Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/74fa13-2cb3-427a-a45a-8f3470d82057/1/n-uGHXU9mK8VqWn_-PLqMRGS8Ts.roa
File: n-uGHXU9mK8VqWn_-PLqMRGS8Ts.roa (raw, json)
Hash identifier: ygEEJ097SaCUzOmNUISceDFVrT5Qf+Tcg4RtFktgRHs=
Subject key identifier: 9F:EB:86:1D:75:3D:98:AF:15:A9:69:FF:F8:F2:EA:31:11:92:F1:3B
Certificate issuer: /CN=30714e8119b3134dcc060fe5900a7cd868fc5973
Certificate serial: 01951ED128413F5A8EB01ED8CA8C4A7DE9AD
Authority key identifier: 30:71:4E:81:19:B3:13:4D:CC:06:0F:E5:90:0A:7C:D8:68:FC:59:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MHFOgRmzE03MBg_lkAp82Gj8WXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/74fa13-2cb3-427a-a45a-8f3470d82057/1/n-uGHXU9mK8VqWn_-PLqMRGS8Ts.roa
Signing time: Wed 19 Feb 2025 15:26:18 +0000
ROA not before: Wed 19 Feb 2025 15:26:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214588
IP address blocks: 2a14:7340::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:1e:d1:28:41:3f:5a:8e:b0:1e:d8:ca:8c:4a:7d:e9:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30714e8119b3134dcc060fe5900a7cd868fc5973
Validity
Not Before: Feb 19 15:26:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9feb861d753d98af15a969fff8f2ea311192f13b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:49:59:05:8a:e9:53:14:4d:75:a3:92:a7:7a:
d1:6b:e9:82:67:e9:ca:63:c7:52:d3:92:93:fa:a3:
97:86:db:60:0c:35:4c:97:4b:2f:06:22:0f:b2:36:
cc:8e:5d:1a:9d:c0:0a:2a:0e:3b:50:af:72:5b:e2:
c8:0d:72:c2:85:0d:84:58:dc:4f:ae:f9:30:0e:5c:
4b:f4:dd:82:dc:38:d5:92:a5:46:fa:ba:cb:ae:e8:
3b:e2:b1:a2:98:e7:2b:ee:6c:a9:58:f9:79:1e:06:
13:8c:66:fd:a7:7b:95:24:9b:86:98:af:5d:89:a0:
b1:e5:86:ac:a5:7d:02:3b:ad:50:4a:1b:cf:7a:66:
d0:32:e1:67:68:4d:5c:42:07:69:7d:77:ad:0c:7f:
d5:70:19:5e:2e:0e:e2:a7:f2:68:01:14:a4:47:ca:
7c:38:53:06:41:46:a9:2c:3f:d1:b4:42:0b:77:48:
92:05:82:58:42:75:4b:cc:ac:1d:76:10:e5:c0:82:
e0:12:07:b7:e5:7f:b3:04:67:6d:56:ec:55:4a:08:
a0:1a:bb:d1:9b:57:5d:44:52:de:c4:67:13:5a:16:
b1:17:08:fa:4e:83:08:32:be:bd:49:7e:97:bf:a2:
b6:11:ac:cb:7f:72:1d:3c:1f:b1:34:aa:56:ce:e6:
9f:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:EB:86:1D:75:3D:98:AF:15:A9:69:FF:F8:F2:EA:31:11:92:F1:3B
X509v3 Authority Key Identifier:
keyid:30:71:4E:81:19:B3:13:4D:CC:06:0F:E5:90:0A:7C:D8:68:FC:59:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MHFOgRmzE03MBg_lkAp82Gj8WXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/74fa13-2cb3-427a-a45a-8f3470d82057/1/n-uGHXU9mK8VqWn_-PLqMRGS8Ts.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/74fa13-2cb3-427a-a45a-8f3470d82057/1/MHFOgRmzE03MBg_lkAp82Gj8WXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7340::/29
Signature Algorithm: sha256WithRSAEncryption
65:06:0d:8d:8d:61:3a:54:b4:45:ad:5e:07:d9:6e:ca:ec:40:
7f:64:b7:e3:66:b5:01:05:4a:ac:26:34:a6:44:b3:62:1b:ff:
c0:08:94:70:68:75:41:a2:56:f3:7e:4b:66:9e:4d:ec:52:dd:
99:70:3f:01:12:15:52:44:b9:73:07:b7:91:4c:86:4a:5b:0f:
a9:1e:c8:ba:79:95:43:57:20:03:84:d5:19:16:32:da:fe:ef:
2d:bb:fd:da:5b:8f:5b:22:2a:c9:37:79:d8:c4:7b:8a:12:43:
05:7b:4f:02:37:d1:a8:3e:fb:ec:7a:03:37:89:3e:cf:e4:24:
7b:d8:b4:e0:86:30:7b:0f:b7:bf:fa:6e:dc:01:e5:d3:6a:b1:
e2:f1:73:06:8b:36:00:53:dc:da:5c:5b:49:d9:e2:9d:18:e7:
58:b9:f5:0f:78:3c:4d:fc:b2:d7:d2:a7:1c:ee:d6:de:01:14:
c3:c8:2c:24:f1:fe:88:cc:04:bd:b6:27:68:78:5d:2c:7f:e0:
0f:5a:f2:5a:5d:55:54:e1:fa:7b:f5:27:4b:bc:29:eb:fd:3a:
97:d7:e5:60:43:b7:8a:53:1f:6c:cd:4b:50:5e:a3:d0:47:85:
fc:32:43:57:08:39:39:08:eb:33:99:42:41:ed:87:fc:4b:6f:
63:a5:a8:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:33:09 2025 by rpki-client on console.sobornost.net