Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/897449-e9cf-4a79-89cf-41bb21ac2801/1/q3zWswtb_rKzMEq3ybq4elx9Fbc.roa
File: q3zWswtb_rKzMEq3ybq4elx9Fbc.roa (raw, json)
Hash identifier: 2krgdkgLPMGt/zjGBBSU7qEyVP/nwxFi7PyEZoj/Ga0=
Subject key identifier: AB:7C:D6:B3:0B:5B:FE:B2:B3:30:4A:B7:C9:BA:B8:7A:5C:7D:15:B7
Certificate issuer: /CN=c38280c5300b74888ac7eb4bfa6417d9a2e7b0be
Certificate serial: 019513C21A382DDB05B7316C49C4793724C0
Authority key identifier: C3:82:80:C5:30:0B:74:88:8A:C7:EB:4B:FA:64:17:D9:A2:E7:B0:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w4KAxTALdIiKx-tL-mQX2aLnsL4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/897449-e9cf-4a79-89cf-41bb21ac2801/1/q3zWswtb_rKzMEq3ybq4elx9Fbc.roa
Signing time: Mon 17 Feb 2025 11:54:02 +0000
ROA not before: Mon 17 Feb 2025 11:54:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 204490
IP address blocks: 2a0e:4344::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:13:c2:1a:38:2d:db:05:b7:31:6c:49:c4:79:37:24:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c38280c5300b74888ac7eb4bfa6417d9a2e7b0be
Validity
Not Before: Feb 17 11:54:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ab7cd6b30b5bfeb2b3304ab7c9bab87a5c7d15b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:f9:6c:ec:0e:8b:ed:a9:d6:95:01:8c:d2:51:
9d:30:7c:53:dd:42:2a:75:21:7a:f5:19:ba:ae:56:
f9:bf:ac:7c:76:00:ac:56:dc:c8:22:bd:a0:76:35:
4b:6b:e7:10:5f:b6:db:69:5b:82:0f:70:10:22:55:
8b:a4:6c:12:23:07:fb:39:92:45:f2:1b:31:ec:33:
f2:14:b7:9b:e7:b8:94:1d:df:32:0d:5e:7d:37:65:
6b:27:87:59:0d:8e:d9:84:d4:c5:2f:97:e8:68:49:
64:6c:e1:e5:35:55:e8:0a:25:4c:81:09:2b:1a:26:
bc:2a:39:f5:24:58:41:24:b4:26:90:50:d7:9c:af:
52:60:47:45:c2:1a:71:30:09:b3:6c:dc:80:a9:5e:
85:9d:bd:15:07:2e:20:fd:c2:1a:0f:9c:13:26:00:
de:b0:b8:7e:58:6c:0a:3a:85:0c:f1:8c:08:d9:5c:
07:29:3e:76:04:49:df:33:f8:2a:3a:80:2a:e3:12:
29:c1:62:e5:ba:c9:a4:3a:4d:d5:f8:92:8a:e4:0f:
cf:91:1e:59:25:ce:cb:6d:85:db:59:12:f4:0d:a7:
b3:27:54:7d:68:34:d6:e4:9a:57:7c:db:3f:f3:d5:
d8:3c:26:cb:5c:c7:9c:a5:50:a4:1a:b4:eb:2c:af:
c7:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:7C:D6:B3:0B:5B:FE:B2:B3:30:4A:B7:C9:BA:B8:7A:5C:7D:15:B7
X509v3 Authority Key Identifier:
keyid:C3:82:80:C5:30:0B:74:88:8A:C7:EB:4B:FA:64:17:D9:A2:E7:B0:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w4KAxTALdIiKx-tL-mQX2aLnsL4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/897449-e9cf-4a79-89cf-41bb21ac2801/1/q3zWswtb_rKzMEq3ybq4elx9Fbc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/897449-e9cf-4a79-89cf-41bb21ac2801/1/w4KAxTALdIiKx-tL-mQX2aLnsL4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:4344::/32
Signature Algorithm: sha256WithRSAEncryption
47:4d:ac:90:c8:06:0b:11:88:16:c9:79:e6:e4:8c:f0:9c:b5:
e2:08:48:0f:02:9e:ff:56:6b:0c:0e:4d:93:bf:5f:1c:d1:f8:
dd:10:30:5a:75:b3:97:67:f1:0f:ab:f0:ab:0a:97:2c:f9:83:
ea:31:6d:34:f3:a1:a5:ac:78:7a:19:c0:fd:ef:96:fe:22:fe:
47:fd:0c:31:f8:62:1e:46:b6:12:38:35:2a:65:07:17:4e:d0:
a4:b6:34:cf:57:7b:ef:d8:f0:2b:b2:90:62:84:36:9d:7e:03:
56:33:29:fd:d8:72:3c:23:ba:ef:61:da:c5:ae:17:ef:95:58:
1d:b7:25:76:51:d2:81:2b:9c:3b:16:8d:c0:c2:df:fc:c3:c8:
3e:77:f6:2c:12:72:1e:af:01:e9:21:8f:61:66:97:2c:b6:b4:
bf:ef:31:90:67:e6:16:0a:42:3d:50:5c:b2:f8:99:1c:9a:c3:
5c:21:9f:05:80:41:3b:c8:b2:68:7f:58:2e:ef:10:9e:d1:b1:
c5:e7:47:06:95:dd:bb:64:98:ab:76:b5:e3:3c:41:e4:49:28:
e5:20:1a:43:a4:4a:e8:ed:b5:02:a1:98:97:f1:9a:88:b9:8c:
dc:0f:19:9b:59:cf:2f:12:60:4c:44:64:60:5d:11:f9:a4:ac:
28:94:54:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 8 04:56:25 2025 by rpki-client on console.sobornost.net