Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/d1a717-4cf3-4ae5-b0fc-0bd9ddf3970e/1/qbA_9GdwQHPtmS9g6PrCyj74AbM.roa
File: qbA_9GdwQHPtmS9g6PrCyj74AbM.roa (raw, json)
Hash identifier: bivTcz5xx7Jgw1fjpQZeDQON5L3d9aNyp2TKXc5yy2A=
Subject key identifier: A9:B0:3F:F4:67:70:40:73:ED:99:2F:60:E8:FA:C2:CA:3E:F8:01:B3
Certificate issuer: /CN=8d892f4ded92257e67ba74f1762c8bc914ebd61c
Certificate serial: 019422FBD92478DACDA34EE025B7E6CFAFD2
Authority key identifier: 8D:89:2F:4D:ED:92:25:7E:67:BA:74:F1:76:2C:8B:C9:14:EB:D6:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jYkvTe2SJX5nunTxdiyLyRTr1hw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/d1a717-4cf3-4ae5-b0fc-0bd9ddf3970e/1/qbA_9GdwQHPtmS9g6PrCyj74AbM.roa
Signing time: Wed 01 Jan 2025 17:48:37 +0000
ROA not before: Wed 01 Jan 2025 17:48:37 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 39892
IP address blocks: 2001:67c:1098::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fb:d9:24:78:da:cd:a3:4e:e0:25:b7:e6:cf:af:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d892f4ded92257e67ba74f1762c8bc914ebd61c
Validity
Not Before: Jan 1 17:48:37 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a9b03ff467704073ed992f60e8fac2ca3ef801b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:aa:55:59:70:01:2b:9c:de:e5:fe:f1:d6:23:
fc:fc:bc:78:02:f4:e8:64:29:45:94:2a:53:e5:7d:
b4:8c:c6:74:f9:ec:4e:ed:3f:57:28:e6:b3:b5:0a:
7a:e8:08:f7:99:5b:36:be:15:ab:6d:df:9d:f8:ea:
64:ed:3d:c6:88:9a:1e:cb:64:17:7d:da:e5:7c:fb:
76:f0:43:7c:11:bf:a8:7d:51:62:5c:dc:20:5c:36:
43:3f:15:3c:5f:70:eb:8b:19:cf:0d:a6:08:b0:d9:
31:46:b6:29:69:d7:4d:b6:d4:b9:8a:4f:47:11:e7:
ed:19:26:41:71:df:a6:91:7c:b0:9b:d5:34:41:e4:
c0:5e:a1:63:4a:f6:50:8b:ca:68:a4:e7:83:bf:7c:
23:3e:f9:fe:a1:67:05:33:c0:71:41:45:fd:81:2a:
7e:3a:ba:b4:aa:0b:4a:cf:60:0a:60:b4:32:c3:c4:
1c:ed:4e:67:5c:d7:83:81:69:56:42:b0:ee:af:73:
69:59:08:25:1d:51:9f:9a:a5:de:c0:50:6f:e0:50:
ca:ef:34:ec:4b:de:19:c5:48:29:d9:eb:91:61:60:
c6:4f:45:84:30:58:d3:7f:2b:17:1b:83:f8:02:19:
98:0a:63:64:94:bb:ce:b5:e5:77:45:52:19:ef:74:
c5:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:B0:3F:F4:67:70:40:73:ED:99:2F:60:E8:FA:C2:CA:3E:F8:01:B3
X509v3 Authority Key Identifier:
keyid:8D:89:2F:4D:ED:92:25:7E:67:BA:74:F1:76:2C:8B:C9:14:EB:D6:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jYkvTe2SJX5nunTxdiyLyRTr1hw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/d1a717-4cf3-4ae5-b0fc-0bd9ddf3970e/1/qbA_9GdwQHPtmS9g6PrCyj74AbM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/d1a717-4cf3-4ae5-b0fc-0bd9ddf3970e/1/jYkvTe2SJX5nunTxdiyLyRTr1hw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:1098::/48
Signature Algorithm: sha256WithRSAEncryption
91:bc:ed:6a:df:23:d3:f6:fb:5a:af:11:ac:aa:e9:4f:4a:b2:
c9:86:b6:6c:37:94:f9:9c:77:9c:fa:7e:5a:3c:a4:3f:ea:9c:
ea:27:38:b7:df:47:5d:36:cd:23:8e:31:2c:b8:3a:5a:87:62:
4b:99:39:a5:bf:d4:fe:2c:d7:80:87:6f:3c:79:65:ca:d7:d5:
ca:b6:eb:69:35:3b:e9:6f:b5:fb:73:0a:73:0f:a7:b5:f9:d3:
32:04:4e:e2:a9:b9:1f:80:ff:32:ab:2f:72:58:ec:00:cf:69:
15:3f:27:7a:b6:2d:4a:69:5e:76:ac:12:03:66:7a:ce:1a:95:
76:c5:69:97:d0:06:18:4a:d6:45:71:f9:b2:10:a7:15:12:03:
c8:7b:b7:3e:92:6b:d9:b9:7b:8a:b5:d9:cf:05:49:5c:94:06:
ca:13:60:a4:10:58:08:3e:d8:6d:1e:a2:48:78:83:8f:af:da:
0a:54:ae:8d:c3:aa:bc:80:fe:0d:95:b4:43:0b:43:26:42:0d:
ae:92:6d:0f:be:78:84:a0:7c:7c:ab:7c:f8:4b:4f:8c:2a:c7:
d9:6c:01:cb:ef:de:ff:6e:ae:b8:82:23:92:b0:1d:d8:62:7e:
4e:87:31:a4:cc:de:ee:37:19:00:c2:82:4d:f5:e4:15:c3:ea:
71:7f:f1:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:33:08 2025 by rpki-client on console.sobornost.net