100::/47 maxlen: 47
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:ea:0a:67:85:ed:95:04:1a:20:2e:1d:f7:c4:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd1242e6c7ebd82a23fa1a08f396ebe5ab34cf6b
Validity
Not Before: Jan 2 01:49:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6de12ec87b63ebe6316181013fa0b01484ed5c2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:a6:a8:f8:3c:27:a9:30:18:23:0f:86:f9:25:
36:1a:fb:77:b7:ad:6e:cf:ae:32:45:b8:fa:93:5b:
60:03:03:61:8c:ed:2a:c6:ff:70:b9:00:0c:42:69:
49:ff:71:46:10:26:2e:8c:15:ee:12:bf:23:64:ed:
53:86:5f:47:03:8e:7f:9d:56:4f:04:76:78:55:ff:
83:f6:67:a5:7b:99:98:b3:12:08:43:ec:5c:1d:22:
99:84:64:f5:7f:a3:27:55:56:02:66:9d:fe:7b:51:
2e:c1:02:29:ab:db:ab:3c:7b:33:07:8b:e0:9b:2b:
aa:7f:38:34:cf:fd:a6:51:77:4e:9c:bd:cd:50:70:
da:21:a4:47:21:67:39:7f:e5:d7:a7:0b:05:13:39:
ba:13:5a:71:68:39:f1:19:fb:dd:65:4e:4d:d6:82:
cb:3d:cf:20:2a:6c:f9:25:c6:3e:6b:9d:46:31:c2:
40:e3:c1:28:ca:93:8d:69:77:22:96:a9:d6:59:88:
6d:7f:0b:17:14:cb:ac:39:c1:0e:a9:b8:b0:7d:54:
97:a0:37:ea:e2:76:0f:01:fb:60:af:b7:a6:3a:78:
50:58:0c:9c:a4:1a:70:1f:38:98:d4:02:85:06:08:
9f:26:48:5d:4d:b7:36:64:15:cb:16:6e:76:02:70:
cf:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:E1:2E:C8:7B:63:EB:E6:31:61:81:01:3F:A0:B0:14:84:ED:5C:2A
X509v3 Authority Key Identifier:
keyid:CD:12:42:E6:C7:EB:D8:2A:23:FA:1A:08:F3:96:EB:E5:AB:34:CF:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zRJC5sfr2Coj-hoI85br5as0z2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/4a757c-adde-485c-9171-f603538412c8/1/beEuyHtj6-YxYYEBP6CwFITtXCo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/4a757c-adde-485c-9171-f603538412c8/1/zRJC5sfr2Coj-hoI85br5as0z2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:2100::/47
Signature Algorithm: sha256WithRSAEncryption
67:c0:6a:ac:f2:4a:90:fa:e3:f7:71:e7:6d:24:82:c4:ea:e3:
b1:7c:4a:20:0e:ba:2f:dd:89:a2:5e:87:11:18:ca:12:cf:62:
a9:6d:57:f9:13:ee:1d:3d:03:d1:05:44:2c:1b:31:9c:b0:1d:
f1:19:fa:a2:e9:d7:30:b5:c0:d1:18:87:13:d9:32:46:6f:c9:
a4:5e:a1:73:62:6f:67:26:03:c9:a5:f5:dd:aa:49:58:d3:c3:
37:ef:a3:be:0d:20:f7:32:f7:ba:c5:11:f9:00:9a:3e:6f:a4:
36:a0:90:50:0b:3e:d9:93:dd:ef:16:98:88:33:f9:49:ff:c6:
57:0c:ea:b4:bd:e6:bd:9a:94:59:5d:ab:90:e1:92:91:d5:21:
7f:35:e9:8c:9e:08:ae:f2:cf:18:85:fa:4a:c8:c2:24:ce:05:
35:49:2f:da:16:a1:8c:d1:9f:0b:43:cb:5b:55:f0:2c:d1:5f:
73:70:65:fe:65:03:e6:ed:fb:ac:7f:fc:a3:96:d8:f2:72:74:
57:89:bd:a2:1e:8e:b0:74:59:89:bb:67:73:d9:20:99:bb:d9:
f8:89:69:f3:83:5d:be:3a:de:91:79:64:98:fe:d7:2a:60:16:
e1:f0:89:bc:59:e9:8c:dc:78:87:db:9f:61:50:aa:7d:2f:d0:
1f:33:73:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:45 2025 by rpki-client on console.sobornost.net