Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/03ttC7MNZ-eN5xujfgJt0dz2GhY.roa
File: 03ttC7MNZ-eN5xujfgJt0dz2GhY.roa (raw, json)
Hash identifier: N6ysVlOyohrexefrFHAfhhT7Stu1rZo1RMy/wUBR7MQ=
Subject key identifier: D3:7B:6D:0B:B3:0D:67:E7:8D:E7:1B:A3:7E:02:6D:D1:DC:F6:1A:16
Certificate issuer: /CN=89056fa9625b6c87404267c6dc219924ac160045
Certificate serial: 019424B26625C4AF39572D61AEB814CCA9CD
Authority key identifier: 89:05:6F:A9:62:5B:6C:87:40:42:67:C6:DC:21:99:24:AC:16:00:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iQVvqWJbbIdAQmfG3CGZJKwWAEU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/03ttC7MNZ-eN5xujfgJt0dz2GhY.roa
Signing time: Thu 02 Jan 2025 01:47:38 +0000
ROA not before: Thu 02 Jan 2025 01:47:38 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 63018
IP address blocks: 2a11:840:33::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b2:66:25:c4:af:39:57:2d:61:ae:b8:14:cc:a9:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89056fa9625b6c87404267c6dc219924ac160045
Validity
Not Before: Jan 2 01:47:38 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d37b6d0bb30d67e78de71ba37e026dd1dcf61a16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:75:b1:af:d7:bd:f8:01:90:89:62:52:e5:8f:
2f:c7:bf:1e:a1:2b:25:d3:f4:3e:e5:eb:99:4f:90:
2c:b7:7f:ad:12:03:e3:af:36:bc:3a:a6:fc:b7:14:
7b:11:a3:85:89:60:e0:d6:01:f1:6b:8a:8d:76:04:
88:df:bd:67:b5:11:e3:5e:9d:1a:3c:a3:dd:d8:ce:
90:0d:57:d2:fa:0d:ad:84:b1:52:83:37:24:ad:09:
86:84:0e:91:c7:71:1f:d2:fa:95:2e:1c:c5:1f:e2:
62:14:02:fa:40:18:75:7f:b8:c0:4c:f5:46:ee:05:
74:ae:e4:37:cb:c0:24:1b:38:de:c1:52:c9:b3:e7:
a1:5b:bb:bf:ae:0c:82:05:94:e6:e1:43:50:af:90:
85:1a:03:ca:10:e8:42:22:49:98:78:81:30:03:8f:
11:91:7e:22:a0:2c:a6:b0:15:66:17:00:b0:1d:6d:
cd:63:d7:2a:62:1a:f8:3e:2b:95:08:46:72:fb:1c:
fc:60:b5:39:f5:71:64:c9:32:28:7c:07:a4:e8:f6:
8d:32:30:7f:27:63:e8:df:97:61:8c:4d:30:83:2c:
fd:7e:17:32:11:62:17:03:5f:8c:bc:86:4d:81:cb:
a9:ae:ae:7a:2d:3f:70:1a:cf:a9:10:cb:50:ea:89:
a8:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:7B:6D:0B:B3:0D:67:E7:8D:E7:1B:A3:7E:02:6D:D1:DC:F6:1A:16
X509v3 Authority Key Identifier:
keyid:89:05:6F:A9:62:5B:6C:87:40:42:67:C6:DC:21:99:24:AC:16:00:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iQVvqWJbbIdAQmfG3CGZJKwWAEU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/03ttC7MNZ-eN5xujfgJt0dz2GhY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/iQVvqWJbbIdAQmfG3CGZJKwWAEU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:840:33::/48
Signature Algorithm: sha256WithRSAEncryption
7a:ee:81:83:02:e8:68:32:97:c2:f2:0e:3d:3f:a3:8e:9f:c8:
f0:96:20:e9:7d:03:bd:dd:ce:24:3a:6f:83:26:92:f9:7d:c5:
2d:9f:d0:56:4b:1c:91:91:e5:91:f1:a5:5d:e4:e8:a2:c3:d8:
b1:92:d5:ec:af:4f:e0:9f:51:0f:38:17:aa:ba:69:fc:b8:e4:
9e:28:06:ac:cc:6c:1c:a0:52:a5:a6:67:92:bf:b3:4b:8a:bf:
c2:e7:7e:b8:06:d7:06:7c:5f:78:b6:8e:19:c5:6f:ea:8c:1f:
64:d8:f8:98:75:02:7e:83:73:ab:5c:24:cb:b2:b5:5c:1e:de:
57:d1:cd:44:74:f0:ca:d4:10:20:ef:21:86:72:1c:2e:02:59:
14:4d:40:08:38:e0:78:02:64:56:6d:54:d1:77:65:b8:f7:4f:
52:2c:f8:75:05:ac:71:ef:49:86:ec:a0:76:11:be:bf:d2:6a:
16:32:d6:4a:38:c7:07:a6:11:44:54:b9:d8:05:59:1d:f9:5a:
f6:7a:c4:15:3e:22:e4:e4:73:9d:3d:99:51:50:ed:de:2d:db:
f0:97:b4:1a:f5:a8:56:cf:ef:8e:d0:b0:40:dc:fe:26:e1:44:
a2:b6:b0:1e:dc:5b:e5:bd:f0:5d:a8:a3:d0:3d:37:d2:33:5b:
5c:62:cb:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 19:32:43 2025 by rpki-client