Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/ERZw8nir5NrkQ0FG0fQQ09Qk6sk.roa
File: ERZw8nir5NrkQ0FG0fQQ09Qk6sk.roa (raw, json)
Hash identifier: 1h+vLDl458DiNwdPNFWRLZcgEgoq3F+R10KMk+kirf4=
Subject key identifier: 11:16:70:F2:78:AB:E4:DA:E4:43:41:46:D1:F4:10:D3:D4:24:EA:C9
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 01941FFA8B4AFD5BA73EC7E1C90AF9DCC8F3
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/ERZw8nir5NrkQ0FG0fQQ09Qk6sk.roa
Signing time: Wed 01 Jan 2025 03:48:20 +0000
ROA not before: Wed 01 Jan 2025 03:48:20 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 207268
IP address blocks: 2a0c:b641:7a0::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:8b:4a:fd:5b:a7:3e:c7:e1:c9:0a:f9:dc:c8:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 1 03:48:20 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=111670f278abe4dae4434146d1f410d3d424eac9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:97:ee:3c:95:d5:48:44:db:bc:49:42:dd:79:
d9:8e:c9:d9:fa:28:4d:f0:2b:fb:e0:3c:ca:0c:a9:
24:40:6c:77:eb:11:f7:15:98:41:ad:8f:62:fa:ae:
c0:c8:6e:2a:57:f3:65:07:32:98:f4:2d:b6:a6:7c:
88:a0:d5:1e:10:13:3f:bb:10:4f:b4:3b:81:61:2e:
31:0d:b8:1c:dd:9b:08:8d:a9:fe:f1:49:5d:e5:c7:
d2:32:4b:94:ea:b2:14:ca:b2:90:5f:7d:a8:ac:eb:
15:3f:b4:dd:aa:42:6b:b0:09:fd:c5:76:83:bd:4e:
f3:d9:7e:0c:a7:34:3c:34:99:13:01:7b:b0:03:d0:
8a:87:f2:69:27:fe:b1:17:26:d2:a3:ea:1c:e2:66:
83:3e:ce:e3:e5:82:d2:1b:f5:87:8a:3b:47:49:28:
46:b3:e5:4b:d6:7f:59:fc:b1:7b:a7:13:ce:d6:18:
db:78:b7:35:88:40:fc:a8:5d:8a:bb:b8:cb:89:4b:
e5:86:e3:0a:30:68:df:43:61:cc:a1:a6:d6:74:d8:
5e:ed:71:99:f5:8c:71:03:b8:76:0d:75:90:40:5d:
44:33:9d:19:73:a4:5c:4c:e5:54:c5:61:50:3a:2e:
b0:aa:2b:2f:19:02:92:9f:22:76:a3:7d:08:5b:f3:
20:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:16:70:F2:78:AB:E4:DA:E4:43:41:46:D1:F4:10:D3:D4:24:EA:C9
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/ERZw8nir5NrkQ0FG0fQQ09Qk6sk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:7a0::/44
Signature Algorithm: sha256WithRSAEncryption
56:a3:9f:14:aa:b1:f6:f0:36:62:55:e1:ec:f3:0c:8d:82:3b:
6a:4f:b3:e1:80:e7:36:23:fa:ae:da:fc:74:2b:76:c6:74:e6:
77:5b:c1:93:dc:14:d4:31:66:c3:8c:b4:2a:b9:dd:b7:9b:b5:
3f:f7:ea:54:31:cf:ed:5f:7f:37:8e:92:9d:73:78:40:53:22:
18:8b:d5:fe:77:b0:fc:25:e8:62:77:19:d2:be:12:b6:40:e5:
c9:45:58:7a:9b:a6:7b:8d:5d:d1:ef:a7:08:2b:fe:32:34:54:
81:8c:c2:ee:c7:0b:4b:27:c4:08:3e:35:53:f5:98:23:7d:5b:
0b:74:db:0d:b2:c5:29:16:1d:49:53:d2:d0:85:b4:7e:e9:9b:
ba:b8:0b:49:56:9d:f7:db:a6:36:75:62:0d:0c:99:2b:d9:4f:
ec:42:ee:9e:47:3c:48:d5:b0:e4:00:9c:ff:62:87:ab:3e:86:
09:13:5e:60:ef:2b:9e:1e:92:51:0c:54:db:9f:d8:e5:57:d9:
d5:b6:5f:b1:5f:88:e8:3b:a7:61:b7:17:19:05:32:99:cc:d7:
30:62:bf:90:5b:a4:b9:b6:5e:1a:03:7b:ab:a6:be:15:8d:c6:
df:93:f6:eb:99:db:6c:27:04:69:21:ab:a5:7e:7a:30:24:d8:
6c:9a:f5:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 07:53:17 2025 by rpki-client