Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/dd062a-1319-4019-a551-876c7fca4b34/1/zB7jZpVQ6_QohXb9Ts1uTCDa9vc.roa
File: zB7jZpVQ6_QohXb9Ts1uTCDa9vc.roa (raw, json)
Hash identifier: G92uGtD4p7P9jynyu17jJLaD0YzUsjPpS9i4T5WM4LU=
Subject key identifier: CC:1E:E3:66:95:50:EB:F4:28:85:76:FD:4E:CD:6E:4C:20:DA:F6:F7
Certificate issuer: /CN=255876412d20fbb6cab823481782ac47703b4404
Certificate serial: 0195709FDD29BDE6C7C1459A7A4D9DFC7481
Authority key identifier: 25:58:76:41:2D:20:FB:B6:CA:B8:23:48:17:82:AC:47:70:3B:44:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/dd062a-1319-4019-a551-876c7fca4b34/1/zB7jZpVQ6_QohXb9Ts1uTCDa9vc.roa
Signing time: Fri 07 Mar 2025 12:41:19 +0000
ROA not before: Fri 07 Mar 2025 12:41:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212334
IP address blocks: 2a01:ffc7:300::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:70:9f:dd:29:bd:e6:c7:c1:45:9a:7a:4d:9d:fc:74:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=255876412d20fbb6cab823481782ac47703b4404
Validity
Not Before: Mar 7 12:41:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=cc1ee3669550ebf4288576fd4ecd6e4c20daf6f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:57:0d:e2:bb:da:32:94:63:c5:de:7e:e8:84:
8e:b9:81:64:b5:09:9a:63:7c:8e:e7:3a:73:a0:63:
bb:60:b9:92:44:4b:26:27:2b:39:f6:d2:82:e1:cb:
36:7b:94:4d:39:53:e0:dc:f0:19:5a:8e:25:69:b6:
31:78:4c:8b:e6:77:d9:bb:38:44:6f:3f:13:ed:a7:
d5:b9:6d:b6:af:ae:d2:80:30:24:64:09:b8:fe:97:
93:fe:c9:4b:01:41:67:1b:95:5d:17:b2:6c:41:6d:
6b:5d:54:f1:b3:e2:38:2e:df:51:82:bd:cd:7a:aa:
36:c6:b2:af:f6:3c:89:a2:8c:67:f1:ed:09:f4:cf:
85:57:8d:bd:fd:63:4e:c4:4f:53:a5:b7:bb:c8:75:
17:3f:01:6c:d4:d2:53:b6:bd:5a:a0:77:73:66:a1:
f9:a2:aa:a3:47:dc:b0:79:3d:c9:4c:26:db:65:c8:
28:fb:c9:e6:6a:11:a7:cb:35:96:9d:71:a6:eb:e7:
7a:35:c6:b5:72:49:b5:ce:93:ba:02:a3:df:38:fd:
4e:2f:36:c5:46:2c:69:0a:fe:3d:a9:48:4c:9a:a2:
28:23:8d:ac:c2:61:3b:ed:c9:c1:9a:78:07:bd:0c:
19:8d:bc:a9:3e:ab:17:be:36:5f:24:b7:10:25:fd:
cb:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:1E:E3:66:95:50:EB:F4:28:85:76:FD:4E:CD:6E:4C:20:DA:F6:F7
X509v3 Authority Key Identifier:
keyid:25:58:76:41:2D:20:FB:B6:CA:B8:23:48:17:82:AC:47:70:3B:44:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/dd062a-1319-4019-a551-876c7fca4b34/1/zB7jZpVQ6_QohXb9Ts1uTCDa9vc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/dd062a-1319-4019-a551-876c7fca4b34/1/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:ffc7:300::/48
Signature Algorithm: sha256WithRSAEncryption
90:41:95:82:4d:60:ce:67:19:06:f7:c9:1d:83:b1:b2:a3:b8:
95:7c:27:63:09:c9:80:ae:db:b8:a2:bb:21:28:11:20:6c:51:
5d:7b:2f:b4:fe:7e:71:0e:a6:53:90:1f:18:66:3e:d0:7c:fe:
6d:86:10:0e:1b:f5:ed:f8:04:81:9b:47:92:a9:58:8e:9e:22:
95:1d:32:67:15:45:4a:f1:2c:b2:ab:52:3e:fd:34:16:8b:39:
bd:d0:0e:0c:1d:dd:89:9f:2f:71:c4:d9:6e:55:4e:01:41:b2:
e2:24:db:02:a3:5e:1b:fe:cb:11:28:9d:8f:5a:08:cc:c7:40:
c0:48:04:ab:47:a6:be:07:c8:96:73:78:27:12:c1:90:05:af:
83:40:61:da:95:46:8f:fc:bc:4f:a9:f6:ee:e6:60:ef:0e:fa:
64:de:bd:3d:30:6c:cf:a5:38:b4:89:66:eb:75:49:4a:be:4e:
d5:c1:ae:4f:5c:ea:0e:71:7d:ed:be:f0:5c:c3:64:0d:ed:67:
2d:93:be:59:78:82:8e:14:ed:b9:e1:0d:70:cb:ca:fb:18:0e:
35:05:95:60:da:a5:77:90:d9:10:d9:d3:1e:30:34:8e:c4:b7:
56:dc:91:5a:6d:9e:26:17:18:e6:88:40:f1:b4:33:a6:5f:8a:
7b:6c:9f:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 22:26:20 2025 by rpki-client