Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/7b1205-3450-4e90-8b14-17e66c1fd3d1/1/rUsYO6U-OV_26u2S886G2_FtRw0.roa
File: rUsYO6U-OV_26u2S886G2_FtRw0.roa (raw, json)
Hash identifier: 4OzuXLKixTM7MlzjLAXk1ju4UeY3ZaSlZx+rpLVx/sY=
Subject key identifier: AD:4B:18:3B:A5:3E:39:5F:F6:EA:ED:92:F3:CE:86:DB:F1:6D:47:0D
Certificate issuer: /CN=260b2bc45477c81d774daa0c28ab44b774ba0920
Certificate serial: 0193F853519D7FF5672874C1EE264AC91F51
Authority key identifier: 26:0B:2B:C4:54:77:C8:1D:77:4D:AA:0C:28:AB:44:B7:74:BA:09:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JgsrxFR3yB13TaoMKKtEt3S6CSA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/7b1205-3450-4e90-8b14-17e66c1fd3d1/1/rUsYO6U-OV_26u2S886G2_FtRw0.roa
Signing time: Tue 24 Dec 2024 11:00:30 +0000
ROA not before: Tue 24 Dec 2024 11:00:30 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204916
IP address blocks: 2a0d:cdc6::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:f8:53:51:9d:7f:f5:67:28:74:c1:ee:26:4a:c9:1f:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=260b2bc45477c81d774daa0c28ab44b774ba0920
Validity
Not Before: Dec 24 11:00:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ad4b183ba53e395ff6eaed92f3ce86dbf16d470d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:83:e8:e4:6f:7c:fd:d8:ed:78:f8:08:9e:df:
47:9f:f2:c0:d9:87:4a:ad:e4:cd:3f:16:e8:1f:f8:
cc:c1:e4:cd:2e:80:fc:62:0c:35:92:9e:5c:5e:9b:
f4:aa:5d:ed:46:08:f8:3d:ce:b0:c2:ac:8b:bd:57:
0b:9a:74:86:73:70:1c:79:2a:9c:3d:eb:e5:9d:b8:
c7:16:94:1c:d1:16:ac:7a:ef:6f:a3:86:76:c3:eb:
a9:2d:c0:6c:23:c6:c4:83:3e:93:5d:5e:e2:2e:6f:
46:de:82:45:a2:c2:96:a7:e3:30:1e:57:dd:68:bb:
a1:42:7d:a8:a4:5b:76:ae:f1:99:87:ea:74:3f:e0:
50:f6:3e:3d:bc:c8:89:1d:c6:d6:7c:43:1a:07:6f:
0a:14:83:a2:0c:4f:31:42:10:e6:99:53:40:3a:a5:
6a:0e:d7:7c:38:e1:30:0a:8f:67:8f:24:30:6d:67:
5a:30:ae:1f:d5:cd:b9:66:c3:a5:cd:17:49:ea:40:
9f:21:68:e6:4b:d8:1e:06:dd:06:e4:65:ac:ee:81:
59:52:43:ea:26:25:89:ab:34:ca:cc:fe:ed:3b:23:
3d:57:14:ac:27:05:50:7c:26:7e:aa:ec:00:69:f3:
fc:e0:1a:5b:e7:be:12:2e:6b:00:0d:e5:62:b6:64:
be:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:4B:18:3B:A5:3E:39:5F:F6:EA:ED:92:F3:CE:86:DB:F1:6D:47:0D
X509v3 Authority Key Identifier:
keyid:26:0B:2B:C4:54:77:C8:1D:77:4D:AA:0C:28:AB:44:B7:74:BA:09:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JgsrxFR3yB13TaoMKKtEt3S6CSA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/7b1205-3450-4e90-8b14-17e66c1fd3d1/1/rUsYO6U-OV_26u2S886G2_FtRw0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/7b1205-3450-4e90-8b14-17e66c1fd3d1/1/JgsrxFR3yB13TaoMKKtEt3S6CSA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:cdc6::/32
Signature Algorithm: sha256WithRSAEncryption
b2:f4:da:02:5f:66:d1:63:a7:4c:2f:35:1a:77:48:83:75:7b:
06:e3:51:90:d5:ef:8f:4e:51:c2:f0:d6:17:d9:f6:2f:4d:3d:
db:83:53:65:fe:8f:08:1f:85:4e:d6:3a:d2:c6:bc:25:ef:dd:
51:a7:9b:16:ce:61:b7:bd:50:02:39:3b:e3:48:fb:a2:b7:a8:
42:66:06:e8:3c:d6:b0:28:98:22:cc:e4:87:2f:ee:dd:da:ce:
02:3d:d5:3e:0c:e2:02:fc:bc:96:c0:06:87:99:b1:8b:73:10:
f4:4b:37:5e:30:89:bb:37:63:17:11:8d:59:87:1e:26:83:0a:
c4:d0:d8:ed:de:63:e8:06:22:a7:57:93:b1:08:cd:06:a6:a5:
e1:d7:58:15:65:fe:92:67:9b:a3:d9:20:f7:6f:d7:1b:8d:c1:
d4:f1:31:94:1c:8e:61:e1:21:aa:b9:89:05:78:e8:6f:27:0d:
63:f2:54:88:d3:b8:1e:3b:52:5a:fb:82:21:f2:78:10:23:4d:
3a:d9:2a:68:c2:1c:3d:76:4f:04:3d:93:a6:2a:2d:c6:55:39:
4d:f4:69:59:2b:6e:0e:1c:bd:e0:24:02:bb:55:18:9f:67:7c:
d5:49:cc:0e:4b:98:25:f7:2b:c0:ae:a2:ac:eb:6c:b6:30:1c:
05:56:bf:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 02:00:42 2025 by rpki-client