Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/c0fef9-afff-49de-808a-e4478c55308a/1/B8bTTGpK1L-pMyO-WGFk_7H-LC8.roa
File: B8bTTGpK1L-pMyO-WGFk_7H-LC8.roa (raw, json)
Hash identifier: r0JNxuBgg4on067YK5COQPlyCkk+tp458uDvr2IE4z8=
Subject key identifier: 07:C6:D3:4C:6A:4A:D4:BF:A9:33:23:BE:58:61:64:FF:B1:FE:2C:2F
Certificate issuer: /CN=f59adb0208a2d2a718d3064b4613fdc4320d28f9
Certificate serial: 01942067EA39C58F77A9ED3426D5CB09ED5B
Authority key identifier: F5:9A:DB:02:08:A2:D2:A7:18:D3:06:4B:46:13:FD:C4:32:0D:28:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9ZrbAgii0qcY0wZLRhP9xDINKPk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/c0fef9-afff-49de-808a-e4478c55308a/1/B8bTTGpK1L-pMyO-WGFk_7H-LC8.roa
Signing time: Wed 01 Jan 2025 05:47:48 +0000
ROA not before: Wed 01 Jan 2025 05:47:48 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 197942
IP address blocks: 2001:678:70c::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:67:ea:39:c5:8f:77:a9:ed:34:26:d5:cb:09:ed:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f59adb0208a2d2a718d3064b4613fdc4320d28f9
Validity
Not Before: Jan 1 05:47:48 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=07c6d34c6a4ad4bfa93323be586164ffb1fe2c2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:5f:a6:1a:2b:49:2b:f9:11:31:fa:3d:49:77:
57:b0:57:92:be:b6:83:f2:00:d8:b3:4d:be:45:f6:
a8:b8:e0:da:1e:7e:a1:ea:0f:e9:40:87:65:1d:13:
81:26:c5:e8:f3:b9:56:35:78:eb:c0:36:1f:85:88:
dc:af:f5:d8:ad:77:f5:57:54:fe:13:7f:41:23:ca:
a6:9e:43:54:2e:18:d6:eb:67:03:62:b5:b4:ff:1c:
81:e3:05:bd:83:6c:06:06:da:87:d6:9e:08:0c:53:
3a:1e:62:e5:59:79:7f:7c:21:73:3a:06:fe:e8:a5:
c3:c5:14:ab:06:f9:26:03:c8:53:59:94:64:3c:09:
6f:6d:c8:c9:77:7a:d6:25:33:da:2f:3d:a6:cb:aa:
87:8a:60:2c:d4:95:00:e8:6e:4e:5f:0f:a5:29:9f:
da:19:d8:c6:93:af:c8:63:12:ea:23:df:6c:14:13:
32:85:ea:2a:70:5c:66:11:9b:01:a6:87:67:70:e8:
76:9c:bc:ff:00:4c:7e:16:5d:6d:55:9e:b1:f0:38:
50:21:ad:13:a8:c5:90:1d:25:c5:05:b6:c7:0f:33:
b1:ba:cb:ed:3c:3a:c7:0f:8d:1e:a0:ce:09:2d:bd:
8e:30:3f:92:7b:96:40:22:8f:43:79:db:66:d8:c9:
c3:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:C6:D3:4C:6A:4A:D4:BF:A9:33:23:BE:58:61:64:FF:B1:FE:2C:2F
X509v3 Authority Key Identifier:
keyid:F5:9A:DB:02:08:A2:D2:A7:18:D3:06:4B:46:13:FD:C4:32:0D:28:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9ZrbAgii0qcY0wZLRhP9xDINKPk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/c0fef9-afff-49de-808a-e4478c55308a/1/B8bTTGpK1L-pMyO-WGFk_7H-LC8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/c0fef9-afff-49de-808a-e4478c55308a/1/9ZrbAgii0qcY0wZLRhP9xDINKPk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:70c::/48
Signature Algorithm: sha256WithRSAEncryption
af:0e:a0:8e:58:02:4c:15:98:b7:c6:f1:7c:31:1d:a1:98:62:
28:3f:2b:ea:f8:f1:4f:5d:e1:05:05:09:3c:4b:40:97:aa:46:
d9:96:2f:fe:27:18:7b:3c:d1:a3:60:11:1d:61:33:42:68:87:
0c:93:bf:7f:65:60:14:9a:ea:97:bb:1a:f0:73:d5:18:db:b3:
79:6c:aa:d6:42:ce:ff:ee:8a:4d:33:0b:cd:d1:da:03:6c:42:
f6:3a:89:8c:2f:5c:8e:51:15:53:2c:37:b7:49:50:7a:11:51:
5e:18:2f:6b:e1:f5:8f:b8:f4:c3:38:f0:0f:96:d2:94:9c:cf:
81:6c:84:f5:ce:c1:c0:e9:92:42:b2:47:af:94:ca:2e:3d:96:
67:78:e5:fc:02:d7:5e:85:63:3f:cd:54:88:0c:cf:8b:2a:67:
f4:96:d8:a0:fc:c8:6a:79:f8:db:5a:04:d3:d3:89:65:7f:4b:
ae:cd:0d:62:fd:fb:1c:0d:03:c8:88:73:45:f9:64:c7:90:7f:
cf:e0:c3:28:be:fd:60:ed:f8:af:07:91:a9:71:17:d1:98:aa:
d8:b6:7f:6c:16:e2:01:d5:b1:5f:a6:7d:19:12:f9:a0:8c:f6:
66:b5:4b:7c:7c:6e:c1:48:77:e9:6f:94:2e:30:30:ca:90:85:
52:3a:be:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:33:08 2025 by rpki-client on console.sobornost.net