Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/1fa4a1-9a1c-47de-aca6-9449957fd5a5/1/rmZqjN8Le7Lhxr8nmiAOtv3GMP8.roa
File: rmZqjN8Le7Lhxr8nmiAOtv3GMP8.roa (raw, json)
Hash identifier: fLQapcdkz83ll1G3Z6c9GnseLufz0CzHLdVlExrzp/Q=
Subject key identifier: AE:66:6A:8C:DF:0B:7B:B2:E1:C6:BF:27:9A:20:0E:B6:FD:C6:30:FF
Certificate issuer: /CN=e0559ce889ae4241121fe0a1653e4b955f3edf4b
Certificate serial: 01953CECF36DEB2514419266F250DE348BEB
Authority key identifier: E0:55:9C:E8:89:AE:42:41:12:1F:E0:A1:65:3E:4B:95:5F:3E:DF:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4FWc6ImuQkESH-ChZT5LlV8-30s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/1fa4a1-9a1c-47de-aca6-9449957fd5a5/1/rmZqjN8Le7Lhxr8nmiAOtv3GMP8.roa
Signing time: Tue 25 Feb 2025 11:45:16 +0000
ROA not before: Tue 25 Feb 2025 11:45:16 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43260
IP address blocks: 2a0a:37c0::/29 maxlen: 29
2a0a:37c0::/32 maxlen: 32
2a0a:37c1::/32 maxlen: 32
2a0a:37c2::/32 maxlen: 32
2a0a:37c3::/32 maxlen: 32
2a0a:37c4::/32 maxlen: 32
2a0a:37c5::/32 maxlen: 32
2a0a:37c6::/32 maxlen: 32
2a0a:37c7::/32 maxlen: 32
2a0b:9800::/32 maxlen: 32
2a0b:9801::/32 maxlen: 32
2a0b:9802::/32 maxlen: 32
2a0b:9803::/32 maxlen: 32
2a0b:9804::/32 maxlen: 32
2a0b:9805::/32 maxlen: 32
2a0b:9806::/32 maxlen: 32
2a0b:9807::/32 maxlen: 32
2a14:4a80::/32 maxlen: 32
2a14:4a81::/32 maxlen: 32
2a14:4a82::/32 maxlen: 32
2a14:4a83::/32 maxlen: 32
2a14:4a84::/32 maxlen: 32
2a14:4a85::/32 maxlen: 32
2a14:4a86::/32 maxlen: 32
2a14:4a87::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:3c:ec:f3:6d:eb:25:14:41:92:66:f2:50:de:34:8b:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0559ce889ae4241121fe0a1653e4b955f3edf4b
Validity
Not Before: Feb 25 11:45:16 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ae666a8cdf0b7bb2e1c6bf279a200eb6fdc630ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:55:c0:ef:2e:05:4d:33:de:4d:d8:5d:56:06:
3b:9a:9b:fb:29:eb:19:88:f4:e3:91:58:46:0d:3e:
8c:6b:b2:59:e7:fd:87:74:70:30:54:49:82:60:45:
e4:ce:93:8e:0e:bc:89:63:f4:ae:8d:43:8b:34:98:
d3:04:16:7c:43:27:91:bb:d8:f0:c3:68:89:93:78:
12:8f:85:4d:16:8c:18:cd:5c:ce:e1:d6:d5:be:bc:
fd:24:33:23:51:96:2a:8f:de:8f:9f:cf:27:29:01:
72:99:c8:03:6c:14:6e:9a:21:99:15:95:b8:4b:dd:
3b:e0:91:e3:59:de:f9:34:93:8d:16:ac:d4:44:a4:
bc:e0:70:59:0a:d3:b8:14:b2:8d:7b:09:99:0d:d0:
5d:87:4e:2a:a7:ef:93:c5:78:da:ff:b2:64:08:6a:
2b:86:77:42:6b:99:dc:89:b6:50:89:82:48:6e:8a:
a5:3c:7f:50:0a:de:cb:85:36:e1:be:00:ab:6c:1d:
36:3c:af:2d:0f:82:96:d0:8f:48:1d:86:4c:d5:e5:
a5:88:81:06:0e:b8:5d:ea:7c:29:67:d4:ed:c0:e9:
7b:d1:6c:27:99:a3:10:fe:0a:3a:ba:2f:89:8d:3a:
9b:c6:94:84:a5:bd:6f:9e:83:e0:26:d9:3d:a2:b2:
a9:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:66:6A:8C:DF:0B:7B:B2:E1:C6:BF:27:9A:20:0E:B6:FD:C6:30:FF
X509v3 Authority Key Identifier:
keyid:E0:55:9C:E8:89:AE:42:41:12:1F:E0:A1:65:3E:4B:95:5F:3E:DF:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4FWc6ImuQkESH-ChZT5LlV8-30s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/1fa4a1-9a1c-47de-aca6-9449957fd5a5/1/rmZqjN8Le7Lhxr8nmiAOtv3GMP8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/1fa4a1-9a1c-47de-aca6-9449957fd5a5/1/4FWc6ImuQkESH-ChZT5LlV8-30s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:37c0::/29
2a0b:9800::/29
2a14:4a80::/29
Signature Algorithm: sha256WithRSAEncryption
60:9c:53:e2:7a:d7:f1:79:65:e9:09:ef:d1:f9:0a:2f:7f:68:
a0:a2:56:5a:d8:b9:39:2b:5b:ab:2a:65:00:9c:33:fd:e2:3f:
eb:a2:2b:2a:a2:31:2a:c3:e8:7b:a1:37:d8:62:66:49:05:fb:
e3:bc:d8:57:b6:26:71:91:47:b4:50:6c:e6:91:9d:04:71:d7:
f3:bc:a2:93:0f:64:69:3c:e2:f4:f3:80:a4:bf:d3:82:0b:43:
1e:07:53:c7:d0:61:76:e3:c9:06:7b:7e:16:38:92:91:39:d8:
49:91:44:06:97:e5:d1:d6:02:88:3c:a8:00:80:3a:17:0c:aa:
ad:71:e2:27:88:92:13:b4:2f:fe:a1:21:ce:76:7b:6e:f4:92:
28:3c:73:f7:fc:65:01:0d:b7:c6:e1:55:26:05:46:ea:cc:7e:
34:22:32:05:01:44:e5:e6:59:23:2a:89:42:a5:9a:5b:3a:16:
16:3b:b6:ce:22:7d:09:e1:e8:e1:07:df:79:21:77:e6:b6:d2:
d2:74:f7:12:8d:6a:c9:1e:10:14:a1:eb:96:f3:c6:35:2c:3b:
0b:1b:b2:1a:cf:09:ea:8e:9c:ef:14:45:e3:73:74:e8:16:f7:
e4:77:d0:a6:b3:36:42:da:59:c9:7c:ce:3d:af:04:5f:bf:04:
b3:aa:e8:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 10:55:52 2025 by rpki-client