Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/O0wQkTberJBGf616XMSFIFD7KBs.roa
File: O0wQkTberJBGf616XMSFIFD7KBs.roa (raw, json)
Hash identifier: 17n6+YLzt02MURVWqCyG+6B7DEgjzFUFOHL19KG1glw=
Subject key identifier: 3B:4C:10:91:36:DE:AC:90:46:7F:AD:7A:5C:C4:85:20:50:FB:28:1B
Certificate issuer: /CN=4a6d2817491dd2cd0678068e35a9efc68667df02
Certificate serial: 019427B565153D12A3AB622B17AEBADF7176
Authority key identifier: 4A:6D:28:17:49:1D:D2:CD:06:78:06:8E:35:A9:EF:C6:86:67:DF:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sm0oF0kd0s0GeAaONanvxoZn3wI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/O0wQkTberJBGf616XMSFIFD7KBs.roa
Signing time: Thu 02 Jan 2025 15:49:46 +0000
ROA not before: Thu 02 Jan 2025 15:49:46 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215140
IP address blocks: 2a10:4646:440::/44 maxlen: 44
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b5:65:15:3d:12:a3:ab:62:2b:17:ae:ba:df:71:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a6d2817491dd2cd0678068e35a9efc68667df02
Validity
Not Before: Jan 2 15:49:46 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3b4c109136deac90467fad7a5cc4852050fb281b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:25:37:4a:cf:7a:48:be:b6:4a:50:06:ef:19:
b8:a9:66:49:bc:1e:d3:93:23:e1:8e:19:5b:b0:73:
1f:08:fd:62:de:41:8a:95:4a:40:70:23:6d:b3:10:
7c:3a:1d:5e:7f:ee:ad:f1:2f:09:18:33:9e:85:0d:
13:7c:7c:eb:66:e8:44:89:dc:22:0d:a5:66:f5:88:
2a:1a:01:01:e5:c1:dc:7a:a0:05:68:da:90:d2:bf:
c3:b8:dc:06:19:e1:6e:92:ab:05:47:b3:3f:e9:3a:
25:8a:b8:88:af:aa:41:88:08:4f:37:1c:e5:b4:80:
3e:2a:84:0e:33:29:06:8a:92:54:f2:bd:f1:eb:a5:
5f:bd:c3:6e:96:72:59:c6:74:c5:43:24:4b:5d:dd:
3d:24:3b:64:ec:c4:33:11:3e:f9:8e:93:1d:aa:93:
09:44:49:4d:65:89:60:e5:52:ba:7e:9a:dc:69:14:
75:93:31:a7:0f:13:87:0e:51:1b:9e:09:3a:bb:44:
e9:fc:67:c2:b8:0b:03:57:61:67:40:65:49:6f:e7:
4c:31:64:d8:e7:53:33:4c:19:ff:87:57:0b:19:b4:
9a:62:9c:dc:7e:09:79:16:86:38:4c:19:58:29:88:
fa:a8:15:6d:24:83:b7:d9:30:4e:2b:1a:21:fd:29:
61:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:4C:10:91:36:DE:AC:90:46:7F:AD:7A:5C:C4:85:20:50:FB:28:1B
X509v3 Authority Key Identifier:
keyid:4A:6D:28:17:49:1D:D2:CD:06:78:06:8E:35:A9:EF:C6:86:67:DF:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sm0oF0kd0s0GeAaONanvxoZn3wI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/O0wQkTberJBGf616XMSFIFD7KBs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/Sm0oF0kd0s0GeAaONanvxoZn3wI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:4646:440::/44
Signature Algorithm: sha256WithRSAEncryption
51:5f:74:07:38:df:83:f5:e4:4f:64:90:13:1f:59:8c:4e:a0:
26:d4:45:fa:1c:62:e2:3b:24:59:66:93:70:f5:1f:55:9f:fb:
36:df:ac:81:85:23:a0:ce:50:4a:e2:48:bf:d7:1d:10:90:08:
84:d0:8a:10:43:71:08:32:f6:15:92:b3:a4:da:58:6a:29:6d:
42:78:e3:2e:34:a2:cc:8d:80:e1:69:5b:e9:14:06:fd:c2:00:
4b:1a:f8:c6:12:e7:1b:73:e4:e1:e8:3f:03:1e:09:a4:20:f7:
ec:5c:2c:89:2c:b4:e9:2b:d3:a7:e3:c5:f3:a6:71:4e:e0:84:
a8:c9:31:58:2f:13:45:6c:01:b7:90:21:62:bb:e0:c7:7b:02:
05:14:55:7f:03:c6:f9:fa:89:3b:2d:cc:01:6b:e0:fd:45:77:
15:2a:2c:e4:38:98:c2:26:d7:f9:87:de:0a:c9:8f:40:94:ee:
21:18:e8:ac:49:d3:27:f3:56:c5:a9:80:50:6c:09:d0:71:29:
f9:fe:33:a3:db:5c:65:87:a5:20:99:d2:52:54:ba:2f:2f:df:
f2:12:e1:74:f6:a8:9c:6c:f1:74:7b:03:b0:c8:cb:2d:6e:6d:
95:c6:dc:23:9a:40:f6:c7:22:7e:a0:be:d4:54:58:0f:da:e3:
21:39:bc:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 16:47:03 2025 by rpki-client