Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/517411-0c42-4d18-9039-c99dd390a7d6/1/ozI4hI8kFkEQxCSmEwvkBXoCapM.roa
File: ozI4hI8kFkEQxCSmEwvkBXoCapM.roa (raw, json)
Hash identifier: nsuE7KYFnBTkOwSYDCdNStBanVXhSb5SsJb22tB9rcI=
Subject key identifier: A3:32:38:84:8F:24:16:41:10:C4:24:A6:13:0B:E4:05:7A:02:6A:93
Certificate issuer: /CN=373d8f557cae18e235d938bad3cfae17c91b9de6
Certificate serial: 0194258F578C8BCFADF8645E734DA4951529
Authority key identifier: 37:3D:8F:55:7C:AE:18:E2:35:D9:38:BA:D3:CF:AE:17:C9:1B:9D:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nz2PVXyuGOI12Ti608-uF8kbneY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/517411-0c42-4d18-9039-c99dd390a7d6/1/ozI4hI8kFkEQxCSmEwvkBXoCapM.roa
Signing time: Thu 02 Jan 2025 05:48:58 +0000
ROA not before: Thu 02 Jan 2025 05:48:58 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 209488
IP address blocks: 2a12:61c0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:57:8c:8b:cf:ad:f8:64:5e:73:4d:a4:95:15:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=373d8f557cae18e235d938bad3cfae17c91b9de6
Validity
Not Before: Jan 2 05:48:58 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a33238848f24164110c424a6130be4057a026a93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:5d:de:2d:4b:1b:99:ae:9f:59:e5:a8:49:48:
f6:97:25:4a:f7:c5:c6:d9:60:19:b7:df:22:24:65:
45:17:c7:9e:63:2d:3c:4b:72:88:a8:49:b6:a4:62:
24:a3:48:d2:32:ec:0f:42:ee:bc:fa:f7:1e:df:db:
0d:96:3f:fa:b5:5d:99:46:4d:55:8a:5f:17:14:f9:
27:6c:5e:a3:d0:42:c5:5b:d5:ec:02:e2:ed:80:c6:
b5:4a:60:17:7b:6f:52:85:40:fc:c3:a8:8f:01:91:
35:2a:70:b7:2f:85:dd:c2:cd:81:bc:8b:0d:84:58:
7f:93:3f:a3:8d:bf:a1:76:bb:3a:1e:3d:bd:b6:dc:
5b:81:38:3c:57:04:73:ec:88:e2:33:cf:e4:3e:a1:
78:96:84:96:a9:4e:c5:dd:0c:42:71:84:47:3f:c1:
d7:73:5b:ff:21:56:a9:d0:c7:40:df:a7:4c:fc:4c:
ae:e1:58:a9:ce:88:48:4c:a9:94:e0:95:a6:14:c1:
a5:25:61:e5:96:67:22:00:f5:c4:65:4e:4d:9a:0f:
d3:51:bc:c9:19:18:86:73:17:3d:ed:2c:7f:28:b8:
74:d7:a6:45:af:33:6d:af:64:32:a5:10:11:36:64:
c3:63:d1:c8:76:ce:fc:57:9d:86:7d:f0:e4:15:50:
1d:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:32:38:84:8F:24:16:41:10:C4:24:A6:13:0B:E4:05:7A:02:6A:93
X509v3 Authority Key Identifier:
keyid:37:3D:8F:55:7C:AE:18:E2:35:D9:38:BA:D3:CF:AE:17:C9:1B:9D:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nz2PVXyuGOI12Ti608-uF8kbneY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/517411-0c42-4d18-9039-c99dd390a7d6/1/ozI4hI8kFkEQxCSmEwvkBXoCapM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/517411-0c42-4d18-9039-c99dd390a7d6/1/Nz2PVXyuGOI12Ti608-uF8kbneY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:61c0::/29
Signature Algorithm: sha256WithRSAEncryption
20:fa:47:50:45:4f:56:d5:46:af:85:e2:4c:b5:03:42:6c:d1:
33:60:f4:1b:b5:67:26:e7:c9:81:fe:56:6d:4d:08:df:a3:44:
6a:1d:e0:18:7d:a7:58:04:98:45:6d:47:ff:79:f0:a1:66:c7:
58:04:de:32:79:34:e9:0b:9a:20:e6:a4:2e:6c:a4:8e:71:28:
c7:fa:5b:f9:49:3b:5c:55:e8:3f:30:07:ea:ae:e2:ef:43:48:
bb:a5:55:c7:92:7b:f6:bc:58:42:57:55:38:9b:c8:f6:07:71:
ff:52:a3:2c:62:b7:42:5d:91:f9:bd:05:33:7a:a5:13:34:6d:
39:97:cc:1a:c0:6a:c9:3b:b1:9d:e8:05:a3:17:08:94:5a:c8:
f6:8b:5f:5e:6b:d7:a2:89:28:d5:63:3c:ee:d0:72:e3:9d:95:
5b:68:4c:82:c0:76:27:6a:f6:ce:9c:36:ab:2a:3a:b7:4c:11:
6e:0c:c8:3a:e5:3a:84:b3:36:18:c5:ed:c9:5f:5a:bd:e6:42:
19:7d:5c:ff:e6:58:07:8c:c8:77:98:f2:b4:80:39:d2:fe:f5:
d6:b8:7f:5a:4f:92:a8:f9:10:22:2b:83:99:e0:41:21:4c:91:
7a:5e:d7:59:84:e2:69:e7:df:72:ba:67:9b:96:38:95:b1:32:
8b:84:08:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:48 2025 by rpki-client on console.sobornost.net